Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255181	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0127	2010-05-28 18:43	2010-05-11	Show	GitHub Exploit DB Packet Storm

255182	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の VBE6.DLL における整数オーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2010-0815	2010-05-28 18:43	2010-05-11	Show	GitHub Exploit DB Packet Storm

255183	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の inetcomm.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0816	2010-05-28 18:43	2010-05-11	Show	GitHub Exploit DB Packet Storm

255184	9.3	危険	日立	-	複数の日立製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4776	2010-05-28 18:42	2009-07-21	Show	GitHub Exploit DB Packet Storm

255185	6.8	警告	サイバートラスト株式会社レッドハット	-	TeX Live 2009 および teTeX の dvips における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0827	2010-05-27 17:40	2010-05-6	Show	GitHub Exploit DB Packet Storm

255186	6.8	警告	サイバートラスト株式会社レッドハット	-	teTeX および TeXlive 2007 の hpc.c における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2007-5935	2010-05-27 17:40	2007-11-13	Show	GitHub Exploit DB Packet Storm

255187	4.3	警告	サイバートラスト株式会社レッドハット	-	dvipng および teTeX の set.c における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0829	2010-05-27 17:40	2010-05-6	Show	GitHub Exploit DB Packet Storm

255188	1.9	注意	IBM	-	IBM WebSphere Application Server における KeyRingPassword のパスワード情報が漏えいする脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0769	2010-05-27 17:25	2010-04-1	Show	GitHub Exploit DB Packet Storm

255189	4.3	警告	IBM	-	IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0768	2010-05-27 17:25	2010-04-1	Show	GitHub Exploit DB Packet Storm

255190	4	警告	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0770	2010-05-27 17:25	2010-04-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
308131	-		-	-	A segmentation fault in KMPlayer v4.2.2.65 allows attackers to cause a Denial of Service (DoS) via a crafted AVI file.	-	CVE-2024-41200	2024-11-6 07:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

308132	-		-	-	Missing Authorization vulnerability in ??????? ????? Persian WooCommerce allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Persian WooCommerce: from n/a through 7.1.6.	CWE-862 Missing Authorization	CVE-2024-43219	2024-11-6 07:15	2024-11-2	Show	GitHub Exploit DB Packet Storm

308133	9.8	CRITICAL Network	lb-link	bl-wr1300h_firmware	LB-LINK BL-WR 1300H v.1.0.4 contains hardcoded credentials stored in /etc/shadow which are easily guessable.	CWE-798 Use of Hard-coded Credentials	CVE-2024-51431	2024-11-6 06:37	2024-11-2	Show	GitHub Exploit DB Packet Storm

308134	7.5	HIGH Network	tp-link	mr200_firmware	TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in the web administration panel on /cgi/login via the sign, Action or LoginStatus query parameters which …	CWE-476 NULL Pointer Dereference	CVE-2024-22733	2024-11-6 06:35	2024-11-2	Show	GitHub Exploit DB Packet Storm

308135	-		-	-	A vulnerability in the AWV (Audio, Web and Video Conferencing) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could allow an unauthenticated attacker to conduct a CRLF injection attack d…	-	CVE-2024-47224	2024-11-6 06:35	2024-10-22	Show	GitHub Exploit DB Packet Storm

308136	5.3	MEDIUM Network	vmware	spring_framework	The fix for CVE-2022-22968 made disallowedFields patterns in DataBinder case insensitive. However, String.toLowerCase() has some Locale dependent exceptions that could potentially result in fields no…	NVD-CWE-noinfo	CVE-2024-38820	2024-11-6 06:35	2024-10-18	Show	GitHub Exploit DB Packet Storm

308137	-		-	-	Cross Site Scripting vulnerability in Alinto SOGo before 5.10.0 allows a remote attacker to execute arbitrary code via the import function to the mail component.	-	CVE-2024-24510	2024-11-6 06:35	2024-09-10	Show	GitHub Exploit DB Packet Storm

308138	8.8	HIGH Network	esafenet	cdg	A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/policy/HookWhiteListService…	CWE-89 SQL Injection	CVE-2024-10500	2024-11-6 06:02	2024-10-30	Show	GitHub Exploit DB Packet Storm

308139	9.8	CRITICAL Network	draytek	vigor3900_firmware	In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the restore function.	CWE-78 OS Command	CVE-2024-51252	2024-11-6 05:54	2024-11-2	Show	GitHub Exploit DB Packet Storm

308140	-		-	-	Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configur…	-	CVE-2023-6728	2024-11-6 05:35	2024-10-17	Show	GitHub Exploit DB Packet Storm