Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254871	6.4	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2010-2191	2010-08-17 17:35	2010-05-31	Show	GitHub Exploit DB Packet Storm

254872	5	警告	The PHP Group	-	PHP の Zend Engine における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1914	2010-08-17 17:34	2010-05-8	Show	GitHub Exploit DB Packet Storm

254873	6.4	警告	The PHP Group	-	PHP の sysvshm 拡張における任意のメモリアドレスを書かれる脆弱性	CWE-399 リソース管理の問題	CVE-2010-1861	2010-08-17 17:33	2010-05-5	Show	GitHub Exploit DB Packet Storm

254874	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0654	2010-08-16 18:57	2010-02-18	Show	GitHub Exploit DB Packet Storm

254875	7.6	危険	アップル	-	Apple Safari における window オブジェクトの処理に脆弱性	CWE-399 リソース管理の問題	CVE-2010-1939	2010-08-16 15:08	2010-05-12	Show	GitHub Exploit DB Packet Storm

254876	7.6	危険	IBM	-	IBM Lotus Domino Web Access の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0919	2010-08-16 15:05	2010-03-3	Show	GitHub Exploit DB Packet Storm

254877	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における重要な cross-origin 情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1207	2010-08-13 17:15	2010-07-20	Show	GitHub Exploit DB Packet Storm

254878	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクローム特権で任意の JavaScript コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1215	2010-08-13 17:14	2010-07-20	Show	GitHub Exploit DB Packet Storm

254879	7.8	危険	マイクロソフト	-	Microsoft Windows におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1892	2010-08-13 14:01	2010-08-13	Show	GitHub Exploit DB Packet Storm

254880	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1212	2010-08-12 19:03	2010-07-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312961	9.8	CRITICAL Network	progress	whatsup_gold	In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password.	CWE-89 SQL Injection	CVE-2024-6670	2024-09-17 10:00	2024-08-30	Show	GitHub Exploit DB Packet Storm

312962	8.8	HIGH Network	asterisk	asterisk certified_asterisk	Asterisk is an open source private branch exchange (PBX) and telephony toolkit. Prior to asterisk versions 18.24.2, 20.9.2, and 21.4.2 and certified-asterisk versions 18.9-cert11 and 20.7-cert2, an A…	NVD-CWE-Other	CVE-2024-42365	2024-09-17 05:23	2024-08-9	Show	GitHub Exploit DB Packet Storm

312963	9.8	CRITICAL Network	sonicwall	sonicos	An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the fi…	NVD-CWE-noinfo	CVE-2024-40766	2024-09-17 04:48	2024-08-23	Show	GitHub Exploit DB Packet Storm

312964	8.8	HIGH Network	xwiki	pro_macros	Pro Macros provides XWiki rendering macros. Missing escaping in the Viewpdf macro allows any user with view right on the `CKEditor.HTMLConverter` page or edit or comment right on any page to perform …	CWE-74 Injection	CVE-2024-42489	2024-09-17 04:46	2024-08-13	Show	GitHub Exploit DB Packet Storm

312965	5.5	MEDIUM Local	nvidia	cuda_toolkit	NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm, where an attacker can cause an out-of-bounds read issue by deceiving a user into reading a malformed ELF file. A successful…	CWE-125 Out-of-bounds Read	CVE-2024-0102	2024-09-17 04:37	2024-08-9	Show	GitHub Exploit DB Packet Storm

312966	8.8	HIGH Local	nvidia	jetson_linux	NVIDIA Jetson Linux contains a vulnerability in NvGPU where error handling paths in GPU MMU mapping code fail to clean up a failed mapping attempt. A successful exploit of this vulnerability may lead…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2024-0108	2024-09-17 04:27	2024-08-9	Show	GitHub Exploit DB Packet Storm

312967	7.5	HIGH Network	nvidia	mlnx-os mlnx-gw onyx nvda-os_xc	NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in ipfilter, where improper ipfilter definitions could enable an attacker to cause a failure by attacking the switch…	NVD-CWE-Other	CVE-2024-0101	2024-09-17 04:24	2024-08-9	Show	GitHub Exploit DB Packet Storm

312968	8.8	HIGH Network	solarwinds	access_rights_manager	SolarWinds Access Rights Manager (ARM) was found to be susceptible to a remote code execution vulnerability. If exploited, this vulnerability would allow an authenticated user to abuse the service, r…	NVD-CWE-noinfo	CVE-2024-28991	2024-09-17 03:06	2024-09-12	Show	GitHub Exploit DB Packet Storm

312969	9.8	CRITICAL Network	solarwinds	access_rights_manager	SolarWinds Access Rights Manager (ARM) was found to contain a hard-coded credential authentication bypass vulnerability. If exploited, this vulnerability would allow access to the RabbitMQ management…	CWE-798 Use of Hard-coded Credentials	CVE-2024-28990	2024-09-17 03:05	2024-09-12	Show	GitHub Exploit DB Packet Storm

312970	5.4	MEDIUM Network	mindsdb	mindsdb	A cross-site scripting (XSS) vulnerability exists in all versions of the MindsDB platform, enabling the execution of a JavaScript payload whenever a user enumerates an ML Engine, database, project, o…	CWE-79 Cross-site Scripting	CVE-2024-45856	2024-09-17 03:04	2024-09-12	Show	GitHub Exploit DB Packet Storm