Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199301 6.8 警告
Network 		IBM - IBM Cloud Orchestrator におけるオープンリダイレクトの脆弱性 CWE-Other
その他 		CVE-2016-0204 2016-10-20 15:56 2016-05-30 Show GitHub Exploit DB Packet Storm
199302 8.8 重要
Network 		レッドハット - Red Hat JBoss Enterprise Application Platform の JMX サーブレットにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2016-7065 2016-10-20 15:36 2016-10-6 Show GitHub Exploit DB Packet Storm
199303 9.1 緊急
Network 		google-adsense-and-hotel-booking project - WordPress 用 google-adsense-and-hotel-booking プラグインの Open Proxy における脆弱性 CWE-Other
その他 		CVE-2015-1000009 2016-10-20 15:35 2015-08-15 Show GitHub Exploit DB Packet Storm
199304 9.1 緊急
Network 		シーメンス - Siemens Automation License Manager におけるファイルに書き込まれる脆弱性 CWE-Other
その他 		CVE-2016-8565 2016-10-20 15:31 2016-10-12 Show GitHub Exploit DB Packet Storm
199305 6.5 警告
Network 		シーメンス - Siemens Automation License Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2016-8564 2016-10-20 15:31 2016-10-12 Show GitHub Exploit DB Packet Storm
199306 7.5 重要
Network 		シーメンス - Siemens Automation License Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-8563 2016-10-20 15:31 2016-10-12 Show GitHub Exploit DB Packet Storm
199307 2.5
Local 		シーメンス - Siemens SIMATIC STEP 7 における重要な設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2016-7960 2016-10-20 15:31 2016-10-12 Show GitHub Exploit DB Packet Storm
199308 4.7 警告
Local 		シーメンス - Siemens SIMATIC STEP 7 における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2016-7959 2016-10-20 15:31 2016-10-12 Show GitHub Exploit DB Packet Storm
199309 5.3 警告
Network 		シスコシステムズ - 複数の Cisco Nexus デバイス上で稼動する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2016-1454 2016-10-20 15:23 2016-10-5 Show GitHub Exploit DB Packet Storm
199310 7.5 重要
Network 		シスコシステムズ - 複数の Cisco Nexus デバイス上で稼動する Cisco NX-OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-6392 2016-10-20 15:23 2015-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346991 - scriptez mail_manager_pro Cross-site request forgery (CSRF) vulnerability in admin.php in Mail Manager Pro allows remote attackers to hijack the authentication of administrators for requests that change the admin password via… CWE-352
 Origin Validation Error 		CVE-2009-4827 2010-05-24 13:00 2010-04-28 Show GitHub Exploit DB Packet Storm
346992 - phpwebscripts ad_manager_pro Cross-site request forgery (CSRF) vulnerability in administration/admins.php in Ad Manager Pro (aka AdManagerPro) 3.0 allows remote attackers to hijack the authentication of administrators for reques… CWE-352
 Origin Validation Error 		CVE-2009-4828 2010-05-24 13:00 2010-04-28 Show GitHub Exploit DB Packet Storm
346993 - stafford.uklinux libesmtp libESMTP, probably 1.0.4 and earlier, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attack… CWE-310
Cryptographic Issues 		CVE-2010-1192 2010-05-22 14:46 2010-04-1 Show GitHub Exploit DB Packet Storm
346994 - stafford.uklinux libesmtp The match_component function in smtp-tls.c in libESMTP 1.0.3.r1, and possibly other versions including 1.0.4, treats two strings as equal if one is a substring of the other, which allows remote attac… CWE-310
Cryptographic Issues 		CVE-2010-1194 2010-05-22 14:46 2010-04-1 Show GitHub Exploit DB Packet Storm
346995 - hp insight_control_server_migration_for_windows Multiple cross-site scripting (XSS) vulnerabilities in HP Insight Control Server Migration before 6.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2010-1557 2010-05-21 14:59 2010-05-15 Show GitHub Exploit DB Packet Storm
346996 - cisco pgw_2200_softswitch The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S11 and 9.7(3)P before 9.7(3)P11 allows remote attackers to cause a denial of service (device crash) via a l… CWE-20
 Improper Input Validation  		CVE-2010-1561 2010-05-21 14:59 2010-05-15 Show GitHub Exploit DB Packet Storm
346997 - cisco pgw_2200_softswitch The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S9 and 9.7(3)P before 9.7(3)P9 allows remote attackers to cause a denial of service (device crash) via a mal… CWE-20
 Improper Input Validation  		CVE-2010-1562 2010-05-21 14:59 2010-05-15 Show GitHub Exploit DB Packet Storm
346998 - cisco pgw_2200_softswitch The SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S9 and 9.7(3)P before 9.7(3)P9 allows remote attackers to cause a denial of service (device crash) via a mal… CWE-20
 Improper Input Validation  		CVE-2010-1563 2010-05-21 14:59 2010-05-15 Show GitHub Exploit DB Packet Storm
346999 - cisco pgw_2200_softswitch Unspecified vulnerability in the SIP implementation on the Cisco PGW 2200 Softswitch with software 9.7(3)S before 9.7(3)S9 and 9.7(3)P before 9.7(3)P9 allows remote attackers to cause a denial of ser… CWE-399
 Resource Management Errors 		CVE-2010-1565 2010-05-21 14:59 2010-05-15 Show GitHub Exploit DB Packet Storm
347000 - cisco pgw_2200_softswitch The SIP implementation on the Cisco PGW 2200 Softswitch with software before 9.8(1)S5 allows remote attackers to cause a denial of service (device crash) via a malformed header, aka Bug ID CSCsz13590. CWE-20
 Improper Input Validation  		CVE-2010-1567 2010-05-21 14:59 2010-05-15 Show GitHub Exploit DB Packet Storm