Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228201	7.5	危険	shopex	-	ECShop の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2042	2012-12-20 19:29	2010-05-25	Show	GitHub Exploit DB Packet Storm

228202	4.3	警告	php-calendar project	-	PHP-Calendar の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2041	2012-12-20 19:29	2010-05-25	Show	GitHub Exploit DB Packet Storm

228203	4.3	警告	V-EVA	-	V-EVA Shopzilla Affiliate Script PHP の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2040	2012-12-20 19:29	2010-05-25	Show	GitHub Exploit DB Packet Storm

228204	1.9	注意	wolfram research	-	Mathematica における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2010-2027	2012-12-20 19:29	2010-05-24	Show	GitHub Exploit DB Packet Storm

228205	6.8	警告	sebrac.webcindario	-	MigasCMS の function.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2012	2012-12-20 19:29	2010-05-24	Show	GitHub Exploit DB Packet Storm

228206	4.3	警告	proxy2	-	Advanced Poll の misc/get_admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2003	2012-12-20 19:29	2010-05-20	Show	GitHub Exploit DB Packet Storm

228207	2.1	注意	ron jerome	-	Drupal 用の Bibliography モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2000	2012-12-20 19:29	2010-05-12	Show	GitHub Exploit DB Packet Storm

228208	2.1	注意	Saurused Ltd.	-	Saurus CMS の admin/edit.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1997	2012-12-20 19:29	2010-05-20	Show	GitHub Exploit DB Packet Storm

228209	2.1	注意	tomatocms	-	TomatoCMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1996	2012-12-20 19:29	2010-05-20	Show	GitHub Exploit DB Packet Storm

228210	2.1	注意	tomatocms	-	TomatoCMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1995	2012-12-20 19:29	2010-05-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275211	7.8	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.	CWE-476 NULL Pointer Dereference	CVE-2015-9027	2024-11-21 11:39	2017-06-14	Show	GitHub Exploit DB Packet Storm

275212	7.8	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.	CWE-476 NULL Pointer Dereference	CVE-2015-9026	2024-11-21 11:39	2017-06-14	Show	GitHub Exploit DB Packet Storm

275213	7.8	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a QTEE application.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-9025	2024-11-21 11:39	2017-06-14	Show	GitHub Exploit DB Packet Storm

275214	5.5	MEDIUM Local	google	android	In all Android releases from CAF using the Linux kernel, some interfaces were improperly exposed to QTEE applications.	CWE-284 Improper Access Control	CVE-2015-9024	2024-11-21 11:39	2017-06-14	Show	GitHub Exploit DB Packet Storm

275215	7.8	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in the PlayReady API.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-9023	2024-11-21 11:39	2017-06-14	Show	GitHub Exploit DB Packet Storm

275216	7.0	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, time-of-check Time-of-use (TOCTOU) Race Conditions exist in several TZ APIs.	CWE-362 Race Condition	CVE-2015-9022	2024-11-21 11:39	2017-06-14	Show	GitHub Exploit DB Packet Storm

275217	5.5	MEDIUM Local	google	android	In all Android releases from CAF using the Linux kernel, access control to SMEM memory was not enabled.	CWE-284 Improper Access Control	CVE-2015-9021	2024-11-21 11:39	2017-06-14	Show	GitHub Exploit DB Packet Storm

275218	7.8	HIGH Local	google	android	In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in the unlocking of memory.	CWE-476 NULL Pointer Dereference	CVE-2015-9020	2024-11-21 11:39	2017-06-14	Show	GitHub Exploit DB Packet Storm

275219	6.1	MEDIUM Network	mail_project	mail	The mail gem before 2.5.5 for Ruby (aka A Really Ruby Mail Library) is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences imm…	CWE-93 CRLF Injection	CVE-2015-9097	2024-11-21 11:39	2017-06-13	Show	GitHub Exploit DB Packet Storm

275220	6.1	MEDIUM Network	ruby-lang	ruby	Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA subs…	CWE-93 CRLF Injection	CVE-2015-9096	2024-11-21 11:39	2017-06-13	Show	GitHub Exploit DB Packet Storm