Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253081	4	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2377	2010-08-6 18:29	2010-07-13	Show	GitHub Exploit DB Packet Storm

253082	4	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HCM - Time & Labor コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2379	2010-08-6 18:29	2010-07-13	Show	GitHub Exploit DB Packet Storm

253083	4	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HCM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2398	2010-08-6 18:28	2010-07-13	Show	GitHub Exploit DB Packet Storm

253084	4.3	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise FSCM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2380	2010-08-6 18:28	2010-07-13	Show	GitHub Exploit DB Packet Storm

253085	5.5	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2402	2010-08-6 18:28	2010-07-13	Show	GitHub Exploit DB Packet Storm

253086	5.5	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HCM - eProfile Mgr コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2401	2010-08-6 18:28	2010-07-13	Show	GitHub Exploit DB Packet Storm

253087	1.9	注意	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2371	2010-08-6 18:27	2010-07-13	Show	GitHub Exploit DB Packet Storm

253088	4.3	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2372	2010-08-6 18:27	2010-07-13	Show	GitHub Exploit DB Packet Storm

253089	10	危険	アップルサイバートラスト株式会社サン・マイクロシステムズレッドハット	-	複数の Oracle 製品の New Java Plug-in コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0887	2010-08-5 17:16	2010-04-15	Show	GitHub Exploit DB Packet Storm

253090	2.6	注意	オラクル	-	Oracle E-Business Suite の Oracle Knowledge Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0836	2010-08-5 16:36	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
312421	9.8	CRITICAL Network	arajajyothibabu	school_management_system	School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at unitmarks.php.	CWE-89 SQL Injection	CVE-2024-42572	2024-08-22 01:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

312422	-		-	-	An arbitrary file upload vulnerability in ERP commit 44bd04 allows attackers to execute arbitrary code via uploading a crafted HTML file.	-	CVE-2024-42563	2024-08-22 01:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

312423	-		-	-	Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the room_type parameter at admin_room_removed.php.	-	CVE-2024-42556	2024-08-22 01:35	2024-08-20	Show	GitHub Exploit DB Packet Storm

312424	9.0	CRITICAL Network	typecho	typecho	A stored cross-site scripting (XSS) vulnerability in Typecho v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.	CWE-79 Cross-site Scripting	CVE-2024-35540	2024-08-22 01:05	2024-08-21	Show	GitHub Exploit DB Packet Storm

312425	8.6	HIGH Local	scilico	i-librarian	Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component.	CWE-79 Cross-site Scripting	CVE-2024-40500	2024-08-22 01:05	2024-08-13	Show	GitHub Exploit DB Packet Storm

312426	5.3	MEDIUM Network	matrix	javascript_sdk	matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. A malicious homeserver can craft a room or room structure such that the predecessors form a cycle. The matrix-js-sdk's g…	CWE-674 Uncontrolled Recursion	CVE-2024-42369	2024-08-22 01:01	2024-08-21	Show	GitHub Exploit DB Packet Storm

312427	8.8	HIGH Network	projectcapsule	capsule	Capsule is a multi-tenancy and policy-based framework for Kubernetes. In Capsule v0.7.0 and earlier, the tenant-owner can patch any arbitrary namespace that has not been taken over by a tenant (i.e.,…	CWE-863 Incorrect Authorization	CVE-2024-39690	2024-08-22 01:01	2024-08-21	Show	GitHub Exploit DB Packet Storm

312428	5.4	MEDIUM Network	3ds	3dexperience	A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execu…	CWE-79 Cross-site Scripting	CVE-2024-6378	2024-08-22 00:53	2024-08-20	Show	GitHub Exploit DB Packet Storm

312429	9.8	CRITICAL Network	gotribe	gotribe-admin	A vulnerability was found in Go-Tribe gotribe-admin 1.0 and classified as problematic. Affected by this issue is the function InitRoutes of the file internal/app/routes/routes.go of the component Log…	CWE-502 Deserialization of Untrusted Data	CVE-2024-8003	2024-08-22 00:51	2024-08-20	Show	GitHub Exploit DB Packet Storm

312430	9.8	CRITICAL Network	demozx	gf_cms	A vulnerability was found in demozx gf_cms 1.0/1.0.1. It has been classified as critical. This affects the function init of the file internal/logic/auth/auth.go of the component JWT Authentication. T…	CWE-798 Use of Hard-coded Credentials	CVE-2024-8005	2024-08-22 00:49	2024-08-20	Show	GitHub Exploit DB Packet Storm