Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
204501 7.5 重要
Network
ForgeRock - OpenAM - Access Management の /SSOPOST/metaAlias/%realm%/idpv2 における任意のファイルを読まれる脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限
CVE-2016-10097 2017-01-17 09:54 2016-03-20 Show GitHub Exploit DB Packet Storm
204502 3.7
Network
Dotclear - Dotclear におけるパスワードリセットのアドレスのリンクを変更される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2016-7903 2017-01-16 18:17 2016-11-1 Show GitHub Exploit DB Packet Storm
204503 8.8 重要
Network
Dotclear - Dotclear の fileUnzip->unzip メソッドにおける任意のコードを実行される脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード
CVE-2016-7902 2017-01-16 18:17 2016-11-1 Show GitHub Exploit DB Packet Storm
204504 9.8 緊急
Network
ベリタス - Veritas NetBackup アプライアンスの scripts/license.pl における任意のコマンドを実行される脆弱性 CWE-77
コマンドインジェクション
CVE-2016-7399 2017-01-16 17:51 2016-10-4 Show GitHub Exploit DB Packet Storm
204505 7.5 重要
Network
Arista Networks, Inc. - Arista DCS-7050 シリーズデバイス上で稼動する Arista EOS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2016-6894 2017-01-16 17:32 2016-10-17 Show GitHub Exploit DB Packet Storm
204506 9.8 緊急
Network
The PHP Group - PHP の ext/standard/var.c のアンシリアライズ実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用
CVE-2016-9936 2017-01-16 17:03 2016-12-8 Show GitHub Exploit DB Packet Storm
204507 9.8 緊急
Network
The PHP Group - PHP の ext/wddx/wddx.c の php_wddx_push_element 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り
CVE-2016-9935 2017-01-16 17:03 2016-12-8 Show GitHub Exploit DB Packet Storm
204508 7.5 重要
Network
The PHP Group - PHP の ext/wddx/wddx.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-476
NULL ポインタデリファレンス
CVE-2016-9934 2017-01-16 17:03 2016-11-10 Show GitHub Exploit DB Packet Storm
204509 7.5 重要
Network
The PHP Group
LibGD project
- PHP で使用される GD Graphics Library の gd.c の gdImageFillToBorder 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2016-9933 2017-01-16 17:03 2016-06-10 Show GitHub Exploit DB Packet Storm
204510 9.8 緊急
Network
The PHP Group - PHP におけるサービス運用妨害 (DoS) の脆弱性 CWE-416
解放済みメモリの使用
CVE-2016-9138 2017-01-16 17:03 2016-09-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350431 - gamescript gamescript SQL injection vulnerability in index.php in GameScript (GS) 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a category action. CWE-89
SQL Injection
CVE-2010-1368 2017-08-17 10:32 2010-04-14 Show GitHub Exploit DB Packet Storm
350432 - hdflvplayer com_hdflvplayer SQL injection vulnerability in the HD FLV Player (com_hdflvplayer) component 1.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. CWE-89
SQL Injection
CVE-2010-1372 2017-08-17 10:32 2010-04-14 Show GitHub Exploit DB Packet Storm
350433 - linux linux_kernel arch/powerpc/mm/fsl_booke_mmu.c in KGDB in the Linux kernel 2.6.30 and other versions before 2.6.33, when running on PowerPC, does not properly perform a security check for access to a kernel page, w… CWE-264
Permissions, Privileges, and Access Controls
CVE-2010-1446 2017-08-17 10:32 2010-05-22 Show GitHub Exploit DB Packet Storm
350434 - tweakfs tweakfs_zip_utility Stack-based buffer overflow in Create and Extract Zips TweakFS Zip Utility 1.0 for Flight Simulator X (FSX) allows remote attackers to execute arbitrary code via a long filename in a ZIP archive. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2010-1458 2017-08-17 10:32 2010-04-21 Show GitHub Exploit DB Packet Storm
350435 - trellian ftp Stack-based buffer overflow in Trellian FTP client 3.01, including 3.1.3.1789, allows remote attackers to execute arbitrary code via a long PASV response. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2010-1465 2017-08-17 10:32 2010-04-17 Show GitHub Exploit DB Packet Storm
350436 - francois_raynaud openurgence_vaccin Directory traversal vulnerability in scr/soustab.php in openUrgence Vaccin 1.03 allows remote attackers to read arbitrary files via the dsn[phptype] parameter. CWE-22
Path Traversal
CVE-2010-1466 2017-08-17 10:32 2010-04-17 Show GitHub Exploit DB Packet Storm
350437 - francois_raynaud openurgence_vaccin Multiple PHP remote file inclusion vulnerabilities in openUrgence Vaccin 1.03 allow remote attackers to execute arbitrary PHP code via a URL in the path_om parameter to (1) collectivite.class.php, (2… CWE-94
Code Injection
CVE-2010-1467 2017-08-17 10:32 2010-04-17 Show GitHub Exploit DB Packet Storm
350438 - supachai_teasakul com_sweetykeeper Directory traversal vulnerability in the Sweety Keeper (com_sweetykeeper) component 1.5.x for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a … CWE-22
Path Traversal
CVE-2010-1474 2017-08-17 10:32 2010-04-20 Show GitHub Exploit DB Packet Storm
350439 - ternaria com_preventive Directory traversal vulnerability in the Preventive & Reservation (com_preventive) component 1.0.5 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impa… CWE-22
Path Traversal
CVE-2010-1475 2017-08-17 10:32 2010-04-20 Show GitHub Exploit DB Packet Storm
350440 - ibm cognos_8_business_intelligence Unspecified vulnerability in IBM Cognos 8 Business Intelligence before 8.4.1 FP1 has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2010-1490 2017-08-17 10:32 2010-04-21 Show GitHub Exploit DB Packet Storm