Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227391 5 警告 radovan garabik - Pyftpd の auth_db_config.py における FTP サーバから任意のファイルを読まれる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-2073 2012-12-20 19:29 2010-06-13 Show GitHub Exploit DB Packet Storm
227392 3.6 注意 radovan garabik - Pyftpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-310
暗号の問題 		CVE-2010-2072 2012-12-20 19:29 2010-06-13 Show GitHub Exploit DB Packet Storm
227393 7.5 危険 wildbit - beanstalkd の put command 機能における任意の Beanstalk コマンドを実行される脆弱性 CWE-Other
その他 		CVE-2010-2060 2012-12-20 19:29 2010-06-7 Show GitHub Exploit DB Packet Storm
227394 2.1 注意 prelude-technologies - Prewikka の setup.py における SQL データベースパスワードを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2058 2012-12-20 19:29 2010-06-7 Show GitHub Exploit DB Packet Storm
227395 10 危険 Standards Based Linux Instrumentation (SBLIM) - SBLIM SFCB の httpAdapter における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2054 2012-12-20 19:29 2010-05-14 Show GitHub Exploit DB Packet Storm
227396 7.5 危険 shopex - ECShop の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2042 2012-12-20 19:29 2010-05-25 Show GitHub Exploit DB Packet Storm
227397 4.3 警告 php-calendar project - PHP-Calendar の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2041 2012-12-20 19:29 2010-05-25 Show GitHub Exploit DB Packet Storm
227398 4.3 警告 V-EVA - V-EVA Shopzilla Affiliate Script PHP の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2040 2012-12-20 19:29 2010-05-25 Show GitHub Exploit DB Packet Storm
227399 1.9 注意 wolfram research - Mathematica における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2027 2012-12-20 19:29 2010-05-24 Show GitHub Exploit DB Packet Storm
227400 6.8 警告 sebrac.webcindario - MigasCMS の function.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2012 2012-12-20 19:29 2010-05-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275701 6.1 MEDIUM
Network 		ibm websphere_portal Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF19, and 8.5.0 before CF08 a… CWE-79
Cross-site Scripting 		CVE-2015-4998 2024-11-21 11:32 2015-12-21 Show GitHub Exploit DB Packet Storm
275702 6.1 MEDIUM
Network 		ibm websphere_portal Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF19, and 8.5.0 before CF08 a… CWE-79
Cross-site Scripting 		CVE-2015-4993 2024-11-21 11:32 2015-12-21 Show GitHub Exploit DB Packet Storm
275703 - redhat
gnu
canonical 		enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
glibc
ubuntu_linux 		The get_contents function in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) before 2.20 might allow local users to cause a denial of service (heap corrup… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5277 2024-11-21 11:32 2015-12-18 Show GitHub Exploit DB Packet Storm
275704 - apache cordova_file_transfer CRLF injection vulnerability in the Apache Cordova File Transfer Plugin (cordova-plugin-file-transfer) for Android before 1.3.0 allows remote attackers to inject arbitrary headers via CRLF sequences … NVD-CWE-Other
CVE-2015-5204 2024-11-21 11:32 2015-12-18 Show GitHub Exploit DB Packet Storm
275705 - redhat jboss_enterprise_application_platform Red Hat JBoss Enterprise Application Platform (EAP) before 6.4.5 does not properly authorize access to shut down the server, which allows remote authenticated users with the Monitor, Deployer, or Aud… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-5304 2024-11-21 11:32 2015-12-17 Show GitHub Exploit DB Packet Storm
275706 - canonical
redhat
apple
xmlsoft
hp
debian 		ubuntu_linux
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
watchos
iphone_os
mac_os_x
tvos
libxml2
icewall_file… 		The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU cons… CWE-399
 Resource Management Errors 		CVE-2015-5312 2024-11-21 11:32 2015-12-16 Show GitHub Exploit DB Packet Storm
275707 - ibm websphere_application_server The Edge Component Caching Proxy in IBM WebSphere Application Server (WAS) 8.0 before 8.0.0.12 and 8.5 before 8.5.5.8 does not properly encrypt data, which allows remote authenticated users to obtain… CWE-200
Information Exposure 		CVE-2015-5004 2024-11-21 11:32 2015-12-15 Show GitHub Exploit DB Packet Storm
275708 - opensuse
simon_tatham 		leap
opensuse
putty 		Integer overflow in the terminal emulator in PuTTY before 0.66 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via an ECH (erase characters… CWE-189
Numeric Errors 		CVE-2015-5309 2024-11-21 11:32 2015-12-8 Show GitHub Exploit DB Packet Storm
275709 - ibm
redhat
suse 		java_2_sdk
java_sdk
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
satellite
enterprise_linux_server_eus
linux_enterprise_server
linux_enterpris… 		IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR2, 7 R1 before SR3 FP20, 7 before SR9 FP20, 6 R1 before SR8 FP15, and 6 before SR16 FP15 allow physically proximate attacke… CWE-200
Information Exposure 		CVE-2015-5006 2024-11-21 11:32 2015-12-8 Show GitHub Exploit DB Packet Storm
275710 - redhat libreport libreport 2.0.7 before 2.6.3 only saves changes to the first file when editing a crash report, which allows remote attackers to obtain sensitive information via unspecified vectors related to the (1)… CWE-200
Information Exposure 		CVE-2015-5302 2024-11-21 11:32 2015-12-8 Show GitHub Exploit DB Packet Storm