Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229921	4.3	警告	MediaWiki	-	MediaWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1647	2012-09-25 17:38	2010-05-28	Show	GitHub Exploit DB Packet Storm

229922	5	警告	Horde	-	Horde の IMP プラグインにおけるファイアーウォールの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1638	2012-09-25 17:38	2010-06-22	Show	GitHub Exploit DB Packet Storm

229923	2.1	注意	Linux	-	Linux kernel の btrfs 機能における書き込み専用ファイルの記述子から重要な情報を読まれる脆弱性	CWE-200 情報漏えい	CVE-2010-1636	2012-09-25 17:38	2010-05-15	Show	GitHub Exploit DB Packet Storm

229924	4.3	警告	LXR Project	-	LXR Cross Referencer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1625	2012-09-25 17:38	2010-06-24	Show	GitHub Exploit DB Packet Storm

229925	4.3	警告	Phorum	-	Phorum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1629	2012-09-25 17:38	2009-01-25	Show	GitHub Exploit DB Packet Storm

229926	6.9	警告	Linux	-	Linux kernel の mm/shmem.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-1643	2012-09-25 17:38	2008-10-28	Show	GitHub Exploit DB Packet Storm

229927	4.3	警告	Moodle	-	Moodle で使用される KSES HTML テキストクリーニングライブラリにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1619	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229928	4.3	警告	Jasig Moodle	-	Moodle で使用される phpCAS クライアントライブラリにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1618	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229929	4	警告	Moodle	-	Moodle の user/view.php における他のユーザのフルネームを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1617	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229930	4	警告	Moodle	-	Moodle における新しいアカウントを作成される脆弱性	CWE-nocwe CWE以外	CVE-2010-1616	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285631	-	sun	jdk jre	Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows context-dependent attackers to gain privileges via an untrus…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-3109	2018-10-12 05:46	2008-07-10	Show	GitHub Exploit DB Packet Storm

285632	-	sun	jdk jre	Unspecified vulnerability in scripting language support in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier allows remote attackers to obtain sensitive information by using an…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-3110	2018-10-12 05:46	2008-07-10	Show	GitHub Exploit DB Packet Storm

285633	-	sun	jdk jre	Secure Static Versioning in Sun Java JDK and JRE 6 Update 6 and earlier, and 5.0 Update 6 through 15, does not properly prevent execution of applets on older JRE releases, which might allow remote at…	CWE-16 Configuration	CVE-2008-3115	2018-10-12 05:46	2008-07-10	Show	GitHub Exploit DB Packet Storm

285634	-	hanghai	5th_street high_street_5 hot_step	Format string vulnerability in dx8render.dll in Snail Game (aka Suzhou Snail Electronic Company) 5th street (aka Hot Step or High Street 5) allows remote attackers to execute arbitrary code via forma…	CWE-134 Use of Externally-Controlled Format String	CVE-2008-3116	2018-10-12 05:46	2008-07-11	Show	GitHub Exploit DB Packet Storm

285635	-	secretwars	soldner_secret_wars	Soldner Secret Wars 33724 and earlier allows remote attackers to cause a denial of service (CPU consumption) via a packet with a large numeric value in a 0x80 data block.	CWE-189 Numeric Errors	CVE-2008-3135	2018-10-12 05:46	2008-07-11	Show	GitHub Exploit DB Packet Storm

285636	-	mozilla	firefox	Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '\|' (pipe) characters in a command-line URI as requests to open multiple tabs, which allows remote attackers to access chrome:i URIs,…	CWE-20 Improper Input Validation	CVE-2008-2933	2018-10-12 05:45	2008-07-17	Show	GitHub Exploit DB Packet Storm

285637	-	mozilla	firefox	This attack only works if the user is using another internet-connected application with Firefox not running. Using Firefox, or making sure it is at least running, prevents this attack.	CWE-20 Improper Input Validation	CVE-2008-2933	2018-10-12 05:45	2008-07-17	Show	GitHub Exploit DB Packet Storm

285638	-	xmlsoft	libxslt	Multiple heap-based buffer overflows in the rc4 (1) encryption (aka exsltCryptoRc4EncryptFunction) and (2) decryption (aka exsltCryptoRc4DecryptFunction) functions in crypto.c in libexslt in libxslt …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2935	2018-10-12 05:45	2008-08-1	Show	GitHub Exploit DB Packet Storm

285639	-	postfix	postfix	Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this file is not owned by the recipient, which allows local users to read e-mail messages by creating a mailb…	CWE-200 Information Exposure	CVE-2008-2937	2018-10-12 05:45	2008-08-19	Show	GitHub Exploit DB Packet Storm

285640	-	postfix	postfix	Please refer to the following links for additional version information (vendor release notes): Postfix 2.5 - ftp://mirrors.loonybin.net/pub/postfix/official/postfix-2.5.4.RELEASE_NOTES Postfix …	CWE-200 Information Exposure	CVE-2008-2937	2018-10-12 05:45	2008-08-19	Show	GitHub Exploit DB Packet Storm