Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
220091	4.3	警告	HL7	-	HL7 C-CDA の CDA.xsl におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-5452	2014-09-3 18:25	2013-04-14	Show	GitHub Exploit DB Packet Storm

220092	4.3	警告	HL7	-	HL7 C-CDA の CDA.xsl における重要な URL を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-3862	2014-09-3 18:25	2014-04-14	Show	GitHub Exploit DB Packet Storm

220093	4.3	警告	HL7	-	HL7 C-CDA の CDA.xsl におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-3861	2014-09-3 18:24	2014-04-14	Show	GitHub Exploit DB Packet Storm

220094	4	警告	Amazon.com, Inc.	-	Android 版アプリ Kindle における SSL サーバ証明書の検証不備の脆弱性	CWE-Other その他	CVE-2014-3908	2014-09-3 18:07	2014-08-29	Show	GitHub Exploit DB Packet Storm

220095	3.3	注意	Android for MSM	-	Code Aurora Forum リリースの Android 用の Qualcomm Innovation Center (QuIC) init スクリプトにおけるファイルのメタデータを変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2013-6124	2014-09-3 17:17	2013-10-15	Show	GitHub Exploit DB Packet Storm

220096	5	警告	Android for MSM	-	Code Aurora Forum リリースの Android 用の特定の Qualcomm Innovation Center パッチにおけるディスク暗号化のパスワードを取得される脆弱性	CWE-Other その他	CVE-2013-2599	2014-09-3 17:16	2013-07-3	Show	GitHub Exploit DB Packet Storm

220097	7.2	危険	Android for MSM	-	MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 acdb オーディオドライバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-2597	2014-09-3 15:45	2013-06-21	Show	GitHub Exploit DB Packet Storm

220098	7.2	危険	Android for MSM	-	MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2595	2014-09-3 15:44	2013-05-1	Show	GitHub Exploit DB Packet Storm

220099	4.3	警告	Linux	-	Linux Kernel の virt/kvm/iommu.c 内の kvm_iommu_map_pages 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2014-3601	2014-09-3 15:12	2014-08-19	Show	GitHub Exploit DB Packet Storm

220100	2.1	注意	Ganeti project	-	Ganeti の lib/client/gnt_cluster.py の _UpgradeBeforeConfigurationChange 関数における SSL キーを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-5247	2014-09-3 14:27	2014-08-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
344501	-	digium	asterisk	main/acl.c in Asterisk Open Source 1.6.0.x before 1.6.0.25, 1.6.1.x before 1.6.1.17, and 1.6.2.x before 1.6.2.5 does not properly enforce remote host access controls when CIDR notation "/0" is used i…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-1224	2018-10-11 04:56	2010-04-2	Show	GitHub Exploit DB Packet Storm

344502	-	microsoft	virtual_pc virtual_server windows_virtual_pc	The memory-management implementation in the Virtual Machine Monitor (aka VMM or hypervisor) in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-1225	2018-10-11 04:56	2010-04-2	Show	GitHub Exploit DB Packet Storm

344503	-	sun	java_system_communications_express	Cross-site scripting (XSS) vulnerability in Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to inject arbitrary web script or HTML via the subject field of a message, as de…	CWE-79 Cross-site Scripting	CVE-2010-1227	2018-10-11 04:56	2010-04-2	Show	GitHub Exploit DB Packet Storm

344504	-	bbsxp	bbsxp	Cross-site scripting (XSS) vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web script or HTML via the ThreadID parameter.	CWE-79 Cross-site Scripting	CVE-2010-1275	2018-10-11 04:56	2010-04-7	Show	GitHub Exploit DB Packet Storm

344505	-	zabbix	zabbix	SQL injection vulnerability in the user.authenticate method in the API in Zabbix 1.8 before 1.8.2 allows remote attackers to execute arbitrary SQL commands via the user parameter in JSON data to api_…	CWE-89 SQL Injection	CVE-2010-1277	2018-10-11 04:56	2010-04-7	Show	GitHub Exploit DB Packet Storm

344506	-	adobe	reader acrobat	Buffer overflow in the Atlcom.get_atlcom ActiveX control in gp.ocx in Adobe Download Manager, as used in Adobe Reader and Acrobat 8.x before 8.2 and 9.x before 9.3, allows remote attackers to execute…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1278	2018-10-11 04:56	2010-04-22	Show	GitHub Exploit DB Packet Storm

344507	-	imperva	securesphere_web_application_firewall securesphere_database_firewall	Imperva SecureSphere Web Application Firewall and Database Firewall 5.0.0.5082 through 7.0.0.7078 allow remote attackers to bypass intrusion-prevention functionality via a request that has an appende…	NVD-CWE-noinfo	CVE-2010-1329	2018-10-11 04:56	2010-04-16	Show	GitHub Exploit DB Packet Storm

344508	-	apple	safari webkit	Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or caus…	CWE-399 Resource Management Errors	CVE-2010-1392	2018-10-11 04:56	2010-06-12	Show	GitHub Exploit DB Packet Storm

344509	-	apple	safari webkit	Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, allows remote attackers to execute arbitrary code or caus…	CWE-399 Resource Management Errors	CVE-2010-1397	2018-10-11 04:56	2010-06-12	Show	GitHub Exploit DB Packet Storm

344510	-	apple	safari webkit	WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not properly perform ordered list insertions, which allows remote attackers to execu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-1398	2018-10-11 04:56	2010-06-12	Show	GitHub Exploit DB Packet Storm