Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232351 4.3 警告 stickynote project - Drupal 用 stickynote モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1636 2012-10-3 16:56 2012-01-17 Show GitHub Exploit DB Packet Storm
232352 4.3 警告 OneOrZero - OneOrZero AIMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0989 2012-10-3 16:54 2012-10-1 Show GitHub Exploit DB Packet Storm
232353 4.3 警告 Quickl Form - Joomla! 用 Quickl Form コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5232 2012-10-3 16:53 2012-10-1 Show GitHub Exploit DB Packet Storm
232354 7.5 危険 miniCMS - miniCMS における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2012-5231 2012-10-3 16:51 2012-10-1 Show GitHub Exploit DB Packet Storm
232355 7.5 危険 Jextensions - Joomla! 用 JE Story Submit コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2012-5230 2012-10-3 16:46 2012-10-1 Show GitHub Exploit DB Packet Storm
232356 4.3 警告 Slideshow Gallery 2 - WordPress 用 Slideshow Gallery2 プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5229 2012-10-3 16:46 2012-10-1 Show GitHub Exploit DB Packet Storm
232357 4.3 警告 Tincan - phplist の admin/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5228 2012-10-3 16:45 2012-10-1 Show GitHub Exploit DB Packet Storm
232358 7.5 危険 PEEL - PEEL SHOPPING の administrer/tva.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5227 2012-10-3 16:44 2012-10-1 Show GitHub Exploit DB Packet Storm
232359 4.3 警告 PEEL - PEEL SHOPPING におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5226 2012-10-3 16:44 2012-10-1 Show GitHub Exploit DB Packet Storm
232360 4.3 警告 EW Online Enterprises Ltd. - xClick Cart の webscr.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5225 2012-10-3 16:43 2012-10-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347261 - sun one_web_server Sun ONE (aka iPlanet) Web Server 6 on Windows, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP a… CWE-189
Numeric Errors 		CVE-2003-1579 2010-02-8 23:55 2010-02-6 Show GitHub Exploit DB Packet Storm
347262 - ibm cognos_express IBM Cognos Express 9.0 allows attackers to obtain unspecified access to the Tomcat Manager component, and cause a denial of service, by leveraging hardcoded credentials. CWE-255
Credentials Management 		CVE-2010-0557 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
347263 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, uses a logging format that does not identify whether a dotted quad represents an unresolved IP address, which al… CWE-189
Numeric Errors 		CVE-2003-1580 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
347264 - apache http_server The Apache HTTP Server 2.0.44, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an HTTP request in conjunction with a crafte… CWE-79
Cross-site Scripting 		CVE-2003-1581 2010-02-8 14:00 2010-02-6 Show GitHub Exploit DB Packet Storm
347265 - tor tor Tor before 0.2.1.22, and 0.2.2.x before 0.2.2.7-alpha, uses deprecated identity keys for certain directory authorities, which makes it easier for man-in-the-middle attackers to compromise the anonymi… CWE-200
Information Exposure 		CVE-2010-0383 2010-02-5 16:13 2010-01-26 Show GitHub Exploit DB Packet Storm
347266 - ircd-ratbox ircd-ratbox cache.c in ircd-ratbox before 2.2.9 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a HELP command. NVD-CWE-Other
CVE-2010-0300 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
347267 - ircd-ratbox ircd-ratbox Per: http://cwe.mitre.org/data/definitions/476.html 'CWE-476: NULL Pointer Dereference' NVD-CWE-Other
CVE-2010-0300 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
347268 - xerox workcentre_5632
workcentre_5638
workcentre_5645
workcentre_5655
workcentre_5665
workcentre_5675
workcentre_5687 		Multiple unspecified vulnerabilities in the Network Controller and Web Server in Xerox WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, and 5687 allow remote attackers to (1) access mailboxes via unkno… CWE-200
Information Exposure 		CVE-2010-0548 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
347269 - ircd-hybrid
ircd-ratbox
oftc 		ircd-hybrid
ircd-ratbox
oftc-hybrid 		Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allo… CWE-189
Numeric Errors 		CVE-2009-4016 2010-02-5 14:00 2010-02-5 Show GitHub Exploit DB Packet Storm
347270 - comtrend ct-507it_adsl_router Cross-site scripting (XSS) vulnerability in scvrtsrv.cmd in Comtrend CT-507IT ADSL Router allows remote attackers to inject arbitrary web script or HTML via the srvName parameter. CWE-79
Cross-site Scripting 		CVE-2010-0470 2010-02-3 14:00 2010-02-3 Show GitHub Exploit DB Packet Storm