Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224581	6.8	警告	IndiaNIC	-	WordPress 用 IndiaNIC Testimonial プラグインにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-5672	2013-09-12 14:31	2013-09-1	Show	GitHub Exploit DB Packet Storm

224582	4.3	警告	ImageMagick	-	ImageMagick の coders/gif.c 内の ReadGIFImage 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-4298	2013-09-12 14:29	2013-08-5	Show	GitHub Exploit DB Packet Storm

224583	5	警告	Fedora Project	-	389 Directory Server の ns-slapd におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-4283	2013-09-12 14:16	2013-08-28	Show	GitHub Exploit DB Packet Storm

224584	6.9	警告	GNOME Project	-	GNOME Display Manager における任意のディレクトリのパーミッションを変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2013-4169	2013-09-12 13:42	2013-09-5	Show	GitHub Exploit DB Packet Storm

224585	3.5	注意	AlienWP	-	Drupal 用 Hatch テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4138	2013-09-11 16:42	2013-07-10	Show	GitHub Exploit DB Packet Storm

224586	7.2	危険	ソフォス	-	Sophos Web Appliance の /opt/cma/bin/clear_keys.pl の close_connections 関数における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4984	2013-09-11 14:45	2013-09-9	Show	GitHub Exploit DB Packet Storm

224587	7.5	危険	VMware	-	VMware ESX および ESXi におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3657	2013-09-11 14:02	2013-09-6	Show	GitHub Exploit DB Packet Storm

224588	6.4	警告	VMware	-	VMware ESX および ESXi におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-3658	2013-09-11 13:54	2013-09-6	Show	GitHub Exploit DB Packet Storm

224589	4.3	警告	VideoWhisper.com	-	WordPress 用 VideoWhisper Live Streaming Integration プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5714	2013-09-11 13:51	2013-08-23	Show	GitHub Exploit DB Packet Storm

224590	5	警告	Digium	-	複数の Asterisk 製品の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5642	2013-09-11 13:50	2013-08-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313401	4.9	MEDIUM Network	oracle	application_express	Vulnerability in Oracle Application Express (component: General). Supported versions that are affected are 23.2 and 24.1. Difficult to exploit vulnerability allows low privileged attacker with netw…	NVD-CWE-noinfo	CVE-2024-21261	2024-10-22 03:27	2024-10-16	Show	GitHub Exploit DB Packet Storm

313402	8.8	HIGH Network	vmware	vmware_hcx	An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A malicious authenticated user with non-administrator privileges may be able to enter specially crafted …	CWE-89 SQL Injection	CVE-2024-38814	2024-10-22 03:20	2024-10-17	Show	GitHub Exploit DB Packet Storm

313403	7.5	HIGH Network	microsoft	.net visual_studio_2022	.NET and Visual Studio Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43485	2024-10-22 03:01	2024-10-9	Show	GitHub Exploit DB Packet Storm

313404	7.5	HIGH Network	microsoft	.net_framework .net visual_studio_2022	.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43484	2024-10-22 02:35	2024-10-9	Show	GitHub Exploit DB Packet Storm

313405	7.5	HIGH Network	microsoft	.net_framework .net visual_studio_2022	.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43483	2024-10-22 02:35	2024-10-9	Show	GitHub Exploit DB Packet Storm

313406	-		microsoft	internet_explorer	The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to execute arbitrary code by accessing an object that (1) was not properly initializ…	CWE-94 Code Injection	CVE-2010-1260	2024-10-22 02:35	2010-06-9	Show	GitHub Exploit DB Packet Storm

313407	-		microsoft	internet_explorer windows_2003_server windows_7 windows_server_2003 windows_server_2008 windows_vista windows_xp	Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and de…	CWE-94 Code Injection	CVE-2010-0492	2024-10-22 02:35	2010-04-1	Show	GitHub Exploit DB Packet Storm

313408	-		microsoft	internet_explorer	Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly ini…	CWE-94 Code Injection	CVE-2010-0248	2024-10-22 02:35	2010-01-23	Show	GitHub Exploit DB Packet Storm

313409	-		-	-	Improper Input Validation in the admin portal of Ivanti Connect Secure before 22.7R2.1 and 9.1R18.9, or Ivanti Policy Secure before 22.7R1.1 allows a remote authenticated attacker to achieve remote c…	-	CVE-2024-37404	2024-10-22 02:10	2024-10-19	Show	GitHub Exploit DB Packet Storm

313410	-		-	-	Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector.	-	CVE-2024-29821	2024-10-22 02:10	2024-10-19	Show	GitHub Exploit DB Packet Storm