Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254441	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

254442	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305641	-		-	-	Stored Cross-Site Scripting (XSS) vulnerability discovered in the Properties Component of JATOS v3.9.3. This flaw allows an attacker to inject malicious JavaScript into the properties section of a st…	-	CVE-2024-51380	2024-11-7 03:17	2024-11-6	Show	GitHub Exploit DB Packet Storm

305642	-		-	-	Stored Cross-Site Scripting (XSS) vulnerability discovered in JATOS v3.9.3. The vulnerability exists in the description component of the study section, where an attacker can inject JavaScript into th…	-	CVE-2024-51379	2024-11-7 03:17	2024-11-6	Show	GitHub Exploit DB Packet Storm

305643	-		-	-	An issue in the luci-mod-rpc package in OpenWRT Luci LTS allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package	-	CVE-2024-51240	2024-11-7 03:17	2024-11-6	Show	GitHub Exploit DB Packet Storm

305644	-		-	-	The LSC Smart Connect Indoor IP Camera V7.6.32 is vulnerable to an information disclosure issue where live camera footage can be accessed through the RTSP protocol on port 8554 without requiring auth…	-	CVE-2024-51362	2024-11-7 03:17	2024-11-6	Show	GitHub Exploit DB Packet Storm

305645	-		-	-	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versions up until and including 1.10.2 contain reflected XSS vulnerabilities in the login dialog and the standalone …	CWE-79 CWE-80 Cross-site Scripting Basic XSS	CVE-2024-49377	2024-11-7 03:17	2024-11-6	Show	GitHub Exploit DB Packet Storm

305646	-		-	-	An XML External Entity (XXE) vulnerability in HAPI FHIR before v6.4.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious X…	-	CVE-2024-51132	2024-11-7 03:17	2024-11-6	Show	GitHub Exploit DB Packet Storm

305647	-		-	-	WebLaudos v20.8 (118) was discovered to contain a cross-site scripting (XSS) vulnerability via the login page.	-	CVE-2024-48312	2024-11-7 03:17	2024-11-6	Show	GitHub Exploit DB Packet Storm

305648	-		-	-	Under certain conditions, access to service libraries is granted to account they should not have access to.	-	CVE-2023-29122	2024-11-7 03:17	2024-11-6	Show	GitHub Exploit DB Packet Storm

305649	-		-	-	Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2024. N…	-	CVE-2024-50315	2024-11-7 03:15	2024-11-7	Show	GitHub Exploit DB Packet Storm

305650	5.4	MEDIUM Network	phpgurukul	online_shopping_portal	A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. This vulnerability affects unknown code of the file admin/assets/plugins/DataTables/media/unit…	CWE-79 Cross-site Scripting	CVE-2024-10753	2024-11-7 02:42	2024-11-4	Show	GitHub Exploit DB Packet Storm