Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253741	10	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の Provider クラスにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-2721	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

253742	5	警告	有限会社シースリー	-	WebCalenderC3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0348	2010-01-12 15:01	2010-01-12	Show	GitHub Exploit DB Packet Storm

253743	4.3	警告	有限会社シースリー	-	WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0349	2010-01-12 15:00	2010-01-12	Show	GitHub Exploit DB Packet Storm

253744	10	危険	サイバートラスト株式会社 XEmacs	-	XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2688	2010-01-12 14:48	2009-08-5	Show	GitHub Exploit DB Packet Storm

253745	6.8	警告	IBM	-	IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2746	2010-01-12 14:48	2009-11-13	Show	GitHub Exploit DB Packet Storm

253746	5	警告	アップル	-	Apple Safari におけるローカル HTML ファイルを読まれる脆弱性	CWE-Other その他	CVE-2009-2842	2010-01-7 12:09	2009-11-11	Show	GitHub Exploit DB Packet Storm

253747	5.5	警告	シックス・アパート株式会社	-	Movable Type におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	-	2010-01-6 15:01	2010-01-6	Show	GitHub Exploit DB Packet Storm

253748	9.3	危険	マイクロソフト	-	Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3135	2010-01-6 14:44	2009-11-10	Show	GitHub Exploit DB Packet Storm

253749	5	警告	トレンドマイクロ日本電気 Apache Software Foundation 富士通サイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカードレッドハット	-	Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-0450	2010-01-6 14:43	2007-03-16	Show	GitHub Exploit DB Packet Storm

253750	9.3	危険	マイクロソフト	-	Microsoft Office Excel および Open XML File Format Converter におけるオブジェクトを含むスプレッドシートの処理に関する任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3133	2010-01-5 16:18	2009-11-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306001	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Set phy->enable_completion only when we wait for it pm8001_phy_control() populates the enable_completion pointer wi…	CWE-416 Use After Free	CVE-2024-47666	2024-10-24 01:34	2024-10-10	Show	GitHub Exploit DB Packet Storm

306002	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: x86/sgx: Fix deadlock in SGX NUMA node search When the current node doesn't have an EPC section configured by firmware and all ot…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2024-49856	2024-10-24 01:33	2024-10-21	Show	GitHub Exploit DB Packet Storm

306003	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix potential use after free bug The free_device_compression_mode(iaa_device, device_mode) function frees "device_m…	CWE-416 Use After Free	CVE-2024-47732	2024-10-24 01:31	2024-10-21	Show	GitHub Exploit DB Packet Storm

306004	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) Errata #i2037 in AM65x/DRA80xM Processors Silicon Revision 1.0 (SP…	NVD-CWE-noinfo	CVE-2024-47667	2024-10-24 01:31	2024-10-10	Show	GitHub Exploit DB Packet Storm

306005	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing waker_bfqq after splitting After commit 42c306ed7233 ("block, bfq: don't break merge chain in b…	CWE-416 Use After Free	CVE-2024-49854	2024-10-24 01:29	2024-10-21	Show	GitHub Exploit DB Packet Storm

306006	8.8	HIGH Network	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: smack: tcp: ipv4, fix incorrect labeling Currently, Smack mirrors the label of incoming tcp/ipv4 connections: when a label 'foo' …	NVD-CWE-noinfo	CVE-2024-47659	2024-10-24 01:29	2024-10-9	Show	GitHub Exploit DB Packet Storm

306007	8.8	HIGH Adjacent	wavlink	wn530h4_firmware wn530hg4_firmware wn572hg3_firmware	A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been classified as critical. Affected is the function Goto_chidx of the file login.cgi of the component Fron…	CWE-787 Out-of-bounds Write	CVE-2024-10194	2024-10-24 01:16	2024-10-20	Show	GitHub Exploit DB Packet Storm

306008	7.2	HIGH Network	wavlink	wn530h4_firmware wn530hg4_firmware wn572hg3_firmware	A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028 and classified as critical. This issue affects the function ping_ddns of the file internet.cgi. The manipulation of …	CWE-77 Command Injection	CVE-2024-10193	2024-10-24 01:16	2024-10-20	Show	GitHub Exploit DB Packet Storm

306009	5.3	MEDIUM Network	stylemixthemes	cost_calculator_builder	The Cost Calculator Builder PRO plugin for WordPress is vulnerable to price manipulation in all versions up to, and including, 3.2.1. This is due to the plugin allowing the price field to be manipula…	NVD-CWE-Other	CVE-2024-6010	2024-10-24 01:15	2024-09-7	Show	GitHub Exploit DB Packet Storm

306010	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix double free in OPTEE transport Channels can be shared between protocols, avoid freeing the same channel d…	CWE-415 Double Free	CVE-2024-49853	2024-10-24 01:14	2024-10-21	Show	GitHub Exploit DB Packet Storm