Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
209161	10	危険	Mozilla Foundation	-	Mozilla Firefox および Thunderbird のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2015-2724	2015-11-6 15:43	2015-07-2	Show	GitHub Exploit DB Packet Storm

209162	10	危険	Mozilla Foundation	-	Mozilla Firefox の CanonicalizeXPCOMParticipant 関数における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2015-2722	2015-11-6 15:43	2015-07-2	Show	GitHub Exploit DB Packet Storm

209163	5	警告	Ruby-lang.org RubyGems	-	RubyGems におけるリクエストを任意のドメインにリダイレクトされる脆弱性	CWE-Other その他	CVE-2015-3900	2015-11-6 15:43	2015-05-14	Show	GitHub Exploit DB Packet Storm

209164	4	警告	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server : DDL に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-2573	2015-11-6 15:43	2015-04-14	Show	GitHub Exploit DB Packet Storm

209165	4	警告	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server : Optimizer に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-2571	2015-11-6 15:43	2015-04-14	Show	GitHub Exploit DB Packet Storm

209166	3.5	注意	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server : DDL に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-0505	2015-11-6 15:43	2015-04-14	Show	GitHub Exploit DB Packet Storm

209167	3.5	注意	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server : Federated に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-0499	2015-11-6 15:43	2015-04-14	Show	GitHub Exploit DB Packet Storm

209168	4	警告	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server : Security : Encryption に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-0441	2015-11-6 15:43	2015-04-14	Show	GitHub Exploit DB Packet Storm

209169	3.5	注意	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server : Security : Privileges : Foreign Key に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-0374	2015-11-6 15:43	2015-01-20	Show	GitHub Exploit DB Packet Storm

209170	4	警告	MySQL AB オラクル	-	Oracle MySQL の MySQL Server における Server : DDL に関する脆弱性	CWE-noinfo 情報不足	CVE-2015-0391	2015-11-6 15:43	2015-01-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345471	-	xs4all	jag	JAG (Just Another Guestbook) 1.14 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-0665	2017-08-17 10:32	2010-02-20	Show	GitHub Exploit DB Packet Storm

345472	-	moinmo	moinmoin	Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser …	NVD-CWE-noinfo	CVE-2010-0668	2017-08-17 10:32	2010-02-27	Show	GitHub Exploit DB Packet Storm

345473	-	iptechinside	com_jquarks	Unspecified vulnerability in the IP-Tech JQuarks (com_jquarks) Component before 0.2.4 for Joomla! allows attackers to obtain the installation path for Joomla! via unknown vectors.	CWE-200 Information Exposure	CVE-2010-0670	2017-08-17 10:32	2010-02-23	Show	GitHub Exploit DB Packet Storm

345474	-	webmastersite	wsn_guest	SQL injection vulnerability in index.php in WSN Guest 1.02 allows remote attackers to execute arbitrary SQL commands via the orderlinks parameter.	CWE-89 SQL Injection	CVE-2010-0672	2017-08-17 10:32	2010-02-23	Show	GitHub Exploit DB Packet Storm

345475	-	2enetworx	statcountex	StatCounteX 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for path/stats.mdb.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-0674	2017-08-17 10:32	2010-02-23	Show	GitHub Exploit DB Packet Storm

345476	-	orbitals	orbital_viewer	Stack-based buffer overflow in Orbital Viewer 1.04 allows user-assisted remote attackers to execute arbitrary code via a crafted (1) .orb or (2) .ov file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-0688	2017-08-17 10:32	2010-03-20	Show	GitHub Exploit DB Packet Storm

345477	-	commodityrentals	video_games_rentals	SQL injection vulnerability in index.php in CommodityRentals Video Games Rentals allows remote attackers to execute arbitrary SQL commands via the pfid parameter in a catalog action.	CWE-89 SQL Injection	CVE-2010-0690	2017-08-17 10:32	2010-02-24	Show	GitHub Exploit DB Packet Storm

345478	-	commodityrentals	trade_manager_script	SQL injection vulnerability in products.php in CommodityRentals Trade Manager Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.	CWE-89 SQL Injection	CVE-2010-0693	2017-08-17 10:32	2010-02-24	Show	GitHub Exploit DB Packet Storm

345479	-	percha	com_perchagallery	SQL injection vulnerability in the PerchaGallery (com_perchagallery) component before 1.5b for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an editunidad …	CWE-89 SQL Injection	CVE-2010-0694	2017-08-17 10:32	2010-02-24	Show	GitHub Exploit DB Packet Storm

345480	-	ilya_ivanchenko	itweak_upload	Cross-site scripting (XSS) vulnerability in the iTweak Upload module 6.x-1.x before 6.x-1.2 and 6.x-2.x before 6.x-2.3 for Drupal allows remote authenticated users, with create content and upload fil…	CWE-79 Cross-site Scripting	CVE-2010-0697	2017-08-17 10:32	2010-02-24	Show	GitHub Exploit DB Packet Storm