Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
199931 6.1 警告
Network 		WordPress.org - WordPress の投稿リストテーブルの wp-admin/includes/class-wp-posts-list-table.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2017-5612 2017-02-13 17:32 2017-01-26 Show GitHub Exploit DB Packet Storm
199932 9.8 緊急
Network 		WordPress.org - WordPress の WP_Query の wp-includes/class-wp-query.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2017-5611 2017-02-13 17:32 2017-01-26 Show GitHub Exploit DB Packet Storm
199933 5.3 警告
Network 		WordPress.org - WordPress の Press This の wp-admin/includes/class-wp-press-this.php におけるアクセス制限を回避される脆弱性 CWE-200
情報漏えい 		CVE-2017-5610 2017-02-13 17:32 2017-01-26 Show GitHub Exploit DB Packet Storm
199934 7.8 重要
Local 		Peter Selinger - potrace の bitmap_io.c の bm_readbody_bmp 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8703 2017-02-13 17:30 2016-08-8 Show GitHub Exploit DB Packet Storm
199935 7.8 重要
Local 		Peter Selinger - potrace の bitmap_io.c の bm_readbody_bmp 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8702 2017-02-13 17:30 2016-08-8 Show GitHub Exploit DB Packet Storm
199936 7.8 重要
Local 		Peter Selinger - potrace の bitmap_io.c の bm_readbody_bmp 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8701 2017-02-13 17:30 2016-08-8 Show GitHub Exploit DB Packet Storm
199937 7.8 重要
Local 		Peter Selinger - potrace の bitmap_io.c の bm_readbody_bmp 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8700 2017-02-13 17:30 2016-08-8 Show GitHub Exploit DB Packet Storm
199938 7.8 重要
Local 		Peter Selinger - potrace の bitmap_io.c の bm_readbody_bmp 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8699 2017-02-13 17:30 2016-08-8 Show GitHub Exploit DB Packet Storm
199939 7.8 重要
Local 		Peter Selinger - potrace の bitmap_io.c の bm_readbody_bmp 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-8698 2017-02-13 17:30 2016-08-8 Show GitHub Exploit DB Packet Storm
199940 4.3 警告 Peter Selinger - potrace の bitmap.h の bm_new 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-369
ゼロ除算 		CVE-2016-8697 2017-02-13 17:30 2016-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345611 - magnoware datatrack_system DataTrack System 3.5 allows remote attackers to list the root directory via a (1) /%u0085/ or (2) /%u00A0/ URI. CWE-20
 Improper Input Validation  		CVE-2010-2078 2017-08-17 10:32 2010-05-26 Show GitHub Exploit DB Packet Storm
345612 - magnoware datatrack_system DataTrack System 3.5 allows remote attackers to bypass intended restrictions on file extensions, and read arbitrary files, via a trailing backslash in a URI, as demonstrated by (1) web.config\ and (2… CWE-20
 Improper Input Validation  		CVE-2010-2079 2017-08-17 10:32 2010-05-26 Show GitHub Exploit DB Packet Storm
345613 - ibm communications_server The npb_protocol_error function in sna V5router64 in IBM Communications Server for Windows 6.1.3 and Communications Server for AIX (aka CSAIX or CS/AIX) in sna.rte before 6.3.1.2 allows remote attack… CWE-20
 Improper Input Validation  		CVE-2010-2090 2017-08-17 10:32 2010-05-28 Show GitHub Exploit DB Packet Storm
345614 - pacifictimesheet pacific_timesheet Cross-site request forgery (CSRF) vulnerability in user/user-set.do in Pacific Timesheet 6.74 build 363 allows remote attackers to hijack the authentication of administrators for requests that create… CWE-352
 Origin Validation Error 		CVE-2010-2111 2017-08-17 10:32 2010-05-29 Show GitHub Exploit DB Packet Storm
345615 - uniformserver uniformserver Multiple cross-site request forgery (CSRF) vulnerabilities in The Uniform Server 5.6.5 allow remote attackers to hijack the authentication of administrators for requests that change passwords via (1)… CWE-352
 Origin Validation Error 		CVE-2010-2113 2017-08-17 10:32 2010-05-29 Show GitHub Exploit DB Packet Storm
345616 - speedtech storm Multiple cross-site scripting (XSS) vulnerabilities in the Storm module 5.x and 6.x before 6.x-1.33 for Drupal allow remote authenticated users, with certain module privileges, to inject arbitrary we… CWE-79
Cross-site Scripting 		CVE-2010-2123 2017-08-17 10:32 2010-06-2 Show GitHub Exploit DB Packet Storm
345617 - bartels-schoene conpresso SQL injection vulnerability in firma.php in Bartels Schone ConPresso 4.0.7 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-2124 2017-08-17 10:32 2010-06-2 Show GitHub Exploit DB Packet Storm
345618 - systemseed rotor Multiple cross-site scripting (XSS) vulnerabilities in the Rotor Banner module 5.x before 5.x-1.8 and 6.x before 6.x-2.5 for Drupal allow remote authenticated users, with "create rotor item" or "edit… CWE-79
Cross-site Scripting 		CVE-2010-2125 2017-08-17 10:32 2010-06-2 Show GitHub Exploit DB Packet Storm
345619 - snipegallery snipe_gallery Multiple PHP remote file inclusion vulnerabilities in Snipe Gallery 3.1.5 allow remote attackers to execute arbitrary PHP code via a URL in the cfg_admin_path parameter to (1) index.php, (2) view.php… CWE-94
Code Injection 		CVE-2010-2126 2017-08-17 10:32 2010-06-2 Show GitHub Exploit DB Packet Storm
345620 - jv2design jv2_folder_gallery PHP remote file inclusion vulnerability in gallery.php in JV2 Folder Gallery 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the lang_file parameter. CWE-94
Code Injection 		CVE-2010-2127 2017-08-17 10:32 2010-06-2 Show GitHub Exploit DB Packet Storm