Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252881 6.8 警告 CMS Made Simple - CMS Made Simple における管理者パスワードのリセット要求の管理者認証をハイジャックされる脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3884 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
252882 6.8 警告 CMS Made Simple - CMS Made Simple の Change Group Permissions モジュールにおけるクロスサイトリクエストフォージェリ脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3883 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
252883 4.3 警告 CMS Made Simple - CMS Made Simple におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3882 2012-03-27 18:42 2010-10-8 Show GitHub Exploit DB Packet Storm
252884 4.3 警告 レッドハット - Red Hat JBoss Enterprise Application Platform の JMX Console におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3878 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
252885 4.3 警告 Mahara - Mahara の blocktype/groupviews/theme/raw/groupviews.tpl におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3871 2012-03-27 18:42 2010-11-9 Show GitHub Exploit DB Packet Storm
252886 4 警告 レッドハット - RHCS および Dogtag Certificate System における任意の認証番号を生成される脆弱性 CWE-310
暗号の問題 		CVE-2010-3869 2012-03-27 18:42 2010-11-8 Show GitHub Exploit DB Packet Storm
252887 5.8 警告 レッドハット - RHCS および Dogtag Certificate System における PIN を取得される脆弱性 CWE-287
不適切な認証 		CVE-2010-3868 2012-03-27 18:42 2010-11-8 Show GitHub Exploit DB Packet Storm
252888 2.6 注意 レッドハット - Red Hat JBoss Enterprise Application Platform および JBoss Enterprise Web Platform の Boss Remoting におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3862 2012-03-27 18:42 2010-12-8 Show GitHub Exploit DB Packet Storm
252889 6.4 警告 レッドハット - Red Hat Conga の Luciにおける repoze.who 認証をバイパスすることが容易になる脆弱性 CWE-287
不適切な認証 		CVE-2010-3852 2012-03-27 18:42 2010-11-2 Show GitHub Exploit DB Packet Storm
252890 4.9 警告 Linux - Linux kernel の ec_dev_ioctl 関数におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3850 2012-03-27 18:42 2010-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
319111 7.2 HIGH
Network 		acquia mautic Prior to the patched version, logged in users of Mautic are vulnerable to an SQL injection vulnerability in the Reports bundle. The user could retrieve and alter data like sensitive data, login, and… CWE-89
SQL Injection 		CVE-2022-25775 2024-09-24 08:22 2024-09-19 Show GitHub Exploit DB Packet Storm
319112 5.4 MEDIUM
Network 		acquia mautic Prior to the patched version, logged in users of Mautic are vulnerable to a self XSS vulnerability in the notifications within Mautic. Users could inject malicious code into the notification when sa… CWE-79
Cross-site Scripting 		CVE-2022-25774 2024-09-24 08:21 2024-09-19 Show GitHub Exploit DB Packet Storm
319113 4.8 MEDIUM
Network 		concretecms concrete_cms Concrete CMS versions 9.0.0 through 9.3.3 are affected by a stored XSS vulnerability in the "Top Navigator Bar" block. Since the "Top Navigator Bar" output was not sufficiently sanitized, a rogue adm… CWE-79
Cross-site Scripting 		CVE-2024-8660 2024-09-24 08:00 2024-09-18 Show GitHub Exploit DB Packet Storm
319114 5.5 MEDIUM
Local 		apple visionos The issue was addressed with improved handling of caches. This issue is fixed in visionOS 2. An app may be able to read sensitive data from the GPU memory. NVD-CWE-noinfo
CVE-2024-40790 2024-09-24 07:55 2024-09-17 Show GitHub Exploit DB Packet Storm
319115 - - - Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects: ?Product Affected Versions LoadMaster From 7.… CWE-20
 Improper Input Validation  		CVE-2024-6658 2024-09-24 05:15 2024-09-13 Show GitHub Exploit DB Packet Storm
319116 7.5 HIGH
Network 		apple macos A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A camera extension may be able to access the internet. CWE-281
 Improper Preservation of Permissions 		CVE-2024-27795 2024-09-24 05:01 2024-09-17 Show GitHub Exploit DB Packet Storm
319117 5.5 MEDIUM
Local 		apple macos A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data. CWE-281
 Improper Preservation of Permissions 		CVE-2024-27858 2024-09-24 04:56 2024-09-17 Show GitHub Exploit DB Packet Storm
319118 5.5 MEDIUM
Local 		apple macos The issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15. An app may be able to cause a denial-of-service. NVD-CWE-noinfo
CVE-2024-23237 2024-09-24 04:53 2024-09-17 Show GitHub Exploit DB Packet Storm
319119 5.3 MEDIUM
Network 		contao contao Contao is an Open Source CMS. In affected versions an untrusted user can inject insert tags into the canonical tag, which are then replaced on the web page (front end). Users are advised to update to… CWE-74
Injection 		CVE-2024-45612 2024-09-24 04:33 2024-09-18 Show GitHub Exploit DB Packet Storm
319120 6.1 MEDIUM
Local 		apple macos
iphone_os
ipados 		A privacy issue was addressed with improved handling of files. This issue is fixed in iOS 18 and iPadOS 18, macOS Sequoia 15. An unencrypted document may be written to a temporary file when using pri… NVD-CWE-noinfo
CVE-2024-40826 2024-09-24 04:25 2024-09-17 Show GitHub Exploit DB Packet Storm