Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255971 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Workflow Cartridge コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0857 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
255972 3.5 注意 オラクル - Oracle E-Business Suite の E-Business Intelligence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0858 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
255973 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Transportation Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0869 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
255974 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Agile Engineering Data Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0871 2010-05-13 15:10 2010-04-13 Show GitHub Exploit DB Packet Storm
255975 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Agile Engineering Data Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0865 2010-05-13 15:09 2010-04-13 Show GitHub Exploit DB Packet Storm
255976 5 警告 オラクル - Oracle E-Business Suite の Oracle HRMS (Self Service) コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0861 2010-05-13 15:09 2010-04-13 Show GitHub Exploit DB Packet Storm
255977 7.6 危険 マイクロソフト - Internet Explorer において VBScript および Windows Help を使用する際に任意のコードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0483 2010-05-12 15:20 2010-03-2 Show GitHub Exploit DB Packet Storm
255978 7.1 危険 マイクロソフト - Microsoft Windows の kernel における SMB 応答パケットの処理に関するサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3676 2010-05-12 15:20 2009-11-13 Show GitHub Exploit DB Packet Storm
255979 5.8 警告 オラクル - Oracle E-Business Suite の Oracle iStore コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0868 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
255980 6.4 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0859 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
316351 4.9 MEDIUM
Network 		zscaler client_connector In certain cases, Zscaler Internet Access (ZIA) can be disabled by PowerShell commands with admin rights. This affects Zscaler Client Connector on Windows <4.2.1 NVD-CWE-noinfo
CVE-2024-23464 2024-08-8 06:23 2024-08-7 Show GitHub Exploit DB Packet Storm
316352 9.8 CRITICAL
Network 		vivotek cc8160_firmware ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in Vivotek CC8160 VVTK-0100d. It has been classified as critical. This affects the function getenv of the file upload_file.cgi. The manipulat… CWE-77
Command Injection 		CVE-2024-7440 2024-08-8 06:15 2024-08-4 Show GitHub Exploit DB Packet Storm
316353 - novell groupwise
groupwise_webaccess 		NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as… NVD-CWE-Other
CVE-2005-0296 2024-08-8 06:15 2005-01-17 Show GitHub Exploit DB Packet Storm
316354 9.8 CRITICAL
Network 		dlink dir-300_firmware D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service. CWE-798
 Use of Hard-coded Credentials 		CVE-2024-41616 2024-08-8 05:54 2024-08-7 Show GitHub Exploit DB Packet Storm
316355 6.1 MEDIUM
Network 		phpgurukul tourism_management_system A reflected cross-site scripting (XSS) vulnerability in Phpgurukul Tourism Management System v2.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted… CWE-79
Cross-site Scripting 		CVE-2024-41333 2024-08-8 05:54 2024-08-7 Show GitHub Exploit DB Packet Storm
316356 8.8 HIGH
Network 		google chrome Use after free in Downloads in Google Chrome on iOS prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) CWE-416
 Use After Free 		CVE-2024-6988 2024-08-8 05:51 2024-08-7 Show GitHub Exploit DB Packet Storm
316357 4.7 MEDIUM
Network 		google chrome Inappropriate implementation in Fullscreen in Google Chrome on Android prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to spoof the contents of… NVD-CWE-noinfo
CVE-2024-6995 2024-08-8 05:35 2024-08-7 Show GitHub Exploit DB Packet Storm
316358 - - - An issue discovered in casdoor v1.636.0 allows attackers to obtain sensitive information via the ssh.InsecureIgnoreHostKey() method. - CVE-2024-41264 2024-08-8 05:35 2024-08-2 Show GitHub Exploit DB Packet Storm
316359 - - - The WooCommerce Customers Manager WordPress plugin before 30.1 does not have CSRF checks in some places, which could allow attackers to make logged in admin users delete users via CSRF attacks - CVE-2024-2843 2024-08-8 05:35 2024-08-1 Show GitHub Exploit DB Packet Storm
316360 - abarcar abarcar_realty_portal Multiple SQL injection vulnerabilities in Abarcar Realty Portal allow remote attackers to execute arbitrary SQL commands via the (1) neid parameter to newsdetails.php, or the (2) slid parameter to sl… CWE-89
SQL Injection 		CVE-2006-5840 2024-08-8 05:15 2006-11-10 Show GitHub Exploit DB Packet Storm