Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226831	5.8	警告	GNU Project	-	GnuPG の g10/import.c における公開鍵リングのデータベースを破壊される脆弱性	CWE-20 不適切な入力確認	CVE-2012-6085	2013-01-25 14:18	2012-12-6	Show	GitHub Exploit DB Packet Storm

226832	4.3	警告	Cenango Financial LLC	-	WikidForum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2099	2013-01-25 14:17	2012-04-12	Show	GitHub Exploit DB Packet Storm

226833	6.8	警告	Sitecom	-	Sitecom WLM-2501 におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1922	2013-01-25 14:16	2013-01-24	Show	GitHub Exploit DB Packet Storm

226834	4.3	警告	Simple Realty Themes	-	WordPress 用 Advanced Text Widget プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4618	2013-01-25 14:15	2013-01-24	Show	GitHub Exploit DB Packet Storm

226835	4.3	警告	IBM	-	WebSphere Application Server (WAS) におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2013-01-25 12:01	2013-01-25	Show	GitHub Exploit DB Packet Storm

226836	2.1	注意	MySQL AB	-	MySQL における権限チェックを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4452	2013-01-24 17:39	2012-10-9	Show	GitHub Exploit DB Packet Storm

226837	4	警告	Jan Kara	-	Linux DiskQuota における hosts.deny の TCP Wrapper ルールを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3417	2013-01-24 17:36	2012-08-13	Show	GitHub Exploit DB Packet Storm

226838	7.5	危険	シックス・アパート株式会社	-	Movable Type の mt-upgrade.cgi における eval インジェクションおよび SQL インジェクションの脆弱性	CWE-287 不適切な認証	CVE-2013-0209	2013-01-24 14:48	2013-01-7	Show	GitHub Exploit DB Packet Storm

226839	7.5	危険	Nagios Enterprises, LLC The Icinga Project	-	Nagios Core の history.cgi におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6096	2013-01-24 14:47	2013-01-12	Show	GitHub Exploit DB Packet Storm

226840	1.5	注意	シトリックス・システムズ Apache Software Foundation	-	Apache CloudStack および Citrix CloudPlatform における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-5616	2013-01-24 14:46	2013-01-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311711	7.5	HIGH Network	microsoft	.net_framework .net visual_studio_2022	.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2024-43483	2024-10-22 02:35	2024-10-9	Show	GitHub Exploit DB Packet Storm

311712	-		microsoft	internet_explorer	The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to execute arbitrary code by accessing an object that (1) was not properly initializ…	CWE-94 Code Injection	CVE-2010-1260	2024-10-22 02:35	2010-06-9	Show	GitHub Exploit DB Packet Storm

311713	-		microsoft	internet_explorer windows_2003_server windows_7 windows_server_2003 windows_server_2008 windows_vista windows_xp	Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via vectors related to the TIME2 behavior, the CTimeAction object, and de…	CWE-94 Code Injection	CVE-2010-0492	2024-10-22 02:35	2010-04-1	Show	GitHub Exploit DB Packet Storm

311714	-		microsoft	internet_explorer	Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly ini…	CWE-94 Code Injection	CVE-2010-0248	2024-10-22 02:35	2010-01-23	Show	GitHub Exploit DB Packet Storm

311715	-		-	-	Improper Input Validation in the admin portal of Ivanti Connect Secure before 22.7R2.1 and 9.1R18.9, or Ivanti Policy Secure before 22.7R1.1 allows a remote authenticated attacker to achieve remote c…	-	CVE-2024-37404	2024-10-22 02:10	2024-10-19	Show	GitHub Exploit DB Packet Storm

311716	-		-	-	Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector.	-	CVE-2024-29821	2024-10-22 02:10	2024-10-19	Show	GitHub Exploit DB Packet Storm

311717	-		-	-	Ivanti DSM < version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector.	-	CVE-2024-29213	2024-10-22 02:10	2024-10-19	Show	GitHub Exploit DB Packet Storm

311718	-		-	-	In J2eeFAST <=2.7, the backend function has unsafe filtering, which allows an attacker to trigger certain sensitive functions resulting in arbitrary code execution.	-	CVE-2024-45944	2024-10-22 02:10	2024-10-19	Show	GitHub Exploit DB Packet Storm

311719	-		-	-	Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains a Use of a Broken or Risky Cryptographic Algorithm vulnerability. A low privileged attacker with remote access could p…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2024-48016	2024-10-22 02:10	2024-10-19	Show	GitHub Exploit DB Packet Storm

311720	-		-	-	Dell Secure Connect Gateway (SCG) 5.0 Appliance - SRS, version(s) 5.24, contains an Improper Certificate Validation vulnerability. A low privileged attacker with remote access could potentially explo…	CWE-295 Improper Certificate Validation	CVE-2024-47241	2024-10-22 02:10	2024-10-19	Show	GitHub Exploit DB Packet Storm