Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257051	2.1	注意	サン・マイクロシステムズ	-	Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4080	2010-01-15 14:10	2009-11-24	Show	GitHub Exploit DB Packet Storm

257052	5	警告	サン・マイクロシステムズ	-	Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4075	2010-01-15 14:09	2009-11-23	Show	GitHub Exploit DB Packet Storm

257053	2.6	注意	オラクル	-	Oracle Application Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-01-14 15:01	2010-01-14	Show	GitHub Exploit DB Packet Storm

257054	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer に脆弱性	CWE-94 コード・インジェクション	CVE-2009-3672	2010-01-14 12:08	2009-11-25	Show	GitHub Exploit DB Packet Storm

257055	9.3	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の java.lang パッケージにおける脆弱性	CWE-362 競合状態	CVE-2009-2724	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

257056	10	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の Provider クラスにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-2721	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

257057	5	警告	有限会社シースリー	-	WebCalenderC3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0348	2010-01-12 15:01	2010-01-12	Show	GitHub Exploit DB Packet Storm

257058	4.3	警告	有限会社シースリー	-	WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0349	2010-01-12 15:00	2010-01-12	Show	GitHub Exploit DB Packet Storm

257059	10	危険	サイバートラスト株式会社 XEmacs	-	XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2688	2010-01-12 14:48	2009-08-5	Show	GitHub Exploit DB Packet Storm

257060	6.8	警告	IBM	-	IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-2746	2010-01-12 14:48	2009-11-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
308261	8.8	HIGH Network	tenda	ac10_firmware	A vulnerability classified as critical was found in Tenda AC10 16.03.10.13. Affected by this vulnerability is the function FUN_0044db3c of the file /goform/fast_setting_wifi_set. The manipulation of …	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2024-11061	2024-11-14 08:04	2024-11-11	Show	GitHub Exploit DB Packet Storm

308262	7.2	HIGH Network	surajkumarvishwakarma	real_estate_management_system	A vulnerability was found in CodeAstro Real Estate Management System up to 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /aboutedit.php of the component A…	CWE-89 CWE-74 SQL Injection Injection	CVE-2024-11058	2024-11-14 08:03	2024-11-11	Show	GitHub Exploit DB Packet Storm

308263	9.8	CRITICAL Network	ruijie	rg-nbs2009g-p_firmware	Insecure Permissions vulnerability in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release (9736) allows a remote attacker to gain privileges via the login check state component.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2024-24117	2024-11-14 07:56	2024-10-3	Show	GitHub Exploit DB Packet Storm

308264	8.8	HIGH Network	ultrapress	empowerment	The Empowerment theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.2 via deserialization of untrusted input. This makes it possible for authenticated …	CWE-502 Deserialization of Untrusted Data	CVE-2024-7433	2024-11-14 07:04	2024-10-1	Show	GitHub Exploit DB Packet Storm

308265	8.8	HIGH Network	ultrapress	unseen_blog	The Unseen Blog theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.0 via deserialization of untrusted input. This makes it possible for authenticated …	CWE-502 Deserialization of Untrusted Data	CVE-2024-7432	2024-11-14 07:03	2024-10-1	Show	GitHub Exploit DB Packet Storm

308266	3.7	LOW Network	netadmin	netadmin_iam	A vulnerability was found in Netadmin Software NetAdmin IAM up to 3.5 and classified as problematic. Affected by this issue is some unknown functionality of the file /controller/api/Answer/ReturnUser…	CWE-203 Information Exposure Through Discrepancy	CVE-2024-9513	2024-11-14 06:57	2024-10-4	Show	GitHub Exploit DB Packet Storm

308267	9.8	CRITICAL Network	ruijie	rg-nbs2009g-p_firmware	An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows a remote attacker to gain privileges via the system/config_menu.htm.	NVD-CWE-noinfo	CVE-2024-24116	2024-11-14 06:43	2024-10-3	Show	GitHub Exploit DB Packet Storm

308268	-		-	-	wasm3 139076a is vulnerable to Denial of Service (DoS).	-	CVE-2024-27527	2024-11-14 06:35	2024-11-9	Show	GitHub Exploit DB Packet Storm

308269	8.1	HIGH Network	parseplatform	parse_server	Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. If the Parse Server option allowCustomObjectId: true is set, an attacker that is allowed to cre…	CWE-863 Incorrect Authorization	CVE-2024-47183	2024-11-14 06:15	2024-10-5	Show	GitHub Exploit DB Packet Storm

308270	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds write in trie_get_next_key() trie_get_next_key() allocates a node stack with size trie->max_prefixlen, whi…	CWE-787 Out-of-bounds Write	CVE-2024-50262	2024-11-14 06:10	2024-11-9	Show	GitHub Exploit DB Packet Storm