Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
232111 6.8 警告 PHP工房 - Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1059 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
232112 6.8 警告 PHP工房 - Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1058 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
232113 6.8 警告 PHP工房 - Phpkobo AdFreely におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1057 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
232114 6.8 警告 rockettheme - Joomla! 用の Rokdownloads コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-1056 2012-12-20 19:29 2010-03-16 Show GitHub Exploit DB Packet Storm
232115 5.1 警告 tufat - osDate における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2010-1055 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
232116 6.8 警告 zentracking - Zen Time Tracking における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-1053 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
232117 7.5 危険 Uiga - Uiga Business Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-1049 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
232118 4.3 警告 Uiga - Uiga Business Portal の blog/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1048 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
232119 7.5 危険 ryan marshall - Rostermain の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-1046 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
232120 4.3 警告 sk-typo3 - TYPO3 用の Simple Gallery エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-1020 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294571 - apple tvos Apple TV before 6.1.2 allows remote authenticated users to bypass an intended password requirement for iTunes Store purchase transactions via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1383 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294572 - apple safari
tvos
iphone_os
WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (m… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-1382 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294573 - apple mac_os_x Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds memo… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1381 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294574 - apple mac_os_x The Security - Keychain component in Apple OS X before 10.9.4 does not properly implement keystroke observers, which allows physically proximate attackers to bypass the screen-lock protection mechani… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1380 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294575 - apple mac_os_x Graphics Drivers in Apple OS X before 10.9.4 allows attackers to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a 32-bit executable file for a crafted ap… NVD-CWE-Other
CVE-2014-1379 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294576 - apple mac_os_x IOGraphicsFamily in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1378 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294577 - apple mac_os_x Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application. NVD-CWE-Other
CVE-2014-1377 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294578 - apple mac_os_x Intel Compute in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenCL API call, which allows attackers to execute arbitrary code via a crafted application. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1376 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294579 - apple mac_os_x Intel Graphics Driver in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1375 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm
294580 - apple mac_os_x Intel Graphics Driver in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenGL API call, which allows attackers to execute arbitrary code via a crafted application. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-1373 2024-11-21 11:04 2014-07-1 Show GitHub Exploit DB Packet Storm