Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
191251	6.1	警告 Network	XWiki	-	XWiki labs の CryptPad の pad エクスポートにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-1000051	2017-08-8 13:43	2017-03-3	Show	GitHub Exploit DB Packet Storm

191252	6.1	警告 Network	Apache Software Foundation	-	Apache Sling の XSS Protection API モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-5394	2017-08-8 13:41	2016-06-10	Show	GitHub Exploit DB Packet Storm

191253	4.9	警告 Network	Sitecore	-	Sitecore における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2017-11440	2017-08-8 12:30	2017-05-5	Show	GitHub Exploit DB Packet Storm

191254	5.4	警告 Network	Sitecore	-	Sitecore における反射型クロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-11439	2017-08-8 12:30	2017-05-5	Show	GitHub Exploit DB Packet Storm

191255	7.8	重要 Local	Alpine Linux Development Team	-	apk におけるヒープオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-9671	2017-08-8 12:09	2017-06-25	Show	GitHub Exploit DB Packet Storm

191256	7.8	重要 Local	Alpine Linux Development Team	-	apk におけるヒープオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-9669	2017-08-8 12:09	2017-06-25	Show	GitHub Exploit DB Packet Storm

191257	6.5	警告 Network	Exiv2 project	-	Exiv2 の XmpParser::terminate() 関数におけるセグメンテーション違反を引き起こされる脆弱性	CWE-20 不適切な入力確認	CVE-2017-11340	2017-08-8 11:57	2017-07-14	Show	GitHub Exploit DB Packet Storm

191258	6.5	警告 Network	Exiv2 project	-	Exiv2 の image.cpp の Image::printIFDStructure 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2017-11339	2017-08-8 11:57	2017-07-14	Show	GitHub Exploit DB Packet Storm

191259	6.5	警告 Network	Exiv2 project	-	Exiv2 の image.cpp の Exiv2::Image::printIFDStructure 関数における無限ループを引き起こされる脆弱性	CWE-20 不適切な入力確認	CVE-2017-11338	2017-08-8 11:57	2017-07-13	Show	GitHub Exploit DB Packet Storm

191260	6.5	警告 Network	Exiv2 project	-	Exiv2 の actions.cpp の Action::TaskFactory::cleanup 関数における不正な解放を引き起こされる脆弱性	CWE-416 解放済みメモリの使用	CVE-2017-11337	2017-08-8 11:57	2017-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348491	-	mojoblog	mojoblog	Per http://extensions.joomla.org/extensions/3374/details: Editor's note This extension has been unpublished for the following reason: * This extension is not compatible with Joomla! 1.5	CWE-94 Code Injection	CVE-2009-4789	2010-06-3 13:00	2010-04-21	Show	GitHub Exploit DB Packet Storm

348492	-	sysax	multi_server	Multiple directory traversal vulnerabilities in Sysax Multi Server 4.5 allow remote authenticated users to read or modify arbitrary files via crafted FTP commands. NOTE: the provenance of this infor…	CWE-22 Path Traversal	CVE-2009-4790	2010-06-3 13:00	2010-04-22	Show	GitHub Exploit DB Packet Storm

348493	-	amsn	amsn	login_screen.tcl in aMSN (aka Alvaro's Messenger) before 0.97.1 saves a password after logout, which allows physically proximate attackers to hijack a session by visiting an unattended workstation.	CWE-255 Credentials Management	CVE-2008-7255	2010-06-3 13:00	2010-04-21	Show	GitHub Exploit DB Packet Storm

348494	-	lispeltuut	com_archeryscores	Directory traversal vulnerability in archeryscores.php in the Archery Scores (com_archeryscores) component 1.0.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a…	CWE-22 Path Traversal	CVE-2010-1718	2010-06-1 13:00	2010-05-5	Show	GitHub Exploit DB Packet Storm

348495	-	freebsd	freebsd	jail.c in jail in FreeBSD 8.0 and 8.1-PRERELEASE, when the "-l -U root" options are omitted, does not properly restrict access to the current working directory, which might allow local users to read,…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-2022	2010-06-1 13:00	2010-05-29	Show	GitHub Exploit DB Packet Storm

348496	-	intervations	filecopa	Directory traversal vulnerability in the FTP service in FileCOPA before 5.03 allows remote attackers to read or overwrite arbitrary files via unknown vectors. NOTE: the provenance of this informatio…	CWE-22 Path Traversal	CVE-2010-2112	2010-06-1 13:00	2010-05-29	Show	GitHub Exploit DB Packet Storm

348497	-	brekeke	pbx	Cross-site request forgery (CSRF) vulnerability in pbx/gate in Brekeke PBX 2.4.4.8 allows remote attackers to hijack the authentication of users for requests that change passwords via the pbxadmin.we…	CWE-352 Origin Validation Error	CVE-2010-2114	2010-06-1 13:00	2010-05-29	Show	GitHub Exploit DB Packet Storm

348498	-	solarwinds	tftp_server	SolarWinds TFTP Server 10.4.0.10 allows remote attackers to cause a denial of service (no new connections) via a crafted read request.	CWE-20 Improper Input Validation	CVE-2010-2115	2010-06-1 13:00	2010-05-29	Show	GitHub Exploit DB Packet Storm

348499	-	hp	mercury_testdirector_for_quality_center	Unspecified vulnerability in HP TestDirector for Quality Center 9.2 before Patch8 allows remote attackers to modify data via unknown vectors.	NVD-CWE-noinfo	CVE-2010-1959	2010-05-29 14:47	2010-05-28	Show	GitHub Exploit DB Packet Storm

348500	-	microsoft	asp.net	Microsoft ASP.NET 2.0 does not prevent setting the InnerHtml property on a control that inherits from HtmlContainerControl, which allows remote attackers to conduct cross-site scripting (XSS) attacks…	CWE-79 Cross-site Scripting	CVE-2010-2084	2010-05-28 13:00	2010-05-28	Show	GitHub Exploit DB Packet Storm