Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253451	3.5	注意	LightNEasy	-	LightNEasy の LightNEasy.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3978	2011-10-11 10:15	2011-10-4	Show	GitHub Exploit DB Packet Storm

253452	7.2	危険	NoMachine	-	NoMachine NX Node および NX Server の nxconfigure.sh における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2011-3977	2011-10-11 10:13	2011-08-5	Show	GitHub Exploit DB Packet Storm

253453	5	警告	IceWarp, Inc.	-	IceWarp Mail Server の IceWarp WebMail における設定情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3580	2011-10-11 10:11	2011-09-30	Show	GitHub Exploit DB Packet Storm

253454	6.4	警告	IceWarp, Inc.	-	IceWarp Mail Server の server/webmail.php における任意のファイルを読まれる脆弱性	CWE-399 リソース管理の問題	CVE-2011-3579	2011-10-11 10:10	2011-09-30	Show	GitHub Exploit DB Packet Storm

253455	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0554	2011-10-11 10:10	2011-09-29	Show	GitHub Exploit DB Packet Storm

253456	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0553	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

253457	4.3	警告	シマンテック	-	Symantec IM Manager の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0552	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

253458	4	警告	株式会社アークウェブ	-	A-Form におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2676	2011-10-7 12:04	2011-10-7	Show	GitHub Exploit DB Packet Storm

253459	5	警告	utage.org	-	宴会くんにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2675	2011-10-7 12:03	2011-10-7	Show	GitHub Exploit DB Packet Storm

253460	2.6	注意	HTC Corporation	-	複数の Android 用 HTC 製品における電話番号およびその他の重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3975	2011-10-7 11:46	2011-10-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311351	9.8	CRITICAL Network	totolink	n350rt_firmware	Incorrect access control in TOTOLINK N350RT V9.3.5u.6139_B20201216 allows attackers to obtain the apmib configuration file, which contains the username and the password, via a crafted request to /cgi…	NVD-CWE-noinfo	CVE-2024-42966	2024-10-25 05:35	2024-08-16	Show	GitHub Exploit DB Packet Storm

311352	-		-	-	Micro-Star International Z-series motherboards (Z590, Z490, and Z790) and B-series motherboards (B760, B560, B660, and B460) with firmware 7D25v14, 7D25v17 to 7D25v19, and 7D25v1A to 7D25v1H was disc…	-	CVE-2024-36877	2024-10-25 05:35	2024-08-13	Show	GitHub Exploit DB Packet Storm

311353	-		-	-	In certain Sonos products before S1 Release 11.12 and S2 release 15.9, the mt_7615.ko wireless driver does not properly validate an information element during negotiation of a WPA2 four-way handshake…	-	CVE-2023-50809	2024-10-25 05:35	2024-08-12	Show	GitHub Exploit DB Packet Storm

311354	5.3	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/view_students.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view STUDENT d…	NVD-CWE-Other	CVE-2024-41250	2024-10-25 05:35	2024-08-8	Show	GitHub Exploit DB Packet Storm

311355	6.5	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/admin_teacher_register_approval.php and /smsa/admin_teacher_register_approval_submit.php in Kashipara Responsive School Management System …	NVD-CWE-Other	CVE-2024-41251	2024-10-25 05:35	2024-08-8	Show	GitHub Exploit DB Packet Storm

311356	9.8	CRITICAL Network	ivanti	endpoint_manager_mobile	An insufficient authorization vulnerability in web component of EPMM prior to 12.1.0.1 allows an unauthorized attacker within the network to execute arbitrary commands on the underlying operating sys…	CWE-287 Improper Authentication	CVE-2024-36130	2024-10-25 05:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

311357	8.8	HIGH Network	google	chrome	Inappropriate implementation in V8 in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)	CWE-787 Out-of-bounds Write	CVE-2024-7535	2024-10-25 05:35	2024-08-7	Show	GitHub Exploit DB Packet Storm

311358	-		-	-	A mass assignment vulnerability exists in Pantera CRM versions 401.152 and 402.072. This flaw allows authenticated users to modify any user attribute, including roles, by injecting additional paramet…	-	CVE-2024-40531	2024-10-25 05:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

311359	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: btrfs: send: fix buffer overflow detection when copying path to cache entry Starting with commit c0247d289e73 ("btrfs: send: anno…	CWE-120 Classic Buffer Overflow	CVE-2024-49869	2024-10-25 05:28	2024-10-22	Show	GitHub Exploit DB Packet Storm

311360	7.0	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition In the svc_i3c_master_probe fun…	CWE-416 Use After Free	CVE-2024-49874	2024-10-25 05:27	2024-10-22	Show	GitHub Exploit DB Packet Storm