Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
200331	8.3	危険	シマンテック	-	Symantec Endpoint Protection Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2015-8153	2016-03-23 10:36	2015-11-13	Show	GitHub Exploit DB Packet Storm

200332	8.5	危険	シマンテック	-	Symantec Endpoint Protection Manager におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2015-8152	2016-03-23 10:36	2015-11-13	Show	GitHub Exploit DB Packet Storm

200333	6	警告	ABB	-	ABB Panel Builder 800 における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-2281	2016-03-23 10:03	2016-03-17	Show	GitHub Exploit DB Packet Storm

200334	4.3	警告	XZERES Wind Corp	-	XZERES 442SR Wind Turbines 上で稼動する 442SR OS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-2287	2016-03-22 18:16	2016-03-21	Show	GitHub Exploit DB Packet Storm

200335	4.3	警告	Novell	-	Novell Filr におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-5968	2016-03-22 18:10	2015-12-11	Show	GitHub Exploit DB Packet Storm

200336	4.3	警告	IBM	-	IBM WebSphere Application Server の OpenID Connect クライアント Web アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0283	2016-03-22 18:03	2016-03-18	Show	GitHub Exploit DB Packet Storm

200337	4	警告	IBM	-	IBM WebSphere Process Server および Business Process Manager Advanced におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2015-7454	2016-03-22 18:03	2015-09-29	Show	GitHub Exploit DB Packet Storm

200338	9	危険	IBM	-	IBM Tivoli NetView Access Services における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-9768	2016-03-22 18:03	2014-09-28	Show	GitHub Exploit DB Packet Storm

200339	4	警告	DELL EMC (旧 EMC Corporation)	-	EMC Documentum xCP における重要なユーザアカウントのメタデータを取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0886	2016-03-22 16:14	2016-03-7	Show	GitHub Exploit DB Packet Storm

200340	10	危険	Google	-	Android のメディアサーバの libvpx における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2016-1621	2016-03-22 15:57	2016-03-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307511	-	linux	linux_kernel	The nfs_lock function in fs/nfs/file.c in the Linux kernel 2.6.9 does not properly remove POSIX locks on files that are setgid without group-execute permission, which allows local users to cause a de…	CWE-399 Resource Management Errors	CVE-2007-6733	2012-03-19 13:00	2010-03-17	Show	GitHub Exploit DB Packet Storm

307512	-	cacti	cacti	SQL injection vulnerability in graph.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via a crafted rra_id parameter in a GET request in conjunction with a va…	CWE-89 SQL Injection	CVE-2010-2092	2012-02-16 13:04	2010-05-28	Show	GitHub Exploit DB Packet Storm

307513	-	cacti	cacti	SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.	CWE-89 SQL Injection	CVE-2010-1431	2012-02-16 13:02	2010-05-5	Show	GitHub Exploit DB Packet Storm

307514	-	hp	power_manager	Stack-based buffer overflow in goform/formExportDataLogs in HP Power Manager before 4.2.10 allows remote attackers to execute arbitrary code via a long fileName parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-3999	2012-02-14 12:49	2010-01-21	Show	GitHub Exploit DB Packet Storm

307515	-	cafuego	simple_document_management_system	Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and earlier allow remote attackers to execute arbitrary SQL commands via the (1) folder_id parameter in list…	CWE-89 SQL Injection	CVE-2005-3877	2012-02-7 14:00	2005-11-29	Show	GitHub Exploit DB Packet Storm

307516	-	sitracker	support_incident_tracker	Multiple unspecified vulnerabilities in Salford Software Support Incident Tracker (SiT!) before 3.30 have unknown impact and attack vectors.	NVD-CWE-noinfo	CVE-2007-5635	2012-02-2 14:00	2007-10-24	Show	GitHub Exploit DB Packet Storm

307517	-	kde	kdelibs	KDE KSSL in kdelibs 3.5.4, 4.2.4, and 4.3 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle atta…	CWE-310 Cryptographic Issues	CVE-2009-2702	2012-01-19 12:40	2009-09-9	Show	GitHub Exploit DB Packet Storm

307518	-	semanticscuttle	semanticscuttle	Multiple cross-site request forgery (CSRF) vulnerabilities in SemanticScuttle before 0.91 allow remote attackers to (1) hijack the authentication of administrators via unknown vectors or (2) hijack t…	CWE-352 Origin Validation Error	CVE-2009-0708	2012-01-5 14:00	2009-02-24	Show	GitHub Exploit DB Packet Storm

307519	-	xzeroscripts	xzero_community_classifieds	Cross-site scripting (XSS) vulnerability in index.php in XZero Community Classifieds 4.97.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the name of an uploaded file…	CWE-79 Cross-site Scripting	CVE-2009-2914	2011-12-29 14:00	2009-08-21	Show	GitHub Exploit DB Packet Storm

307520	-	asus	asus_wl-330ge	Unspecified vulnerability on the ASUS WL-330gE has unknown impact and remote attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.11. NOTE: as of 20090903, this discl…	NVD-CWE-noinfo	CVE-2009-3091	2011-12-21 14:00	2009-09-9	Show	GitHub Exploit DB Packet Storm