Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254181 9.3 危険 マイクロソフト - Microsoft Windows の Microsoft Paint における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0028 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
254182 7.2 危険 マイクロソフト - Microsoft Windows の kernel における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-0233 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
254183 6.3 警告 マイクロソフト - Microsoft Windows の KDC におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0035 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
254184 7.1 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-0021 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
254185 10 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるアクセス権を取得される脆弱性 CWE-264
CWE-310
CVE-2010-0231 2010-03-3 11:54 2010-02-9 Show GitHub Exploit DB Packet Storm
254186 7.8 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0022 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
254187 9 危険 マイクロソフト - Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性 CWE-20
CWE-94
CVE-2010-0020 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
254188 6.9 警告 マイクロソフト - Microsoft Windows の Client/Server Run-time Subsystem における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0023 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
254189 4 警告 マイクロソフト - Microsoft Windows の Hyper-V サーバ実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0026 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
254190 9.3 危険 日本電気
アップル
富士通
古河電気工業
ヒューレット・パッカード
インターネットイニシアティブ
アラクサラネットワークス
日立		 - IPv6 NDP 実装における Neighbor Discovery メッセージの送信元検証処理に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2476 2010-03-3 11:43 2008-10-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305221 - - - HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive information. Detailed error messages can provide enticement information or expose information about its e… - CVE-2024-30141 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305222 - - - HCL BigFix Compliance is affected by unvalidated redirects and forwards. The HOST header can be manipulated by an attacker and as a result, it can poison the web cache and provide back to users bein… - CVE-2024-30140 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305223 - - - The WP Booking Calendar WordPress plugin before 10.6.3 does not sanitise and escape some of its Widgets settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scr… - CVE-2024-10027 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305224 - - - A vulnerability classified as critical was found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. This vulnerability affects unkn… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-10947 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305225 - - - A vulnerability classified as critical has been found in Guangzhou Tuchuang Computer Software Development Interlib Library Cluster Automation Management System up to 2.0.1. This affects an unknown pa… CWE-89
CWE-74
SQL Injection
Injection 		CVE-2024-10946 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305226 6.1 MEDIUM
Network 		- - The Featured Posts Scroll plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.25. This is due to missing or incorrect nonce validation on a functi… - CVE-2024-10922 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305227 - - - jj, or Jujutsu, is a Git-compatible VCS written in rust. In affected versions specially crafted Git repositories can cause `jj` to write files outside the clone. This issue has been addressed in vers… CWE-22
Path Traversal 		CVE-2024-51990 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305228 - - - Buffer Overflow vulnerability in Tenda O3 v.1.0.0.5 allows a remote attacker to cause a denial of service via a network packet in a fixed format to a router running the corresponding version of the f… - CVE-2024-51409 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305229 - - - Portabilis i-Educar 2.8.0 is vulnerable to SQL Injection in the "getDocuments" function of the "InstituicaoDocumentacaoController" class. The "instituicao_id" parameter in "/module/Api/InstituicaoDoc… - CVE-2024-48325 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm
305230 - - - Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. On Windows, when an executable file named `cmd.exe` is located in the current working directory i… CWE-77
Command Injection 		CVE-2024-51736 2024-11-9 04:01 2024-11-7 Show GitHub Exploit DB Packet Storm