Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255031 5 警告 サン・マイクロシステムズ
VMware
レッドハット		 - Sun Java SE の TrueType フォント解析機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3729 2010-02-23 11:51 2009-11-9 Show GitHub Exploit DB Packet Storm
255032 5 警告 アップル
サイバートラスト株式会社
VMware
サン・マイクロシステムズ
レッドハット		 - Sun Java SE および OpenJDK の Java Runtime Environment (JRE) における ディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3728 2010-02-23 11:51 2009-11-9 Show GitHub Exploit DB Packet Storm
255033 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0248 2010-02-22 12:15 2010-01-21 Show GitHub Exploit DB Packet Storm
255034 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0244 2010-02-22 12:15 2010-01-21 Show GitHub Exploit DB Packet Storm
255035 9.3 危険 マイクロソフト - Microsoft Internet Explorer の URL 検証における任意のローカルプログラムを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0027 2010-02-22 12:15 2010-01-21 Show GitHub Exploit DB Packet Storm
255036 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0247 2010-02-22 12:14 2010-01-21 Show GitHub Exploit DB Packet Storm
255037 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0246 2010-02-22 12:14 2010-01-21 Show GitHub Exploit DB Packet Storm
255038 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0245 2010-02-22 12:13 2010-01-21 Show GitHub Exploit DB Packet Storm
255039 4.3 警告 マイクロソフト - Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性 CWE-DesignError
CVE-2009-4074 2010-02-22 12:13 2009-11-25 Show GitHub Exploit DB Packet Storm
255040 6.6 警告 マイクロソフト - Microsoft Windows の kernel における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0232 2010-02-22 12:12 2010-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313591 - - - A vulnerability in the SIP call processing function of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could all… - CVE-2024-20375 2024-08-22 02:24 2024-08-22 Show GitHub Exploit DB Packet Storm
313592 9.8 CRITICAL
Network 		arajajyothibabu school_management_system School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at unitmarks.php. CWE-89
SQL Injection 		CVE-2024-42572 2024-08-22 01:35 2024-08-20 Show GitHub Exploit DB Packet Storm
313593 - - - An arbitrary file upload vulnerability in ERP commit 44bd04 allows attackers to execute arbitrary code via uploading a crafted HTML file. - CVE-2024-42563 2024-08-22 01:35 2024-08-20 Show GitHub Exploit DB Packet Storm
313594 - - - Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the room_type parameter at admin_room_removed.php. - CVE-2024-42556 2024-08-22 01:35 2024-08-20 Show GitHub Exploit DB Packet Storm
313595 9.0 CRITICAL
Network 		typecho typecho A stored cross-site scripting (XSS) vulnerability in Typecho v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. CWE-79
Cross-site Scripting 		CVE-2024-35540 2024-08-22 01:05 2024-08-21 Show GitHub Exploit DB Packet Storm
313596 8.6 HIGH
Local 		scilico i-librarian Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component. CWE-79
Cross-site Scripting 		CVE-2024-40500 2024-08-22 01:05 2024-08-13 Show GitHub Exploit DB Packet Storm
313597 5.3 MEDIUM
Network 		matrix javascript_sdk matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. A malicious homeserver can craft a room or room structure such that the predecessors form a cycle. The matrix-js-sdk's g… CWE-674
 Uncontrolled Recursion 		CVE-2024-42369 2024-08-22 01:01 2024-08-21 Show GitHub Exploit DB Packet Storm
313598 8.8 HIGH
Network 		projectcapsule capsule Capsule is a multi-tenancy and policy-based framework for Kubernetes. In Capsule v0.7.0 and earlier, the tenant-owner can patch any arbitrary namespace that has not been taken over by a tenant (i.e.,… CWE-863
 Incorrect Authorization 		CVE-2024-39690 2024-08-22 01:01 2024-08-21 Show GitHub Exploit DB Packet Storm
313599 5.4 MEDIUM
Network 		3ds 3dexperience A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execu… CWE-79
Cross-site Scripting 		CVE-2024-6378 2024-08-22 00:53 2024-08-20 Show GitHub Exploit DB Packet Storm
313600 9.8 CRITICAL
Network 		gotribe gotribe-admin A vulnerability was found in Go-Tribe gotribe-admin 1.0 and classified as problematic. Affected by this issue is the function InitRoutes of the file internal/app/routes/routes.go of the component Log… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-8003 2024-08-22 00:51 2024-08-20 Show GitHub Exploit DB Packet Storm