Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254871	6.4	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2010-2191	2010-08-17 17:35	2010-05-31	Show	GitHub Exploit DB Packet Storm

254872	5	警告	The PHP Group	-	PHP の Zend Engine における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1914	2010-08-17 17:34	2010-05-8	Show	GitHub Exploit DB Packet Storm

254873	6.4	警告	The PHP Group	-	PHP の sysvshm 拡張における任意のメモリアドレスを書かれる脆弱性	CWE-399 リソース管理の問題	CVE-2010-1861	2010-08-17 17:33	2010-05-5	Show	GitHub Exploit DB Packet Storm

254874	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0654	2010-08-16 18:57	2010-02-18	Show	GitHub Exploit DB Packet Storm

254875	7.6	危険	アップル	-	Apple Safari における window オブジェクトの処理に脆弱性	CWE-399 リソース管理の問題	CVE-2010-1939	2010-08-16 15:08	2010-05-12	Show	GitHub Exploit DB Packet Storm

254876	7.6	危険	IBM	-	IBM Lotus Domino Web Access の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0919	2010-08-16 15:05	2010-03-3	Show	GitHub Exploit DB Packet Storm

254877	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における重要な cross-origin 情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1207	2010-08-13 17:15	2010-07-20	Show	GitHub Exploit DB Packet Storm

254878	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクローム特権で任意の JavaScript コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1215	2010-08-13 17:14	2010-07-20	Show	GitHub Exploit DB Packet Storm

254879	7.8	危険	マイクロソフト	-	Microsoft Windows におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1892	2010-08-13 14:01	2010-08-13	Show	GitHub Exploit DB Packet Storm

254880	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1212	2010-08-12 19:03	2010-07-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307321	9.8	CRITICAL Network	matrixcomsec	cosec_vega_faxq_firmware	This vulnerability exists in Matrix Door Controller Cosec Vega FAXQ due to improper implementation of session management at the web-based management interface. A remote attacker could exploit this vu…	NVD-CWE-Other	CVE-2024-10381	2024-11-15 06:44	2024-10-25	Show	GitHub Exploit DB Packet Storm

307322	5.9	MEDIUM Network	ibm	txseries_for_multiplatforms	IBM TXSeries for Multiplatforms 10.1 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the …	NVD-CWE-noinfo	CVE-2024-41738	2024-11-15 05:51	2024-11-2	Show	GitHub Exploit DB Packet Storm

307323	7.8	HIGH Local	bytecodealliance	webassembly_micro_runtime	An issue in bytecodealliance wasm-micro-runtime before v.b3f728c and fixed in commit 06df58f allows a remote attacker to escalate privileges via a crafted file to the check_was_abi_compatibility func…	CWE-125 Out-of-bounds Read	CVE-2024-25431	2024-11-15 05:42	2024-11-9	Show	GitHub Exploit DB Packet Storm

307324	5.3	MEDIUM Network	ibm	txseries_for_multiplatforms	IBM TXSeries for Multiplatforms 10.1 could allow an attacker to determine valid usernames due to an observable timing discrepancy which could be used in further attacks against the system.	CWE-203 Information Exposure Through Discrepancy	CVE-2024-41741	2024-11-15 05:42	2024-11-2	Show	GitHub Exploit DB Packet Storm

307325	8.8	HIGH Network	sbond	watcharr	A vulnerability in a weak JWT token in Watcharr v1.43.0 and below allows attackers to perform privilege escalation using a crafted JWT token. This vulnerability is not limited to privilege escalation…	NVD-CWE-noinfo	CVE-2024-50634	2024-11-15 05:40	2024-11-9	Show	GitHub Exploit DB Packet Storm

307326	7.8	HIGH Local	artifex debian suse	ghostscript debian_linux linux_enterprise_high_performance_computing linux_enterprise_server linux_enterprise_server_for_sap	An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.	CWE-125 Out-of-bounds Read	CVE-2024-46956	2024-11-15 05:39	2024-11-11	Show	GitHub Exploit DB Packet Storm

307327	6.7	MEDIUM Local	fortinet	forticlient	An improper verification of cryptographic signature vulnerability [CWE-347] in FortiClient MacOS version 7.4.0, version 7.2.4 and below, version 7.0.10 and below, version 6.4.10 and below may allow a…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2024-40592	2024-11-15 05:37	2024-11-13	Show	GitHub Exploit DB Packet Storm

307328	8.8	HIGH Local	fortinet	forticlient	A privilege context switching error vulnerability [CWE-270] in FortiClient Windows version 7.2.4 and below, version 7.0.12 and below, 6.4 all versions may allow an authenticated user to escalate thei…	CWE-270 Privilege Context Switching Error	CVE-2024-36513	2024-11-15 05:35	2024-11-13	Show	GitHub Exploit DB Packet Storm

307329	6.1	MEDIUM Network	ibm	cics_tx	IBM CICS TX Standard is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona…	CWE-79 Cross-site Scripting	CVE-2024-41745	2024-11-15 05:35	2024-11-2	Show	GitHub Exploit DB Packet Storm

307330	-		-	-	An issue in the API endpoint /AccountMaster/GetCurrentUserInfo of INROAD before v202402060 allows attackers to access sensitive information via a crafted payload to the UserNameOrPhoneNumber paramete…	-	CVE-2024-46635	2024-11-15 05:35	2024-10-1	Show	GitHub Exploit DB Packet Storm