Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251091	4.3	警告	DNN	-	DotNetNuke の Install/InstallWizard.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4514	2012-03-27 18:42	2010-12-9	Show	GitHub Exploit DB Packet Storm

251092	4.3	警告	zimplit	-	Zimplit CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4513	2012-03-27 18:42	2010-12-9	Show	GitHub Exploit DB Packet Storm

251093	7.2	危険	Cobbler project	-	Cobbler における詳細不明な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4512	2012-03-27 18:42	2010-04-23	Show	GitHub Exploit DB Packet Storm

251094	10	危険	シックス・アパート株式会社	-	Movable Type における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2010-4511	2012-03-27 18:42	2010-12-9	Show	GitHub Exploit DB Packet Storm

251095	10	危険	シックス・アパート株式会社	-	Movable Type における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2010-4509	2012-03-27 18:42	2010-12-9	Show	GitHub Exploit DB Packet Storm

251096	10	危険	Mozilla Foundation	-	Mozilla Firefox の WebSockets 実装における脆弱性	CWE-noinfo 情報不足	CVE-2010-4508	2012-03-27 18:42	2010-12-9	Show	GitHub Exploit DB Packet Storm

251097	9.3	危険	clear	-	ClearSpot の iSpot における管理者の認証をクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-4507	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

251098	6.8	警告	injader	-	Injader の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4505	2012-03-27 18:42	2010-12-8	Show	GitHub Exploit DB Packet Storm

251099	4.3	警告	Intelliants	-	eSyndiCat Directory におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4504	2012-03-27 18:42	2010-12-8	Show	GitHub Exploit DB Packet Storm

251100	7.5	危険	aigaion	-	Aigaion の indexlight.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4503	2012-03-27 18:42	2010-12-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222451	6.5	MEDIUM Adjacent	linux debian canonical netapp oracle	linux_kernel debian_linux ubuntu_linux cloud_backup steelstore_cloud_integrated_storage data_availability_services solidfire hci_management_node active_iq_unified_manager e…	An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to send IAPP location updates for statio…	CWE-287 Improper Authentication	CVE-2019-5108	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

222452	8.8	HIGH Adjacent	huawei	elle-al00b_firmware	Huawei smart phones with earlier versions than ELLE-AL00B 9.1.0.222(C00E220R2P1) have a buffer overflow vulnerability. An attacker may intercept and tamper with the packet in the local area network (…	CWE-120 Classic Buffer Overflow	CVE-2019-5276	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

222453	5.5	MEDIUM Local	huawei	oceanstor_sns3096_firmware	Huawei OceanStor SNS3096 V100R002C01 have an information disclosure vulnerability. Attackers with low privilege can exploit this vulnerability by performing some specific operations. Successful explo…	NVD-CWE-noinfo	CVE-2019-5267	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

222454	7.5	HIGH Network	huawei	p30_firmware	Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an insufficient input validation vulnerability. Attackers can exploit this vulnerability by sending crafted packets to the affected …	CWE-20 Improper Input Validation	CVE-2019-5266	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

222455	7.5	HIGH Network	huawei	p30_firmware	Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an improper access control vulnerability. The function incorrectly controls certain access messages, attackers can simulate a sender…	NVD-CWE-noinfo	CVE-2019-5265	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

222456	6.1	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality …	CWE-79 Cross-site Scripting	CVE-2019-4744	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm

222457	4.3	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-4743	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm

222458	6.1	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit …	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2019-4742	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm

222459	4.3	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website …	CWE-352 Origin Validation Error	CVE-2019-4736	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm

222460	6.5	MEDIUM Network	gitlab	gitlab	An IDOR vulnerability exists in GitLab <v12.1.2, <v12.0.4, and <v11.11.6 that allowed uploading files from project archive to replace other users files potentially allowing an attacker to replace pro…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2019-5469	2024-11-21 13:44	2019-12-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed