Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218921	10	危険	アドビシステムズ	-	Adobe ColdFusion の認証プロセスにおける管理者権限を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-5290	2013-09-24 16:41	2010-08-13	Show	GitHub Exploit DB Packet Storm

218922	6.8	警告	IBM	-	IBM WebSphere Application Server および WAS Feature Pack for Web Services における特権的アクセス権を取得される	CWE-20 不適切な入力確認	CVE-2013-4053	2013-09-24 16:27	2013-09-9	Show	GitHub Exploit DB Packet Storm

218923	4.3	警告	IBM	-	IBM WebSphere Application Server の UDDI 管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4052	2013-09-24 16:25	2013-09-9	Show	GitHub Exploit DB Packet Storm

218924	4.3	警告	IBM	-	IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0596	2013-09-24 16:24	2013-09-9	Show	GitHub Exploit DB Packet Storm

218925	7.1	危険	IBM	-	IBM Domino の iNotes におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4068	2013-09-24 16:20	2013-09-17	Show	GitHub Exploit DB Packet Storm

218926	4.3	警告	アップル	-	Apple iOS などの製品で使用される WebKit における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5159	2013-09-24 15:28	2013-09-18	Show	GitHub Exploit DB Packet Storm

218927	4.3	警告	アップル	-	Apple iOS の Telephony サブシステムにおける通話の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5156	2013-09-24 15:23	2013-09-18	Show	GitHub Exploit DB Packet Storm

218928	7.1	危険	アップル	-	Apple iOS の Sandbox サブシステムにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5155	2013-09-24 15:19	2013-09-18	Show	GitHub Exploit DB Packet Storm

218929	2.1	注意	アップル	-	Apple iOS の Springboard における通知を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5153	2013-09-24 15:16	2013-09-18	Show	GitHub Exploit DB Packet Storm

218930	4.3	警告	アップル	-	Apple iOS の Mobile Safari における URL バーを偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2013-5152	2013-09-24 15:11	2013-09-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307651	-	bea bea_systems	weblogic_server	Multiple cross-site scripting (XSS) vulnerabilities in BEA WebLogic Server and Express 6.1 through 10.0 MP1 allow remote attackers to inject arbitrary web script or HTML via unspecified samples. NOT…	CWE-79 Cross-site Scripting	CVE-2008-0902	2011-03-8 12:05	2008-02-23	Show	GitHub Exploit DB Packet Storm

307652	-	bea_systems	weblogic_express weblogic_server	Unspecified vulnerability in the BEA WebLogic Server and Express proxy plugin, as distributed before November 2007 and before 9.2 MP3 and 10.0 MP2, allows remote attackers to cause a denial of servic…	NVD-CWE-noinfo	CVE-2008-0903	2011-03-8 12:05	2008-02-23	Show	GitHub Exploit DB Packet Storm

307653	-	bea_systems	aqualogic_interaction plumtree_collaboration	Unspecified vulnerability in the download servlet in BEA Plumtree Collaboration 4.1 through SP2 and AquaLogic Interaction 4.2 through MP1 allows remote attackers to read arbitrary files via a crafted…	CWE-200 Information Exposure	CVE-2008-0904	2011-03-8 12:05	2008-02-23	Show	GitHub Exploit DB Packet Storm

307654	-	the_sword_project	diatheke_front_end sword	diatheke.pl in The SWORD Project Diatheke 1.5.9 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the range parameter.	CWE-20 Improper Input Validation	CVE-2008-0932	2011-03-8 12:05	2008-02-26	Show	GitHub Exploit DB Packet Storm

307655	-	novell	iprint iprint_client	Stack-based buffer overflow in the Novell iPrint Control ActiveX control in ienipp.ocx in Novell iPrint Client before 4.34 allows remote attackers to execute arbitrary code via a long argument to the…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-0935	2011-03-8 12:05	2008-02-26	Show	GitHub Exploit DB Packet Storm

307656	-	apple	mac_os_x mac_os_x_server	Off-by-one error in the Libsystem strnstr API in libc on Apple Mac OS X 10.4.11 allows context-dependent attackers to cause a denial of service (crash) via crafted arguments that trigger a buffer ove…	CWE-189 Numeric Errors	CVE-2008-0988	2011-03-8 12:05	2008-03-19	Show	GitHub Exploit DB Packet Storm

307657	-	fujitsu	interstage_application_server_enterprise interstage_application_server_standard_j interstage_apworks_enterprise interstage_apworks_standard_j interstage_studio_enterprise interstage_st…	Buffer overflow in the Single Sign-On function in Fujitsu Interstage Application Server 8.0.0 through 8.0.3 and 9.0.0, Interstage Studio 8.0.1 and 9.0.0, and Interstage Apworks 8.0.0 allows remote at…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-1040	2011-03-8 12:05	2008-02-28	Show	GitHub Exploit DB Packet Storm

307658	-	internet_security_systems	internet_scanner	Cross-site scripting (XSS) vulnerability in the report interface in Internet Security Systems (ISS) Internet Scanner 7.0 Service Pack 2 Build 7.2.2005.52 allows remote attackers to inject arbitrary w…	CWE-79 Cross-site Scripting	CVE-2008-1073	2011-03-8 12:05	2008-02-29	Show	GitHub Exploit DB Packet Storm

307659	-	icq	mirabilis_icq	Format string vulnerability in the embedded Internet Explorer component for Mirabilis ICQ 6 build 6043 allows remote servers to execute arbitrary code or cause a denial of service (crash) via unspeci…	CWE-134 Use of Externally-Controlled Format String	CVE-2008-1120	2011-03-8 12:05	2008-03-4	Show	GitHub Exploit DB Packet Storm

307660	-	ibm	websphere_mq	Unspecified vulnerability in IBM WebSphere MQ 6.0.x before 6.0.2.2 and 5.3 before Fix Pack 14 allows attackers to bypass access restrictions for a queue manager via a SVRCONN (MQ client) channel.	CWE-287 Improper Authentication	CVE-2008-1130	2011-03-8 12:05	2008-03-4	Show	GitHub Exploit DB Packet Storm