Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259971 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0986 2010-05-31 18:26 2010-05-11 Show GitHub Exploit DB Packet Storm
259972 9.3 危険 アドビシステムズ - Adobe Shockwave Player における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0130 2010-05-28 18:44 2010-05-11 Show GitHub Exploit DB Packet Storm
259973 9.3 危険 アドビシステムズ - Adobe Shockwave Player における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0129 2010-05-28 18:43 2010-05-11 Show GitHub Exploit DB Packet Storm
259974 9.3 危険 アドビシステムズ - Adobe Shockwave Player および Adobe Director における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2010-0128 2010-05-28 18:43 2010-05-11 Show GitHub Exploit DB Packet Storm
259975 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0127 2010-05-28 18:43 2010-05-11 Show GitHub Exploit DB Packet Storm
259976 9.3 危険 マイクロソフト - 複数の Microsoft 製品の VBE6.DLL における整数オーバーフローの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0815 2010-05-28 18:43 2010-05-11 Show GitHub Exploit DB Packet Storm
259977 9.3 危険 マイクロソフト - 複数の Microsoft 製品の inetcomm.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0816 2010-05-28 18:43 2010-05-11 Show GitHub Exploit DB Packet Storm
259978 9.3 危険 日立 - 複数の日立製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4776 2010-05-28 18:42 2009-07-21 Show GitHub Exploit DB Packet Storm
259979 6.8 警告 サイバートラスト株式会社
レッドハット		 - TeX Live 2009 および teTeX の dvips における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0827 2010-05-27 17:40 2010-05-6 Show GitHub Exploit DB Packet Storm
259980 6.8 警告 サイバートラスト株式会社
レッドハット		 - teTeX および TeXlive 2007 の hpc.c における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2007-5935 2010-05-27 17:40 2007-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314011 - - - Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in FitNesse releases prior to 20241026. If this vulnerability is exploited, an attacker may be able to know… CWE-22
Path Traversal 		CVE-2024-42499 2024-11-19 01:35 2024-11-15 Show GitHub Exploit DB Packet Storm
314012 - - - zenml-io/zenml version 0.56.4 is vulnerable to an account takeover due to the lack of rate-limiting in the password change function. An attacker can brute-force the current password in the 'Update Pa… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2024-4311 2024-11-19 01:35 2024-11-15 Show GitHub Exploit DB Packet Storm
314013 - - - In lunary-ai/lunary versions up to and including 1.2.5, an information disclosure vulnerability exists where account recovery hashes of users are inadvertently exposed to unauthorized actors. This is… CWE-200
Information Exposure 		CVE-2024-3502 2024-11-19 01:35 2024-11-15 Show GitHub Exploit DB Packet Storm
314014 - - - In lunary-ai/lunary versions up to and including 1.2.5, an information disclosure vulnerability exists due to the inclusion of single-use tokens in the responses of `GET /v1/users/me` and `GET /v1/us… CWE-200
Information Exposure 		CVE-2024-3501 2024-11-19 01:35 2024-11-15 Show GitHub Exploit DB Packet Storm
314015 - - - In lunary-ai/lunary versions 1.2.2 through 1.2.6, an incorrect authorization vulnerability allows unprivileged users to re-generate the private key for projects they do not have access to. Specifical… - CVE-2024-3379 2024-11-19 01:35 2024-11-15 Show GitHub Exploit DB Packet Storm
314016 4.8 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the inte… CWE-79
Cross-site Scripting 		CVE-2024-45087 2024-11-19 01:34 2024-11-12 Show GitHub Exploit DB Packet Storm
314017 5.4 MEDIUM
Network 		ibm maximo_asset_management IBM Maximo Asset Management 7.6.1.3 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users to embed arbitrary JavaScript code in the Web UI thus altering the inte… CWE-79
Cross-site Scripting 		CVE-2024-45088 2024-11-19 01:33 2024-11-12 Show GitHub Exploit DB Packet Storm
314018 7.8 HIGH
Local 		ivanti endpoint_manager SQL injection in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a local unauthenticated attacker to achieve code execution. User interaction … CWE-89
SQL Injection 		CVE-2024-50323 2024-11-19 01:32 2024-11-13 Show GitHub Exploit DB Packet Storm
314019 7.8 HIGH
Local 		ivanti endpoint_manager Path traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a local unauthenticated attacker to achieve code execution. User interaction… CWE-22
Path Traversal 		CVE-2024-50322 2024-11-19 01:30 2024-11-13 Show GitHub Exploit DB Packet Storm
314020 - - - sunniwell HT3300 before 1.0.0.B022.2 is vulnerable to Insecure Permissions. The /usr/local/bin/update program, which is responsible for updating the software in the HT3300 device, is given the execut… - CVE-2024-48073 2024-11-19 00:35 2024-11-9 Show GitHub Exploit DB Packet Storm