Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228171 7.5 危険 Tamlyn Creative Pty - Joomla! 用の bfsurvey_pro コンポーネントなどにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2255 2012-12-20 19:29 2010-06-9 Show GitHub Exploit DB Packet Storm
228172 7.5 危険 shape5 - Joomla! 用の Shape5 Bridge of Hope template における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2254 2012-12-20 19:29 2010-06-9 Show GitHub Exploit DB Packet Storm
228173 6.8 警告 Gisle Aas - libwww-perl の lwp-download におけるファイルを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2253 2012-12-20 19:29 2010-07-6 Show GitHub Exploit DB Packet Storm
228174 2.1 注意 レッドハット - Red Hat Directory Server 用の setup-ds.pl および setup-ds-admin.pl における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2241 2012-12-20 19:29 2010-08-3 Show GitHub Exploit DB Packet Storm
228175 2.1 注意 レッドハット - Red Hat Enterprise Virtualization Manager のスナップショットマージ機能における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2224 2012-12-20 19:29 2010-06-22 Show GitHub Exploit DB Packet Storm
228176 2.1 注意 レッドハット - Red Hat Enterprise Virtualization Hypervisor の VDSM における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2223 2012-12-20 19:29 2010-06-22 Show GitHub Exploit DB Packet Storm
228177 7.2 危険 RPM - RPM の lib/fsm.c におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2199 2012-12-20 19:29 2010-06-8 Show GitHub Exploit DB Packet Storm
228178 7.2 危険 RPM - RPM の lib/fsm.c における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2198 2012-12-20 19:29 2010-06-8 Show GitHub Exploit DB Packet Storm
228179 5.8 警告 RPM - RPM の rpmbuild における home ディレクトリを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2197 2012-12-20 19:29 2010-06-8 Show GitHub Exploit DB Packet Storm
228180 1.9 注意 vincent fourmond - pmount の policy.c における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2192 2012-12-20 19:29 2010-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
310611 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: fs: don't try and remove empty rbtree node When copying a namespace we won't have added the new copy into the namespace rbtree un… NVD-CWE-noinfo
CVE-2024-50204 2024-11-20 01:17 2024-11-8 Show GitHub Exploit DB Packet Storm
310612 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fix address emission with tag-based KASAN enabled When BPF_TRAMP_F_CALL_ORIG is enabled, the address of a bpf_tramp_i… CWE-787
 Out-of-bounds Write 		CVE-2024-50203 2024-11-20 01:16 2024-11-8 Show GitHub Exploit DB Packet Storm
310613 - - - Cachi2 is a command-line interface tool that pre-fetches a project's dependencies to aid in making the project's build process network-isolated. Prior to version 0.14.0, secrets may be shown in logs … CWE-497
 Exposure of Sensitive System Information to an Unauthorized Control Sphere 		CVE-2024-52582 2024-11-20 01:15 2024-11-20 Show GitHub Exploit DB Packet Storm
310614 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfs_find_entry() Syzbot reported that a task hang occurs in vcs_open() during a fu… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2024-50202 2024-11-20 01:12 2024-11-8 Show GitHub Exploit DB Packet Storm
310615 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Fix encoder->possible_clones Include the encoder itself in its possible_clones bitmask. In the past nothing validated… NVD-CWE-noinfo
CVE-2024-50201 2024-11-20 01:08 2024-11-8 Show GitHub Exploit DB Packet Storm
310616 4.8 MEDIUM
Network 		open-emr openemr A stored cross-site scripting (XSS) vulnerability exists in openemr/openemr version 7.0.1. An attacker can inject malicious payloads into the 'inputBody' field in the Secure Messaging feature, which … CWE-79
Cross-site Scripting 		CVE-2024-0875 2024-11-20 01:03 2024-11-15 Show GitHub Exploit DB Packet Storm
310617 7.5 HIGH
Network 		schneider-electric powerlogic_pm5341_firmware
powerlogic_pm5340_firmware
powerlogic_pm5320_firmware 		CWE-400: An Uncontrolled Resource Consumption vulnerability exists that could cause the device to become unresponsive resulting in communication loss when a large amount of IGMP packets is present in… CWE-400
 Uncontrolled Resource Consumption 		CVE-2024-9409 2024-11-20 00:59 2024-11-13 Show GitHub Exploit DB Packet Storm
310618 4.8 MEDIUM
Network 		vektor-inc vk_all_in_one_expansion_unit Cross-site scripting vulnerability exists in VK All in One Expansion Unit versions prior to 9.100.1.0. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of th… CWE-79
Cross-site Scripting 		CVE-2024-52268 2024-11-20 00:57 2024-11-13 Show GitHub Exploit DB Packet Storm
310619 4.8 MEDIUM
Network 		pimcore pimcore A stored Cross-site Scripting (XSS) vulnerability exists in the Conditions tab of Pricing Rules in pimcore/pimcore versions 10.5.19. The vulnerability is present in the From and To fields of the Date… CWE-79
Cross-site Scripting 		CVE-2023-2332 2024-11-20 00:55 2024-11-15 Show GitHub Exploit DB Packet Storm
310620 5.4 MEDIUM
Network 		royal-elementor-addons royal_elementor_addons The Royal Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown widget in all versions up to, and including, 1.7.1001 due to insu… CWE-79
Cross-site Scripting 		CVE-2024-9668 2024-11-20 00:55 2024-11-13 Show GitHub Exploit DB Packet Storm