Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
190391	4.6	警告 Physics	Grupo MSA	-	MSA vot.Ar における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2015-6839	2017-11-21 17:05	2015-07-17	Show	GitHub Exploit DB Packet Storm

190392	7.5	重要 Network	Apache Software Foundation	-	Apache Qpid におけるデータ処理に関する脆弱性	CWE-19 データ処理	CVE-2015-0224	2017-11-21 17:02	2015-01-13	Show	GitHub Exploit DB Packet Storm

190393	9.8	緊急 Network	Apache Software Foundation	-	Apache Traffic Server におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2014-3624	2017-11-21 16:58	2014-05-23	Show	GitHub Exploit DB Packet Storm

190394	7.5	重要 Network	Apache Software Foundation	-	Apache Wicket における情報漏えいに関する脆弱性	CWE-200 情報漏えい	CVE-2014-3526	2017-11-21 16:58	2014-09-22	Show	GitHub Exploit DB Packet Storm

190395	8.8	重要 Network	Apache Software Foundation	-	Apache Subversion におけるアクセス制御に関する脆弱性	CWE-284 不適切なアクセス制御	CVE-2013-4246	2017-11-21 16:58	2013-06-12	Show	GitHub Exploit DB Packet Storm

190396	6.1	警告 Network	Apache Software Foundation	-	Apache Wicket におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-5636	2017-11-21 16:58	2012-10-24	Show	GitHub Exploit DB Packet Storm

190397	6.1	警告 Network	Apache Software Foundation	-	Apache jUDDI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1198	2017-11-21 16:58	2009-06-30	Show	GitHub Exploit DB Packet Storm

190398	8.8	重要 Network	TP-LINK Technologies	-	TP-Link WR940N WiFi ルータにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-13772	2017-11-21 16:52	2017-10-17	Show	GitHub Exploit DB Packet Storm

190399	5.7	警告 Adjacent	シマンテック	-	Symantec Endpoint Encryption におけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2017-13683	2017-11-21 16:45	2017-10-20	Show	GitHub Exploit DB Packet Storm

190400	7.2	重要 Network	Keycloak	-	Keycloak における認証に関する脆弱性	CWE-287 不適切な認証	CVE-2017-12160	2017-11-21 16:38	2017-10-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347481	-	datalifecms	datalife_engine	Multiple PHP remote file inclusion vulnerabilities in DataLife Engine (DLE) 8.3 allow remote attackers to execute arbitrary PHP code via a URL in (1) the selected_language parameter to engine/inc/inc…	CWE-94 Code Injection	CVE-2010-2005	2017-08-17 10:32	2010-05-21	Show	GitHub Exploit DB Packet Storm

347482	-	chaos_tool_suite_project	ctools	Multiple cross-site scripting (XSS) vulnerabilities in the Chaos Tool Suite (aka CTools) module 6.x before 6.x-1.4 for Drupal allow remote attackers to inject arbitrary web script or HTML via a node …	CWE-79 Cross-site Scripting	CVE-2010-2010	2017-08-17 10:32	2010-05-22	Show	GitHub Exploit DB Packet Storm

347483	-	imagetraders	iceberg_cms	SQL injection vulnerability in details.php in Iceberg CMS allows remote attackers to execute arbitrary SQL commands via the p_id parameter.	CWE-89 SQL Injection	CVE-2010-2016	2017-08-17 10:32	2010-05-25	Show	GitHub Exploit DB Packet Storm

347484	-	bukulokomedia	lokomedia_cms	Directory traversal vulnerability in downlot.php in Lokomedia CMS 1.4.1 and 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.	CWE-22 Path Traversal	CVE-2010-2018	2017-08-17 10:32	2010-05-25	Show	GitHub Exploit DB Packet Storm

347485	-	mgenti	tftputil_gui	Buffer overflow in k23productions TFTPUtil GUI (aka TFTPGUI) 1.4.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long transport mode.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-2028	2017-08-17 10:32	2010-05-25	Show	GitHub Exploit DB Packet Storm

347486	-	cybozu	cybozu_office cybozu_dotsales	Cybozu Office 7 Ktai and Dotsales do not properly restrict access to the login page, which allows remote attackers to bypass authentication and obtain or modify sensitive information by using the uni…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-2029	2017-08-17 10:32	2010-05-25	Show	GitHub Exploit DB Packet Storm

347487	-	alan_palazzolo	external_link_page	Cross-site scripting (XSS) vulnerability in the External Link Page module 5.x before 5.x-1.0 and 6.x before 6.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via vecto…	CWE-79 Cross-site Scripting	CVE-2010-2030	2017-08-17 10:32	2010-05-25	Show	GitHub Exploit DB Packet Storm

347488	-	kingsoft	webshield	KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield 3.5.1.2 and earlier, allows local users to overwrite arbitrary kernel memory via a crafted request to IOCTL 0x830020d4 on the KAVS…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-2031	2017-08-17 10:32	2010-05-25	Show	GitHub Exploit DB Packet Storm

347489	-	gpeasy	gpeasy_cms	Cross-site request forgery (CSRF) vulnerability in gpEasy CMS 1.6.2, 1.6.1, and earlier allows remote attackers to hijack the authentication of administrators for requests that create new administrat…	CWE-352 Origin Validation Error	CVE-2010-2039	2017-08-17 10:32	2010-05-25	Show	GitHub Exploit DB Packet Storm

347490	-	v-eva	shopzilla_affiliate_script_php	Cross-site scripting (XSS) vulnerability in search.php in V-EVA Shopzilla Affiliate Script PHP allows remote attackers to inject arbitrary web script or HTML via the s parameter.	CWE-79 Cross-site Scripting	CVE-2010-2040	2017-08-17 10:32	2010-05-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed