Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254791 4 警告 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL の mysqld におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2009-4019 2010-04-15 18:16 2009-11-30 Show GitHub Exploit DB Packet Storm
254792 6.8 警告 The PHP Group
アップル		 - PHP の posix_mkfifo 関数における open_basedir の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3558 2010-04-15 18:16 2009-11-23 Show GitHub Exploit DB Packet Storm
254793 4.4 警告 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL における権限チェックを回避される脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-4030 2010-04-15 18:16 2009-11-5 Show GitHub Exploit DB Packet Storm
254794 2.6 注意 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL のコマンドラインクライアントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4456 2010-04-15 18:15 2008-10-6 Show GitHub Exploit DB Packet Storm
254795 10 危険 アップル - Apple Mac OS X の Mail における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0508 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
254796 6.8 警告 アップル - Apple Mac OS X の画像 RAW におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0507 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
254797 6.8 警告 アップル - Apple Mac OS X の画像 RAW におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0506 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
254798 6.8 警告 アップル - Apple Mac OS X の ImageIO における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0505 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
254799 7.5 危険 アップル - Apple Mac OS X の iChat サーバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0504 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
254800 6.5 警告 アップル - Apple Mac OS X の iChat サーバにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0503 2010-04-14 17:10 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313091 9.0 CRITICAL
Network 		vrcx-team vrcx VRCX is an assistant/companion application for VRChat. In versions prior to 2024.03.23, a CefSharp browser with over-permission and cross-site scripting via overlay notification can be combined to re… CWE-79
Cross-site Scripting 		CVE-2024-42366 2024-08-29 23:04 2024-08-9 Show GitHub Exploit DB Packet Storm
313092 4.8 MEDIUM
Network 		concretecms concrete_cms Concrete CMS versions 9 through 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in getAttributeSetName().  A rogue administrator could inject malicious code. The Concrete CMS team gave this a CVS… CWE-79
Cross-site Scripting 		CVE-2024-7394 2024-08-29 22:41 2024-08-9 Show GitHub Exploit DB Packet Storm
313093 9.8 CRITICAL
Network 		havocframework havoc An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-41570 2024-08-29 22:32 2024-08-12 Show GitHub Exploit DB Packet Storm
313094 - - - Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentia… CWE-788
 Access of Memory Location After End of Buffer 		CVE-2024-38304 2024-08-29 22:25 2024-08-29 Show GitHub Exploit DB Packet Storm
313095 - - - Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vu… CWE-20
 Improper Input Validation  		CVE-2024-38303 2024-08-29 22:25 2024-08-29 Show GitHub Exploit DB Packet Storm
313096 7.2 HIGH
Network 		- - The Theme Editor plugin for WordPress is vulnerable to deserialization of untrusted input via the 'images_array' parameter in versions up to, and including 2.8. This makes it possible for authenticat… CWE-502
 Deserialization of Untrusted Data 		CVE-2022-2440 2024-08-29 22:25 2024-08-29 Show GitHub Exploit DB Packet Storm
313097 - - - The OpenTelemetry Collector module AWS firehose receiver is for ingesting AWS Kinesis Data Firehose delivery stream messages and parsing the records received based on the configured record type. `aws… - CVE-2024-45043 2024-08-29 22:25 2024-08-29 Show GitHub Exploit DB Packet Storm
313098 - - - Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v.7.4.12.60 has a command execution vulnerability, which can be exploited to obtain device administrator privileges via the getVar function i… - CVE-2024-42905 2024-08-29 22:25 2024-08-29 Show GitHub Exploit DB Packet Storm
313099 - - - A vulnerability in the software upgrade component of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Network Controller, formerly Cisco Cloud APIC, could allow an authe… - CVE-2024-20478 2024-08-29 22:25 2024-08-29 Show GitHub Exploit DB Packet Storm
313100 - - - A vulnerability in the DHCPv6 relay agent of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerabi… - CVE-2024-20446 2024-08-29 22:25 2024-08-29 Show GitHub Exploit DB Packet Storm