Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219501	7.5	危険	CloudBees	-	CloudBees Jenkins の Winstone サーブレットコンテナにおけるセッションをハイジャックされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2060	2014-10-23 17:31	2014-02-15	Show	GitHub Exploit DB Packet Storm

219502	6.5	警告	CloudBees	-	CloudBees Jenkins の BuildTrigger におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-2058	2014-10-23 17:30	2014-02-11	Show	GitHub Exploit DB Packet Storm

219503	4	警告	CloudBees	-	CloudBees Jenkins における制限されているプロジェクト以外のプロジェクトを構築される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-7330	2014-10-23 17:30	2013-02-14	Show	GitHub Exploit DB Packet Storm

219504	4.3	警告	C97net	-	C97net Cart Engine の skins/default/outline.tpl におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8307	2014-10-23 16:58	2014-08-21	Show	GitHub Exploit DB Packet Storm

219505	7.5	危険	C97net	-	C97net Cart Engine の cart.php 内の sql_query 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-8306	2014-10-23 16:58	2014-08-21	Show	GitHub Exploit DB Packet Storm

219506	7.5	危険	Splunk	-	Splunk Enterprise の Splunk Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8303	2014-10-23 16:57	2014-09-30	Show	GitHub Exploit DB Packet Storm

219507	6.5	警告	Splunk	-	Splunk Enterprise の Splunk Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8302	2014-10-23 16:57	2014-09-30	Show	GitHub Exploit DB Packet Storm

219508	4.3	警告	Splunk	-	Splunk Enterprise の Splunk Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-8301	2014-10-23 16:56	2014-09-30	Show	GitHub Exploit DB Packet Storm

219509	2.6	注意	Max Foundry, LLC.	-	WordPress 用 Max Foundry MaxButtons プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7181	2014-10-23 16:55	2014-10-2	Show	GitHub Exploit DB Packet Storm

219510	4.3	警告	Phil Derksen	-	WordPress 用 Google Calendar Events プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7138	2014-10-23 16:55	2014-10-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344481	-	microsoft	visio	Buffer overflow in VISIODWG.DLL before 10.0.6880.4 in Microsoft Office Visio allows user-assisted remote attackers to execute arbitrary code via a crafted DXF file, a different vulnerability than CVE…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1681	2018-10-11 04:57	2010-05-6	Show	GitHub Exploit DB Packet Storm

344482	-	zikula	zikula_application_framework	Multiple cross-site scripting (XSS) vulnerabilities in Zikula Application Framework 1.2.2, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) func paramet…	CWE-79 Cross-site Scripting	CVE-2010-1724	2018-10-11 04:57	2010-05-6	Show	GitHub Exploit DB Packet Storm

344483	-	apple	safari webkit	Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or caus…	CWE-399 Resource Management Errors	CVE-2010-1749	2018-10-11 04:57	2010-06-12	Show	GitHub Exploit DB Packet Storm

344484	-	artifex	gpl_ghostscript	Stack-based buffer overflow in the parser function in GhostScript 8.70 and 8.64 allows context-dependent attackers to execute arbitrary code via a crafted PostScript file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1869	2018-10-11 04:57	2010-05-12	Show	GitHub Exploit DB Packet Storm

344485	-	emc	rsa_key_manager_client	SQL injection vulnerability in EMC RSA Key Manager (RKM) C Client 1.5.x allows user-assisted remote attackers to execute arbitrary SQL commands via the metadata section of encrypted key data.	CWE-89 SQL Injection	CVE-2010-1904	2018-10-11 04:57	2010-06-8	Show	GitHub Exploit DB Packet Storm

344486	-	consona	consona_live_assistance consona_dynamic_agent consona_subscriber_assistance	Multiple cross-site scripting (XSS) vulnerabilities in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allow remote attackers to inject arbitrary web script or HTML via crafted inpu…	CWE-79 Cross-site Scripting	CVE-2010-1905	2018-10-11 04:57	2010-05-12	Show	GitHub Exploit DB Packet Storm

344487	-	consona	consona_dynamic_agent consona_repair_manager consona_subscriber_activation consona_subscriber_agent	tgsrv.exe in the Repair Service in Consona Dynamic Agent, Repair Manager, Subscriber Activation, and Subscriber Agent relies on a predictable timestamp field to validate input to the \\.\pipe\__Repai…	CWE-310 Cryptographic Issues	CVE-2010-1906	2018-10-11 04:57	2010-05-12	Show	GitHub Exploit DB Packet Storm

344488	-	consona	consona_dynamic_agent consona_live_assistance consona_subscriber_assistance	The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to discover the username of the client user, and conse…	CWE-200 Information Exposure	CVE-2010-1907	2018-10-11 04:57	2010-05-12	Show	GitHub Exploit DB Packet Storm

344489	-	consona	consona_dynamic_agent consona_live_assistance consona_subscriber_assistance	The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance does not properly restrict access to the HTTPDownloadFile, HTTPGetFile, Instal…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-1908	2018-10-11 04:57	2010-05-12	Show	GitHub Exploit DB Packet Storm

344490	-	consona	consona_dynamic_agent consona_live_assistance consona_subscriber_assistance	Buffer overflow in the RunCmd method in the SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to execute arb…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1909	2018-10-11 04:57	2010-05-12	Show	GitHub Exploit DB Packet Storm