Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253731 6.8 警告 アップル
サイバートラスト株式会社
Python Software Foundation
サン・マイクロシステムズ
レッドハット		 - Python の imageop.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-1679 2010-01-19 15:48 2008-04-22 Show GitHub Exploit DB Packet Storm
253732 5.8 警告 アップル
サイバートラスト株式会社
Python Software Foundation
サン・マイクロシステムズ
レッドハット		 - Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-4965 2010-01-19 15:47 2007-09-18 Show GitHub Exploit DB Packet Storm
253733 7.5 危険 アップル - Mac OS X 用の Java における任意のコードを実行される脆弱性 CWE-310
暗号の問題 		CVE-2009-2843 2010-01-18 12:22 2009-12-3 Show GitHub Exploit DB Packet Storm
253734 6.8 警告 アップル
GNU Project
サン・マイクロシステムズ
サイバートラスト株式会社
レッドハット		 - GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4131 2010-01-18 12:21 2007-08-23 Show GitHub Exploit DB Packet Storm
253735 4.6 警告 IBM - IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4150 2010-01-15 14:10 2009-12-2 Show GitHub Exploit DB Packet Storm
253736 2.1 注意 サン・マイクロシステムズ - Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4080 2010-01-15 14:10 2009-11-24 Show GitHub Exploit DB Packet Storm
253737 5 警告 サン・マイクロシステムズ - Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4075 2010-01-15 14:09 2009-11-23 Show GitHub Exploit DB Packet Storm
253738 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
253739 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
253740 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
309181 4.3 MEDIUM
Network 		imagerecycle imagerecycle_pdf_\&_image_compression The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.14. This is due to missing or incorrect nonce valid… CWE-352
 Origin Validation Error 		CVE-2024-8120 2024-09-18 05:07 2024-08-24 Show GitHub Exploit DB Packet Storm
309182 4.8 MEDIUM
Network 		cleversoft clever_addons_for_elementor Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CleverSoft Clever Addons for Elementor allows Stored XSS.This issue affects Clever Addons … CWE-79
Cross-site Scripting 		CVE-2024-43324 2024-09-18 05:04 2024-08-18 Show GitHub Exploit DB Packet Storm
309183 6.1 MEDIUM
Network 		orbisius child_theme_creator Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Svetoslav Marinov (Slavi) Child Theme Creator allows Reflected XSS.This issue affects Chil… CWE-79
Cross-site Scripting 		CVE-2024-43276 2024-09-18 05:00 2024-08-18 Show GitHub Exploit DB Packet Storm
309184 5.4 MEDIUM
Network 		cpothemes allegiant Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Chill Allegiant allegiant allows Stored XSS.This issue affects Allegiant: from n/a thro… CWE-79
Cross-site Scripting 		CVE-2024-43329 2024-09-18 04:59 2024-08-18 Show GitHub Exploit DB Packet Storm
309185 6.1 MEDIUM
Network 		wpbeaveraddons powerpack_lite_for_beaver_builder Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in IdeaBox Creations PowerPack for Beaver Builder allows Reflected XSS.This issue affects Pow… CWE-79
Cross-site Scripting 		CVE-2024-43330 2024-09-18 04:53 2024-08-18 Show GitHub Exploit DB Packet Storm
309186 6.5 MEDIUM
Network 		mozilla firefox
firefox_esr
thunderbird 		ANGLE failed to initialize parameters which lead to reading from uninitialized memory. This could be leveraged to leak sensitive data from memory. This vulnerability affects Firefox < 129, Firefox ES… CWE-908
 Use of Uninitialized Resource 		CVE-2024-7526 2024-09-18 04:15 2024-08-6 Show GitHub Exploit DB Packet Storm
309187 5.4 MEDIUM
Network 		mayurik best_house_rental_management_system A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file /index.php?page=tenants of the componen… CWE-79
Cross-site Scripting 		CVE-2024-8610 2024-09-18 03:48 2024-09-10 Show GitHub Exploit DB Packet Storm
309188 9.8 CRITICAL
Network 		dlink dir-x4860_firmware The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execu… CWE-787
 Out-of-bounds Write 		CVE-2024-45695 2024-09-18 03:40 2024-09-16 Show GitHub Exploit DB Packet Storm
309189 9.8 CRITICAL
Network 		dlink dir-x5460_firmware
dir-x4860_firmware 		The web service of certain models of D-Link wireless routers contains a Stack-based Buffer Overflow vulnerability, which allows unauthenticated remote attackers to exploit this vulnerability to execu… CWE-121
Stack-based Buffer Overflow 		CVE-2024-45694 2024-09-18 03:40 2024-09-16 Show GitHub Exploit DB Packet Storm
309190 - - - Rejected reason: This CVE is a duplicate of another CVE. - CVE-2024-45804 2024-09-18 03:15 2024-09-18 Show GitHub Exploit DB Packet Storm