Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227231	10	危険	Standards Based Linux Instrumentation (SBLIM)	-	SBLIM SFCB の httpAdapter におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1937	2012-12-20 19:29	2010-05-14	Show	GitHub Exploit DB Packet Storm

227232	9.3	危険	XnSoft	-	XnView におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1932	2012-12-20 19:29	2010-06-16	Show	GitHub Exploit DB Packet Storm

227233	7.5	危険	rifat kurban	-	tekno.Portal の makale.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1925	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

227234	7.5	危険	phpscripte24	-	Hi Web Wiesbaden Live Shopping Multi Portal System の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1924	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

227235	7.5	危険	phpscripte24	-	Hi Web Wiesbaden Web Social Network Freunde Community System の user.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1923	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

227236	7.5	危険	xinha s9y	-	Serendipity で使用されている Xinha WYSIWYG エディタにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1916	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

227237	4.3	警告	tufat	-	FlashCard の cPlayer.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1872	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

227238	6.8	警告	レッドハット	-	Red Hat Linux 用の JBoss Enterprise Application Platform で使用されている jboss-seam2 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1871	2012-12-20 19:29	2010-07-27	Show	GitHub Exploit DB Packet Storm

227239	6.8	警告	realitymedias	-	RepairShop2 の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1857	2012-12-20 19:29	2010-05-7	Show	GitHub Exploit DB Packet Storm

227240	2.6	注意	realitymedias	-	RepairShop2 の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1856	2012-12-20 19:29	2010-05-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275511	4.3	MEDIUM Network	moodle	moodle	mod/forum/post.php in Moodle 2.9.x before 2.9.1 does not consider the mod/forum:canposttomygroups capability before authorizing "Post a copy to all groups" actions, which allows remote authenticated …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3273	2024-11-21 11:29	2016-02-22	Show	GitHub Exploit DB Packet Storm

275512	7.4	HIGH Network	moodle	moodle	Open redirect vulnerability in the clean_param function in lib/moodlelib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to redire…	NVD-CWE-Other	CVE-2015-3272	2024-11-21 11:29	2016-02-22	Show	GitHub Exploit DB Packet Storm

275513	-		f5	big-iq_security big-ip_application_acceleration_manager big-ip_wan_optimization_manager big-iq_adc big-ip_application_security_manager big-ip_global_traffic_manager big-iq_device	The iControl API in F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.0 before 11.5.3 HF2 and 11.6.0 before 11.6.0 HF6, BIG-IP AAM 11.4.0 before 11.5.3 HF2 and 11.6.0 before 11.6…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3628	2024-11-21 11:29	2015-12-8	Show	GitHub Exploit DB Packet Storm

275514	7.5	HIGH Network	openldap oracle redhat	openldap linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_server_tus enterprise_linux_server_aus …	The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode cipher strings, which might cause a weaker than intended cipher to be …	NVD-CWE-noinfo	CVE-2015-3276	2024-11-21 11:29	2015-12-8	Show	GitHub Exploit DB Packet Storm

275515	-		apache	ambari	Apache Ambari before 2.0.2 or 2.1.x before 2.1.1 allows remote authenticated users to gain administrative privileges via unspecified vectors, possibly related to changing passwords.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3270	2024-11-21 11:29	2015-11-3	Show	GitHub Exploit DB Packet Storm

275516	-		polkit_project opensuse	polkit opensuse	PolicyKit (aka polkit) before 0.113 allows local users to cause a denial of service (memory corruption and polkitd daemon crash) and possibly gain privileges via unspecified vectors, related to "java…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3256	2024-11-21 11:29	2015-10-27	Show	GitHub Exploit DB Packet Storm

275517	-		polkit_project	polkit	The polkit_backend_action_pool_init function in polkitbackend/polkitbackendactionpool.c in PolicyKit (aka polkit) before 0.113 might allow local users to gain privileges via duplicate action IDs in a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3255	2024-11-21 11:29	2015-10-27	Show	GitHub Exploit DB Packet Storm

275518	-		openstack	nova	OpenStack Compute (nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) does not properly delete instances from compute nodes, which allows remote authenticated users to cause a denial of…	CWE-399 Resource Management Errors	CVE-2015-3280	2024-11-21 11:29	2015-10-27	Show	GitHub Exploit DB Packet Storm

275519	-		apple	mac_os_x	The Telephony component in Apple OS X before 10.11, when the Continuity feature is enabled, allows local users to bypass intended telephone-call restrictions via unspecified vectors.	NVD-CWE-noinfo	CVE-2015-3785	2024-11-21 11:29	2015-10-9	Show	GitHub Exploit DB Packet Storm

275520	-		google	android	libutils in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted audio file, aka internal bug 22952485.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-3875	2024-11-21 11:29	2015-10-7	Show	GitHub Exploit DB Packet Storm