Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228171 4.3 警告 Feedweb Research - WordPress 用 Feedweb プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3720 2013-06-3 11:26 2013-03-31 Show GitHub Exploit DB Packet Storm
228172 4.3 警告 algisinfo - Joomla! 用の aiContactSafe コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3719 2013-06-3 11:25 2013-04-16 Show GitHub Exploit DB Packet Storm
228173 5 警告 シスコシステムズ - Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1213 2013-05-31 14:32 2013-02-13 Show GitHub Exploit DB Packet Storm
228174 5 警告 シスコシステムズ - Cisco Nexus 1000V 上で稼働する Cisco NX-OS における VEM にアクセスされる脆弱性 CWE-287
不適切な認証 		CVE-2013-1211 2013-05-31 14:19 2013-05-28 Show GitHub Exploit DB Packet Storm
228175 5.4 警告 シスコシステムズ - Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1210 2013-05-31 14:17 2013-05-28 Show GitHub Exploit DB Packet Storm
228176 5 警告 シスコシステムズ - Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるパケットレベルの暗号化および完全性保護を無効にされる脆弱性 CWE-287
不適切な認証 		CVE-2013-1209 2013-05-31 14:14 2013-05-28 Show GitHub Exploit DB Packet Storm
228177 5.8 警告 シスコシステムズ - Cisco Nexus 1000V 上で稼働する Cisco NX-OS におけるネットワークトラフィックを傍受または変更される脆弱性 CWE-310
暗号の問題 		CVE-2013-1208 2013-05-31 14:13 2013-05-28 Show GitHub Exploit DB Packet Storm
228178 2.6 注意 アドビシステムズ - Adobe Reader X における Sandbox 機能が回避される脆弱性 CWE-Other
その他 		- 2013-05-31 12:04 2013-05-31 Show GitHub Exploit DB Packet Storm
228179 2.6 注意 アップル - Safari における情報漏えいの脆弱性 CWE-Other
その他 		- 2013-05-31 12:03 2013-05-31 Show GitHub Exploit DB Packet Storm
228180 7.2 危険 Google
LG Electronics		 - LG Optimus G E973 上の Android 用 LG Hidden Menu における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3666 2013-05-30 16:39 2013-05-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
318961 7.5 HIGH
Network 		microsoft power_platform_terraform_provider Power Platform Terraform Provider allows managing environments and other resources within Power Platform. Versions prior to 3.0.0 have an issue in the Power Platform Terraform Provider where sensitiv… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-47083 2024-10-4 00:11 2024-09-26 Show GitHub Exploit DB Packet Storm
318962 9.3 CRITICAL
Adjacent 		cisco ios_xe A vulnerability in the Central Web Authentication (CWA) feature of Cisco IOS XE Software for Wireless Controllers could allow an unauthenticated, adjacent attacker to bypass the pre-authentication ac… CWE-863
 Incorrect Authorization 		CVE-2024-20510 2024-10-3 23:52 2024-09-26 Show GitHub Exploit DB Packet Storm
318963 6.5 MEDIUM
Network 		cisco unified_threat_defense_snort_intrusion_prevention_system_engine A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS) Engine for Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass configured sec… CWE-787
 Out-of-bounds Write 		CVE-2024-20508 2024-10-3 23:43 2024-09-26 Show GitHub Exploit DB Packet Storm
318964 5.4 MEDIUM
Network 		themedy toolbox The Themedy Toolbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's themedy_col, themedy_social_link, themedy_alertbox, and themedy_pullleft shortcodes in all versi… CWE-79
Cross-site Scripting 		CVE-2024-9177 2024-10-3 23:32 2024-09-26 Show GitHub Exploit DB Packet Storm
318965 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: fix panic caused by partcmd_update We find a bug as below: BUG: unable to handle page fault for address: 00000003 … NVD-CWE-noinfo
CVE-2024-44975 2024-10-3 23:32 2024-09-5 Show GitHub Exploit DB Packet Storm
318966 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: mm, slub: do not call do_slab_free for kfence object In 782f8906f805 the freeing of kfence objects was moved from deep inside do_… NVD-CWE-noinfo
CVE-2024-44973 2024-10-3 23:23 2024-09-5 Show GitHub Exploit DB Packet Storm
318967 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink When all the strides in a WQE have been consumed, the WQE is unlinked from t… NVD-CWE-noinfo
CVE-2024-44970 2024-10-3 23:22 2024-09-5 Show GitHub Exploit DB Packet Storm
318968 7.5 HIGH
Network 		cisco ios_xr A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2024-20304 2024-10-3 23:20 2024-09-12 Show GitHub Exploit DB Packet Storm
318969 9.8 CRITICAL
Network 		telerik ui_for_wpf In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a command injection attack is possible through improper neutralization of hyperlink elements. CWE-77
Command Injection 		CVE-2024-7575 2024-10-3 22:52 2024-09-25 Show GitHub Exploit DB Packet Storm
318970 9.8 CRITICAL
Network 		telerik ui_for_wpf In Progress Telerik UI for WPF versions prior to 2024 Q3 (2024.3.924), a code execution attack is possible through an insecure deserialization vulnerability. CWE-502
 Deserialization of Untrusted Data 		CVE-2024-7576 2024-10-3 22:51 2024-09-25 Show GitHub Exploit DB Packet Storm