Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228531 2.1 注意 Mixpanel Project - Drupal 用 Mixpanel モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5585 2012-12-28 15:50 2012-11-28 Show GitHub Exploit DB Packet Storm
228532 4.3 警告 Made to Order Software - Drupal 用 Table of Contents モジュールにおけるノードのヘッダを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5584 2012-12-28 15:49 2012-11-14 Show GitHub Exploit DB Packet Storm
228533 6.8 警告 Sensio Labs - Symfony における任意のサービスにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6432 2012-12-28 15:20 2012-12-20 Show GitHub Exploit DB Packet Storm
228534 6.4 警告 Sensio Labs - Symfony における URI の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6431 2012-12-28 15:18 2012-12-20 Show GitHub Exploit DB Packet Storm
228535 4.3 警告 Sebastian Heinlein
Canonical		 - Ubuntu の Aptdaemon における任意のパッケージレポジトリの GPG キーをインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2012-0962 2012-12-28 15:03 2012-12-17 Show GitHub Exploit DB Packet Storm
228536 2.1 注意 Debian - Ubuntu で使用される APT における重要なシェル情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-0961 2012-12-28 14:59 2012-12-12 Show GitHub Exploit DB Packet Storm
228537 4.3 警告 PS Project Management Team - Firefox 用 Unity integration 拡張機能における同一生成元ポリシーを回避される脆弱性 CWE-DesignError
CVE-2012-0958 2012-12-28 14:58 2012-10-23 Show GitHub Exploit DB Packet Storm
228538 - - Ruby on Rails project - ** 削除 ** Ruby on Rails 用 Authlogic gem における SQL インジェクションの脆弱性 - CVE-2012-5664 2012-12-28 14:22 2012-12-26 Show GitHub Exploit DB Packet Storm
228539 4.3 警告 Opera Software ASA - Android 版 Opera Mini ウェブブラウザおよび Opera Mobile ウェブブラウザにおいて任意のスクリプトが実行される脆弱性 CWE-200
情報漏えい 		CVE-2012-5180 2012-12-28 14:17 2012-12-20 Show GitHub Exploit DB Packet Storm
228540 2.6 注意 WordPress.org - WordPress における有効なセッション識別子を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5868 2012-12-28 11:58 2012-12-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
354091 - apple mac_os_x
mac_os_x_server 		SFLServer in OS Services in Apple Mac OS X before 10.6.3 allows local users to gain privileges via vectors related to use of wheel group membership during access to the home directories of user accou… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0509 2010-03-31 13:00 2010-03-31 Show GitHub Exploit DB Packet Storm
354092 - apple mac_os_x_server Podcast Producer in Apple Mac OS X 10.6 before 10.6.3 deletes the access restrictions of a Podcast Composer workflow when this workflow is overwritten, which allows attackers to access a workflow via… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0511 2010-03-31 13:00 2010-03-31 Show GitHub Exploit DB Packet Storm
354093 - apple mac_os_x
mac_os_x_server 		The Application Firewall in Apple Mac OS X 10.5.8 drops unspecified firewall rules after a reboot, which might allow remote attackers to bypass intended access restrictions via packet data, related t… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-2801 2010-03-31 13:00 2010-03-31 Show GitHub Exploit DB Packet Storm
354094 - apple safari Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors related to an array of long stri… CWE-94
Code Injection 		CVE-2010-1176 2010-03-30 13:00 2010-03-30 Show GitHub Exploit DB Packet Storm
354095 - apple safari Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving document.write calls w… CWE-94
Code Injection 		CVE-2010-1177 2010-03-30 13:00 2010-03-30 Show GitHub Exploit DB Packet Storm
354096 - apple safari Safari on Apple iPhone OS 3.1.3 for iPod touch allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a large integer in the numcolors attribu… CWE-189
Numeric Errors 		CVE-2010-1179 2010-03-30 13:00 2010-03-30 Show GitHub Exploit DB Packet Storm
354097 - ibm websphere_application_server Multiple unspecified vulnerabilities in the administrative console in IBM WebSphere Application Server (WAS) 7.0.x before 7.0.0.9 on z/OS have unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2010-1182 2010-03-30 13:00 2010-03-30 Show GitHub Exploit DB Packet Storm
354098 - typo3 ws_ecard Directory traversal vulnerability in the Webesse E-Card (ws_ecard) extension 1.0.2 and earlier for TYPO3 has unspecified impact and remote attack vectors. CWE-22
Path Traversal 		CVE-2009-4740 2010-03-30 01:42 2010-03-27 Show GitHub Exploit DB Packet Storm
354099 - ibm aix bos.rte.libc 5.3.9.4 on IBM AIX 5.3 does not properly support reading a certain address field after a successful getaddrinfo function call, which allows context-dependent attackers to cause a denial … NVD-CWE-Other
CVE-2010-1124 2010-03-29 13:00 2010-03-27 Show GitHub Exploit DB Packet Storm
354100 - jbmc-software directadmin JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this tem… CWE-59
Link Following 		CVE-2009-1526 2010-03-29 13:00 2009-05-6 Show GitHub Exploit DB Packet Storm