Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254871 6.4 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2010-2191 2010-08-17 17:35 2010-05-31 Show GitHub Exploit DB Packet Storm
254872 5 警告 The PHP Group - PHP の Zend Engine における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1914 2010-08-17 17:34 2010-05-8 Show GitHub Exploit DB Packet Storm
254873 6.4 警告 The PHP Group - PHP の sysvshm 拡張における任意のメモリアドレスを書かれる脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1861 2010-08-17 17:33 2010-05-5 Show GitHub Exploit DB Packet Storm
254874 4.3 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-0654 2010-08-16 18:57 2010-02-18 Show GitHub Exploit DB Packet Storm
254875 7.6 危険 アップル - Apple Safari における window オブジェクトの処理に脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1939 2010-08-16 15:08 2010-05-12 Show GitHub Exploit DB Packet Storm
254876 7.6 危険 IBM - IBM Lotus Domino Web Access の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0919 2010-08-16 15:05 2010-03-3 Show GitHub Exploit DB Packet Storm
254877 4.3 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品における重要な cross-origin 情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1207 2010-08-13 17:15 2010-07-20 Show GitHub Exploit DB Packet Storm
254878 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1215 2010-08-13 17:14 2010-07-20 Show GitHub Exploit DB Packet Storm
254879 7.8 危険 マイクロソフト - Microsoft Windows におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1892 2010-08-13 14:01 2010-08-13 Show GitHub Exploit DB Packet Storm
254880 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1212 2010-08-12 19:03 2010-07-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
308681 - - - Cross Site Scripting vulnerability in Shenzhen Interconnection Harbor Network Technology Co., Ltd Ofweek Online Exhibition v.1.0.0 allows a remote attacker to execute arbitrary code. - CVE-2024-51419 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308682 - - - The eladmin v2.7 and before contains a remote code execution (RCE) vulnerability that can control all application deployment servers of this management system via DeployController.java. - CVE-2024-51243 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308683 - - - A Server-Side Request Forgery (SSRF) vulnerability has been identified in eladmin 2.7 and earlier in ServerDeployController.java. The manipulation of the HTTP Body ip parameter leads to SSRF. - CVE-2024-51242 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308684 - - - Cross Site Scripting vulnerability in PHPGurukul Doctor Appointment Management System v.1.0 allows a local attacker to execute arbitrary code via the search parameter. - CVE-2024-48807 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308685 - - - xtreme1 <= v0.9.1 contains a Server-Side Request Forgery (SSRF) vulnerability in the /api/data/upload path. The vulnerability is triggered through the fileUrl parameter, which allows an attacker to m… - CVE-2024-48346 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308686 - - - A deserialization vulnerability in the component \controller\Index.php of Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code. - CVE-2024-48112 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308687 - - - Unrestricted File Upload in the Discussions tab in Operately v.0.1.0 allows a privileged user to achieve Remote Code Execution via uploading and executing malicious files without validating file exte… - CVE-2024-48093 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308688 - - - Snowflake JDBC driver versions >= 3.2.6 and <= 3.19.1 have an Incorrect Security Setting that can result in data being uploaded to an encrypted stage without the additional layer of protection provid… - CVE-2024-43382 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308689 - - - D-Link DSL6740C v6.TR069.20211230 was discovered to use an insecure default Wifi password, possibly allowing attackers to connect to the device via a bruteforce attack. - CVE-2024-48272 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm
308690 - - - D-Link DSL6740C v6.TR069.20211230 was discovered to use insecure default credentials for Administrator access, possibly allowing attackers to bypass authentication and escalate privileges on the devi… - CVE-2024-48271 2024-11-1 21:57 2024-10-31 Show GitHub Exploit DB Packet Storm