Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255131	5	警告	アップル	-	Apple Mac OS X の Wiki サーバにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0523	2010-04-16 16:58	2010-03-29	Show	GitHub Exploit DB Packet Storm

255132	9	危険	アップル	-	Apple Mac OS X のサーバ管理における管理者権限の処理に関する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0522	2010-04-16 16:58	2010-03-29	Show	GitHub Exploit DB Packet Storm

255133	5	警告	アップル	-	Apple Mac OS X のサーバ管理における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-0521	2010-04-16 16:58	2010-03-29	Show	GitHub Exploit DB Packet Storm

255134	4.3	警告	アップル Ruby on Rails project	-	Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4214	2010-04-16 16:58	2009-12-7	Show	GitHub Exploit DB Packet Storm

255135	4.3	警告	アップル Ruby on Rails project	-	Ruby on Rails におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3009	2010-04-16 16:58	2009-09-8	Show	GitHub Exploit DB Packet Storm

255136	7.5	危険	アップル Ruby on Rails project	-	Ruby on Rails のダイジェスト認証における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-2422	2010-04-16 16:57	2009-07-10	Show	GitHub Exploit DB Packet Storm

255137	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0526	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

255138	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0520	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

255139	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0519	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

255140	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0518	2010-04-16 16:56	2010-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
306011	3.5	LOW Network	clinical-genomics	scout	Scout is a web-based visualizer for VCF-files. Due to the lack of sanitization in the filename, it is possible bypass intended file extension and make users download malicious files with any extensio…	CWE-116 Improper Encoding or Escaping of Output	CVE-2024-47531	2024-11-16 03:02	2024-10-1	Show	GitHub Exploit DB Packet Storm

306012	6.5	MEDIUM Network	zope	restrictedpython	RestrictedPython is a restricted execution environment for Python to run untrusted code. A user can gain access to protected (and potentially sensible) information indirectly via AttributeError.obj a…	NVD-CWE-noinfo	CVE-2024-47532	2024-11-16 02:59	2024-10-1	Show	GitHub Exploit DB Packet Storm

306013	4.8	MEDIUM Network	zzcms	zzcms	A vulnerability was found in ZZCMS up to 2023. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/msg.php. The manipulation of the argument keyw…	CWE-79 Cross-site Scripting	CVE-2024-11130	2024-11-16 02:57	2024-11-13	Show	GitHub Exploit DB Packet Storm

306014	7.8	HIGH Local	dell	smartfabric_os10	Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability. A l…	CWE-77 Command Injection	CVE-2024-49557	2024-11-16 02:36	2024-11-12	Show	GitHub Exploit DB Packet Storm

306015	3.3	LOW Local	dell	smartfabric_os10	Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a Files or Directories Accessible to External Parties vulnerability. A low privileged attacker with local…	CWE-552 Files or Directories Accessible to External Parties	CVE-2024-48838	2024-11-16 02:36	2024-11-12	Show	GitHub Exploit DB Packet Storm

306016	7.8	HIGH Local	dell	smartfabric_os10	Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) a command injection vulnerability. A low privileged attacker with local access could potentially exploit …	CWE-77 Command Injection	CVE-2024-49560	2024-11-16 02:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

306017	7.8	HIGH Local	dell	smartfabric_os10	Dell SmartFabric OS10 Software, version(s) 10.5.6.x, 10.5.5.x, 10.5.4.x, 10.5.3.x, contain(s) an Improper Privilege Management vulnerability. A low privileged attacker with local access could potenti…	NVD-CWE-noinfo	CVE-2024-49558	2024-11-16 02:35	2024-11-12	Show	GitHub Exploit DB Packet Storm

306018	8.8	HIGH Network	anisha	job_recruitment	A vulnerability was found in code-projects Job Recruitment up to 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin.php. The manipulat…	CWE-89 SQL Injection	CVE-2024-11127	2024-11-16 02:29	2024-11-13	Show	GitHub Exploit DB Packet Storm

306019	7.5	HIGH Network	eclipse	mosquitto	In Eclipse Mosquitto up to version 2.0.18a, an attacker can achieve memory leaking, segmentation fault or heap-use-after-free by sending specific sequences of "CONNECT", "DISCONNECT", "SUBSCRIBE", "U…	CWE-416 CWE-401 CWE-755 Use After Free Missing Release of Memory after Effective Lifetime Improper Handling of Exceptional Conditions	CVE-2024-8376	2024-11-16 02:21	2024-10-12	Show	GitHub Exploit DB Packet Storm

306020	4.3	MEDIUM Network	github	enterprise_server	An information disclosure vulnerability was identified in GitHub Enterprise Server via attacker uploaded asset URL allowing the attacker to retrieve metadata information of a user who clicks on the U…	NVD-CWE-noinfo	CVE-2024-9539	2024-11-16 02:15	2024-10-12	Show	GitHub Exploit DB Packet Storm