Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190121 7.5 重要
Network 		レッドハット - Red Hat JBoss EAP におけるデータ処理に関する脆弱性 CWE-19
データ処理 		CVE-2017-7561 2017-10-17 16:57 2017-08-25 Show GitHub Exploit DB Packet Storm
190122 6.3 警告
Local 		Unicon Software - eLux RP における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2017-14124 2017-10-17 16:57 2017-09-11 Show GitHub Exploit DB Packet Storm
190123 7.5 重要
Network 		FlashTux - WeeChat の logger プラグインにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2017-14727 2017-10-17 16:54 2017-09-23 Show GitHub Exploit DB Packet Storm
190124 6.1 警告
Network 		Jonathan Hedley - jsoup におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-6748 2017-10-17 16:48 2015-05-27 Show GitHub Exploit DB Packet Storm
190125 6.5 警告
Network 		シスコシステムズ - Cisco IOS における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3050 2017-10-17 16:43 2010-08-17 Show GitHub Exploit DB Packet Storm
190126 5.5 警告
Local 		シスコシステムズ - Cisco IOS における入力確認に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3049 2017-10-17 16:43 2010-08-17 Show GitHub Exploit DB Packet Storm
190127 8.8 重要
Network 		Lenovo - LXCA におけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2017-3770 2017-10-17 16:40 2017-09-21 Show GitHub Exploit DB Packet Storm
190128 6.7 警告
Local 		Lenovo - LXCA における証明書・パスワードの管理に関する脆弱性 CWE-255
証明書・パスワード管理 		CVE-2017-3763 2017-10-17 16:40 2017-09-21 Show GitHub Exploit DB Packet Storm
190129 9.8 緊急
Network 		Tapatalk Inc. - MyBB 用 Tapatalk プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-14652 2017-10-17 16:35 2017-07-31 Show GitHub Exploit DB Packet Storm
190130 9.8 緊急
Network 		TestLink Development Team - TestLink における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2015-7390 2017-10-17 16:30 2015-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352841 - hitronsoft answer_me Cross-site scripting (XSS) vulnerability in Hitron Soft Answer Me 1.0 allows remote attackers to inject arbitrary web script or HTML via the q_id parameter to the answers script (aka answers.php). N… CWE-79
Cross-site Scripting 		CVE-2009-4868 2010-05-11 21:02 2010-05-11 Show GitHub Exploit DB Packet Storm
352842 - hitronsoft nasim_guest_book Cross-site scripting (XSS) vulnerability in index.php in Nasim Guest Book 1.2 allows remote attackers to inject arbitrary web script or HTML via the page parameter. CWE-79
Cross-site Scripting 		CVE-2009-4869 2010-05-11 21:02 2010-05-11 Show GitHub Exploit DB Packet Storm
352843 - openttd openttd OpenTTD before 1.0.1 accepts a company password for authentication in response to a request for the server password, which allows remote authenticated users to bypass intended access restrictions or … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0401 2010-05-11 13:00 2010-05-5 Show GitHub Exploit DB Packet Storm
352844 - openttd openttd OpenTTD before 1.0.1 allows remote attackers to cause a denial of service (file-descriptor exhaustion and daemon crash) by performing incomplete downloads of the map. CWE-399
 Resource Management Errors 		CVE-2010-0406 2010-05-11 13:00 2010-05-5 Show GitHub Exploit DB Packet Storm
352845 - adobe photoshop_cs4 Multiple unspecified vulnerabilities in Adobe Photoshop CS4 11.x before 11.0.1 allow user-assisted remote attackers to execute arbitrary code via a crafted TIFF file. CWE-94
Code Injection 		CVE-2010-1279 2010-05-11 13:00 2010-05-5 Show GitHub Exploit DB Packet Storm
352846 - mytty webapplication_finger_printer Web Application Finger Printer (WAFP) 0.01-26c3 uses fixed pathnames under /tmp for temporary files and directories, which (1) allows local users to cause a denial of service (application outage) by … NVD-CWE-Other
CVE-2010-1438 2010-05-11 13:00 2010-05-6 Show GitHub Exploit DB Packet Storm
352847 - zikula zikula_application_framework Cross-site request forgery (CSRF) vulnerability in the users module in Zikula Application Framework before 1.2.3 allows remote attackers to hijack the authentication of administrators for requests th… CWE-352
 Origin Validation Error 		CVE-2010-1732 2010-05-11 13:00 2010-05-6 Show GitHub Exploit DB Packet Storm
352848 - transmissionbt transmission Multiple stack-based buffer overflows in the tr_magnetParse function in libtransmission/magnet.c in Transmission 1.91 allow remote attackers to cause a denial of service (crash) or possibly execute a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-1853 2010-05-11 13:00 2010-05-8 Show GitHub Exploit DB Packet Storm
352849 - php php The (1) sqlite_single_query and (2) sqlite_array_query functions in ext/sqlite/sqlite.c in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to execute arbitrary code by … CWE-94
Code Injection 		CVE-2010-1868 2010-05-11 13:00 2010-05-8 Show GitHub Exploit DB Packet Storm
352850 - mega-nerd libsndfile The (1) htk_read_header, (2) alaw_init, (3) ulaw_init, (4) pcm_init, (5) float32_init, and (6) sds_read_header functions in libsndfile 1.0.20 allow context-dependent attackers to cause a denial of se… CWE-189
Numeric Errors 		CVE-2009-4835 2010-05-11 13:00 2010-05-6 Show GitHub Exploit DB Packet Storm