Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227371	2.1	注意	レッドハット	-	Red Hat Enterprise Virtualization Hypervisor の VDSM における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2223	2012-12-20 19:29	2010-06-22	Show	GitHub Exploit DB Packet Storm

227372	7.2	危険	RPM	-	RPM の lib/fsm.c におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2199	2012-12-20 19:29	2010-06-8	Show	GitHub Exploit DB Packet Storm

227373	7.2	危険	RPM	-	RPM の lib/fsm.c における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2198	2012-12-20 19:29	2010-06-8	Show	GitHub Exploit DB Packet Storm

227374	5.8	警告	RPM	-	RPM の rpmbuild における home ディレクトリを削除される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2197	2012-12-20 19:29	2010-06-8	Show	GitHub Exploit DB Packet Storm

227375	1.9	注意	vincent fourmond	-	pmount の policy.c における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2010-2192	2012-12-20 19:29	2010-06-18	Show	GitHub Exploit DB Packet Storm

227376	2.1	注意	speedtech	-	Drupal 用の Storm モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2158	2012-12-20 19:29	2010-05-19	Show	GitHub Exploit DB Packet Storm

227377	4.3	警告	zonecheck	-	ZoneCheck の zc/publisher/html.rb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2155	2012-12-20 19:29	2010-05-26	Show	GitHub Exploit DB Packet Storm

227378	6.8	警告	Tecnick.com	-	TCExam の admin/code/tce_functions_tcecode_editor.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-2153	2012-12-20 19:29	2010-06-3	Show	GitHub Exploit DB Packet Storm

227379	7.5	危険	unisoft	-	Joomla! 用の My Car コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2148	2012-12-20 19:29	2010-06-3	Show	GitHub Exploit DB Packet Storm

227380	4.3	警告	unisoft	-	Joomla! 用の My Car コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2147	2012-12-20 19:29	2010-06-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
273731	-	font_project	font	Absolute path traversal vulnerability in Font.php in the Font plugin before 7.5.1 for WordPress allows remote administrators to read arbitrary files via a full pathname in the url parameter to AjaxPr…	CWE-22 Path Traversal	CVE-2015-7683	2024-11-21 11:37	2015-10-17	Show	GitHub Exploit DB Packet Storm

273732	-	genetechsolutions	pie_register	Multiple SQL injection vulnerabilities in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allow remote administrators to execute arbitrary SQL commands via the (1…	CWE-89 SQL Injection	CVE-2015-7682	2024-11-21 11:37	2015-10-17	Show	GitHub Exploit DB Packet Storm

273733	-	solarwinds	log_and_event_manager	The command line management console (CMC) in SolarWinds Log and Event Manager (LEM) before 6.2.0 allows remote attackers to execute arbitrary code via unspecified vectors involving the ping feature.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-7840	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273734	-	solarwinds	log_and_event_manager	SolarWinds Log and Event Manager (LEM) allows remote attackers to execute arbitrary commands on managed computers via a request to services/messagebroker/nonsecurestreamingamf involving the tracerout…	CWE-77 Command Injection	CVE-2015-7839	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273735	-	solarwinds	storage_manager	ProcessFileUpload.jsp in SolarWinds Storage Manager before 6.2 allows remote attackers to upload and execute arbitrary files via unspecified vectors.	CWE-20 Improper Input Validation	CVE-2015-7838	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273736	-	sap	businessobjects_xi businessobjects_edge businessobjects	SAP BusinessObjects BI Platform 4.1, BusinessObjects Edge 4.0, and BusinessObjects XI (BOXI) 3.1 R3 allow remote attackers to cause a denial of service (out-of-bounds read and listener crash) via a c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-7730	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273737	-	sap	hana	Eval injection in test-net.xsjs in the Web-based Development Workbench in SAP HANA Developer Edition DB 1.00.091.00.1418659308 allows remote authenticated users to execute arbitrary XSJS code via uns…	CWE-94 Code Injection	CVE-2015-7729	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273738	-	sap	hana	Cross-site scripting (XSS) vulnerability in user creation in the Web-based Development Workbench in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allows remote authenticated users to inject arbitrary …	CWE-79 Cross-site Scripting	CVE-2015-7728	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273739	-	sap	hana	Multiple SQL injection vulnerabilities in the Web-based Development Workbench in SAP HANA DB 1.00.73.00.389160 (NewDB100_REL) allow remote authenticated users to execute arbitrary SQL commands via un…	CWE-89 SQL Injection	CVE-2015-7727	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm

273740	-	sap	hana	Cross-site scripting (XSS) vulnerability in role deletion in the Web-based Development Workbench in SAP HANA DB 1.00.091.00.1418659308 allows remote authenticated users to inject arbitrary web script…	CWE-79 Cross-site Scripting	CVE-2015-7726	2024-11-21 11:37	2015-10-16	Show	GitHub Exploit DB Packet Storm