Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249101 10 危険 Novell - Novell GroupWise の IMAP サーバコンポーネンにおけるメモリ二重解放の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4711 2012-03-27 18:42 2010-11-4 Show GitHub Exploit DB Packet Storm
249102 4.3 警告 Yahoo! - YUI のメニューウィジェットにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4710 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
249103 7.5 危険 Joomla! - Joomla! における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4696 2012-03-27 18:42 2010-11-4 Show GitHub Exploit DB Packet Storm
249104 4.3 警告 XWiki - XWiki Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4642 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
249105 7.5 危険 XWiki - XWiki Enterprise における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4641 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
249106 4.3 警告 XWiki - XWiki Watch におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4640 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
249107 7.5 危険 intendance - MySource Matrix の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4639 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
249108 6.8 警告 iptechinside - JQuarks4s コンポーネントの submitSurvey 関数における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4638 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
249109 4.3 警告 finalcut - WordPress の FeedList プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4637 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
249110 7.5 危険 site2nite - Site2Nite Business e-Listings の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4636 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314791 - - - Missing Authorization vulnerability in VeronaLabs WP SMS.This issue affects WP SMS: from n/a through 6.9.3. CWE-862
 Missing Authorization 		CVE-2024-43331 2024-08-22 21:48 2024-08-22 Show GitHub Exploit DB Packet Storm
314792 - - - Dell Power Manager (DPM), versions 3.15.0 and prior, contains an Incorrect Privilege Assignment vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability… CWE-266
 Incorrect Privilege Assignment 		CVE-2024-39576 2024-08-22 21:48 2024-08-22 Show GitHub Exploit DB Packet Storm
314793 - - - A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and… - CVE-2024-20486 2024-08-22 21:48 2024-08-22 Show GitHub Exploit DB Packet Storm
314794 - - - Multiple vulnerabilities in the REST API of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct blind SQL injection attacks. These vulnerabilities are due… - CVE-2024-20417 2024-08-22 21:48 2024-08-22 Show GitHub Exploit DB Packet Storm
314795 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2022-48900 2024-08-22 17:15 2024-08-22 Show GitHub Exploit DB Packet Storm
314796 7.8 HIGH
Local 		kingsoft wps_office Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12.2.0.13110 to 12.2.0.17115 (exclusive) on Windows allows an attacker to load an arbitrary Windows libr… CWE-22
Path Traversal 		CVE-2024-7263 2024-08-22 15:15 2024-08-16 Show GitHub Exploit DB Packet Storm
314797 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-42143 2024-08-22 09:15 2024-07-30 Show GitHub Exploit DB Packet Storm
314798 - - - Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. - CVE-2024-37353 2024-08-22 09:15 2024-06-21 Show GitHub Exploit DB Packet Storm
314799 9.8 CRITICAL
Network 		jayesh online_exam_system A Broken Access Control vulnerability was found in /admin/update.php and /admin/dashboard.php in Kashipara Online Exam System v1.0, which allows remote unauthenticated attackers to view administrator… NVD-CWE-Other
CVE-2024-40480 2024-08-22 06:35 2024-08-12 Show GitHub Exploit DB Packet Storm
314800 - - - Stack-based buffer overflow vulnerability in Tenda AC18 V15.03.3.10_EN allows a remote attacker to execute arbitrary code via the ssid parameter at ip/goform/fast_setting_wifi_set. - CVE-2024-41630 2024-08-22 06:35 2024-08-1 Show GitHub Exploit DB Packet Storm