Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227271	7.8	危険	ウインドリバー株式会社	-	Wind River VxWorks の FTP デーモンにおけるアクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2968	2012-12-20 19:29	2010-08-5	Show	GitHub Exploit DB Packet Storm

227272	7.8	危険	ウインドリバー株式会社	-	Wind River VxWorks の loginLib におけるアクセス権を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-2967	2012-12-20 19:29	2010-08-5	Show	GitHub Exploit DB Packet Storm

227273	7.8	危険	ウインドリバー株式会社	-	Wind River VxWorks の INCLUDE_SECURITY 機能におけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-2966	2012-12-20 19:29	2010-08-5	Show	GitHub Exploit DB Packet Storm

227274	10	危険	Rockwell Automation ウインドリバー株式会社	-	Rockwell Automation 1756-ENBT series A で使用されている Wind River VxWorks における任意のメモリ領域を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2965	2012-12-20 19:29	2010-08-5	Show	GitHub Exploit DB Packet Storm

227275	6.9	警告	simone rota	-	SLiM における権限を取得される脆弱性	CWE-16 環境設定	CVE-2010-2945	2012-12-20 19:29	2010-08-30	Show	GitHub Exploit DB Packet Storm

227276	5	警告	VideoLAN	-	VideoLAN VLC Media Player の TagLib プラグインにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2937	2012-12-20 19:29	2010-08-20	Show	GitHub Exploit DB Packet Storm

227277	5	警告	ZNC	-	ZNC におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2934	2012-12-20 19:29	2010-08-3	Show	GitHub Exploit DB Packet Storm

227278	9.3	危険	topazsystems	-	SigPlus Pro ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2931	2012-12-20 19:29	2010-08-5	Show	GitHub Exploit DB Packet Storm

227279	7.5	危険	solucija	-	sNews の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2926	2012-12-20 19:29	2010-07-30	Show	GitHub Exploit DB Packet Storm

227280	7.5	危険	silvercover	-	WordPress 用の myLinksDump プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2924	2012-12-20 19:29	2010-07-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
273731	-	font_project	font	Absolute path traversal vulnerability in Font.php in the Font plugin before 7.5.1 for WordPress allows remote administrators to read arbitrary files via a full pathname in the url parameter to AjaxPr…	CWE-22 Path Traversal	CVE-2015-7683	2024-11-21 11:37	2015-10-17	Show	GitHub Exploit DB Packet Storm

273732	-	genetechsolutions	pie_register	Multiple SQL injection vulnerabilities in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allow remote administrators to execute arbitrary SQL commands via the (1…	CWE-89 SQL Injection	CVE-2015-7682	2024-11-21 11:37	2015-10-17	Show	GitHub Exploit DB Packet Storm

273733	-	solarwinds	log_and_event_manager	The command line management console (CMC) in SolarWinds Log and Event Manager (LEM) before 6.2.0 allows remote attackers to execute arbitrary code via unspecified vectors involving the ping feature.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-7840	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273734	-	solarwinds	log_and_event_manager	SolarWinds Log and Event Manager (LEM) allows remote attackers to execute arbitrary commands on managed computers via a request to services/messagebroker/nonsecurestreamingamf involving the tracerout…	CWE-77 Command Injection	CVE-2015-7839	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273735	-	solarwinds	storage_manager	ProcessFileUpload.jsp in SolarWinds Storage Manager before 6.2 allows remote attackers to upload and execute arbitrary files via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2015-7838	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273736	-	sap	businessobjects_xi businessobjects_edge businessobjects	SAP BusinessObjects BI Platform 4.1, BusinessObjects Edge 4.0, and BusinessObjects XI (BOXI) 3.1 R3 allow remote attackers to cause a denial of service (out-of-bounds read and listener crash) via a c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7730	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273737	-	sap	hana	Eval injection in test-net.xsjs in the Web-based Development Workbench in SAP HANA Developer Edition DB 1.00.091.00.1418659308 allows remote authenticated users to execute arbitrary XSJS code via uns…	CWE-94 Code Injection	CVE-2015-7729	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273738	-	sap	hana	Cross-site scripting (XSS) vulnerability in user creation in the Web-based Development Workbench in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote authenticated users to inject arbitrary …	CWE-79 Cross-site Scripting	CVE-2015-7728	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273739	-	sap	hana	Multiple SQL injection vulnerabilities in the Web-based Development Workbench in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allow remote authenticated users to execute arbitrary SQL commands via un…	CWE-89 SQL Injection	CVE-2015-7727	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273740	-	sap	hana	Cross-site scripting (XSS) vulnerability in role deletion in the Web-based Development Workbench in SAP HANA DB 1.00.091.00.1418659308 allows remote authenticated users to inject arbitrary web script…	CWE-79 Cross-site Scripting	CVE-2015-7726	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm