Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201041 6.1 警告
Network 		OWASP AntiSamy Project - OWASP AntiSamy におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-10006 2017-01-6 17:02 2016-12-19 Show GitHub Exploit DB Packet Storm
201042 5.4 警告
Network 		s9y - Serendipity におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2016-9681 2017-01-6 16:56 2016-11-28 Show GitHub Exploit DB Packet Storm
201043 7.3 重要
Network 		MODX - MODX Revolution の /connectors/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-10039 2017-01-6 16:49 2016-11-14 Show GitHub Exploit DB Packet Storm
201044 7.3 重要
Network 		MODX - MODX Revolution の /connectors/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-10038 2017-01-6 16:49 2016-11-14 Show GitHub Exploit DB Packet Storm
201045 7.3 重要
Network 		MODX - MODX Revolution の /connectors/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2016-10037 2017-01-6 16:49 2016-11-14 Show GitHub Exploit DB Packet Storm
201046 4.4 警告
Local 		レッドハット - Red Hat Enterprise Linux などの Linux 実装の sudo のデフォルト設定における情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2016-7091 2017-01-6 14:21 2016-11-3 Show GitHub Exploit DB Packet Storm
201047 9.1 緊急
Network 		Michel Rodriguez - XML::Twig における外部エンティティを拡張される脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-9180 2017-01-6 13:32 2016-09-26 Show GitHub Exploit DB Packet Storm
201048 7.8 重要
Local 		OpenJPEG project - OpenJPEG におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2016-9675 2017-01-6 12:36 2016-10-5 Show GitHub Exploit DB Packet Storm
201049 5.3 警告
Network 		Digium - Asterisk Open Source および Certified Asterisk の chan_sip チャネルドライバにおけるプロキシの認証なしに Asterisk に INVITE リクエストを許可される脆弱性 CWE-285
不適切な認可 		CVE-2016-9938 2017-01-6 11:48 2016-12-8 Show GitHub Exploit DB Packet Storm
201050 7.1 重要
Local 		Image-Info project - Image::Info におけるサービス運用妨害 (DoS) の脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-9181 2017-01-6 11:18 2016-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345481 - awdsolution com_awdwall Directory traversal vulnerability in the AWDwall (com_awdwall) component 1.5.4 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. CWE-22
Path Traversal 		CVE-2010-1494 2017-08-17 10:32 2010-04-23 Show GitHub Exploit DB Packet Storm
345482 - jolt com_joltcard SQL injection vulnerability in the JoltCard (com_joltcard) component 1.2.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cardID parameter in a view action to index.php. CWE-89
SQL Injection 		CVE-2010-1496 2017-08-17 10:32 2010-04-23 Show GitHub Exploit DB Packet Storm
345483 - clausvb dl_stats Cross-site scripting (XSS) vulnerability in download_proc.php in dl_stats before 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter. CWE-79
Cross-site Scripting 		CVE-2010-1497 2017-08-17 10:32 2010-04-23 Show GitHub Exploit DB Packet Storm
345484 - clausvb dl_stats Multiple SQL injection vulnerabilities in dl_stats before 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) download.php and (2) view_file.php. CWE-89
SQL Injection 		CVE-2010-1498 2017-08-17 10:32 2010-04-23 Show GitHub Exploit DB Packet Storm
345485 - musicboxv2 musicbox SQL injection vulnerability in genre_artists.php in MusicBox 3.3 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2010-1499 2017-08-17 10:32 2010-04-23 Show GitHub Exploit DB Packet Storm
345486 - uiga proxy PHP remote file inclusion vulnerability in include/template.php in Uiga Proxy, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the content paramet… CWE-94
Code Injection 		CVE-2010-1528 2017-08-17 10:32 2010-04-27 Show GitHub Exploit DB Packet Storm
345487 - freestyle faqs_lite SQL injection vulnerability in the Freestyle FAQs Lite (com_fsf) component, possibly 1.3, for Joomla! allows remote attackers to execute arbitrary SQL commands via the faqid parameter in an faq actio… CWE-89
SQL Injection 		CVE-2010-1529 2017-08-17 10:32 2010-04-27 Show GitHub Exploit DB Packet Storm
345488 - redcomponent com_redshop Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php. CWE-22
Path Traversal 		CVE-2010-1531 2017-08-17 10:32 2010-04-27 Show GitHub Exploit DB Packet Storm
345489 - joomla.batjo com_shoutbox Directory traversal vulnerability in the Shoutbox Pro (com_shoutbox) component for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. CWE-22
Path Traversal 		CVE-2010-1534 2017-08-17 10:32 2010-04-27 Show GitHub Exploit DB Packet Storm
345490 - francois_bissonnette phpcdb Multiple directory traversal vulnerabilities in phpCDB 1.0 and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang_global parameter to (1) first… CWE-22
Path Traversal 		CVE-2010-1537 2017-08-17 10:32 2010-04-27 Show GitHub Exploit DB Packet Storm