Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
238941	6.8	警告	OpenCart	-	OpenCart の index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-1610	2012-09-25 17:38	2010-02-1	Show	GitHub Exploit DB Packet Storm

238942	10	危険	IBM	-	IBM Lotus Notes におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1608	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

238943	6.8	警告	paysyspro	-	Joomla! 用の Webmoney Web Marchant Interfacce コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1607	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

238944	4.3	警告	ncrypted	-	NCT Jobs Portal Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1606	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

238945	7.5	危険	ncrypted	-	NCT Jobs Portal Script の isearch.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1605	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

238946	6.8	警告	ncrypted	-	NCT Jobs Portal Script の admin_login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1604	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

238947	5	警告	joomlamart	-	Joomla! 用の JA Comment コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1601	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

238948	7.5	危険	nkinfoweb	-	NKInFoWeb の loadorder.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1599	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

238949	7.5	危険	OCS Inventory Team	-	OCS Inventory NG の ocsreports/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1595	2012-09-25 17:38	2010-04-28	Show	GitHub Exploit DB Packet Storm

238950	4.3	警告	OCS Inventory Team	-	OCS Inventory NG の ocsreports/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1594	2012-09-25 17:38	2010-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285121	5.4	MEDIUM Network	kallithea-scm	kallithea	Multiple cross-site scripting (XSS) vulnerabilities in the administration pages in Kallithea before 0.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) first name or (2) l…	CWE-79 Cross-site Scripting	CVE-2015-1864	2024-11-21 11:26	2017-09-20	Show	GitHub Exploit DB Packet Storm

285122	7.5	HIGH Network	fedoraproject debian	389_directory_server fedora debian_linux	389 Directory Server before 1.3.3.10 allows attackers to bypass intended access restrictions and modify directory entries via a crafted ldapmodrdn call.	CWE-284 Improper Access Control	CVE-2015-1854	2024-11-21 11:26	2017-09-20	Show	GitHub Exploit DB Packet Storm

285123	6.1	MEDIUM Network	mantisbt	mantisbt	Cross-site scripting (XSS) vulnerability in MantisBT 1.2.13 and later before 1.2.20.	CWE-79 Cross-site Scripting	CVE-2015-2046	2024-11-21 11:26	2017-08-29	Show	GitHub Exploit DB Packet Storm

285124	7.5	HIGH Network	estrongs	es_file_explorer	Directory traversal vulnerability in ES File Explorer 3.2.4.1.	CWE-22 Path Traversal	CVE-2015-1876	2024-11-21 11:26	2017-08-29	Show	GitHub Exploit DB Packet Storm

285125	9.8	CRITICAL Network	samsung	galaxy_s4_firmware	The samsung_extdisp driver in the Samsung S4 (GT-I9500) I9500XXUEMK8 kernel 3.4 and earlier allows attackers to cause a denial of service (memory corruption) or gain privileges.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-1801	2024-11-21 11:26	2017-08-25	Show	GitHub Exploit DB Packet Storm

285126	7.5	HIGH Network	samsung	galaxy_s4_firmware	The samsung_extdisp driver in the Samsung S4 (GT-I9500) I9500XXUEMK8 kernel 3.4 and earlier allows attackers to potentially obtain sensitive information.	CWE-200 Information Exposure	CVE-2015-1800	2024-11-21 11:26	2017-08-25	Show	GitHub Exploit DB Packet Storm

285127	6.8	MEDIUM Physics	thalesesecurity	nshield_connect_firmware	Thales nShield Connect hardware models 500, 1500, 6000, 500+, 1500+, and 6000+ before 11.72 allows physically proximate attackers to sign arbitrary data with previously loaded signing keys, extract t…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-1878	2024-11-21 11:26	2017-08-19	Show	GitHub Exploit DB Packet Storm

285128	9.8	CRITICAL Network	musl-libc	musl	Stack-based buffer overflow in the inet_pton function in network/inet_pton.c in musl libc 0.9.15 through 1.0.4, and 1.1.0 through 1.1.7 allows attackers to have unspecified impact via unknown vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-1817	2024-11-21 11:26	2017-08-19	Show	GitHub Exploit DB Packet Storm

285129	7.5	HIGH Network	fedoraproject entrouvert	fedora lasso	The prefix variable in the get_or_define_ns function in Lasso before commit 6d854cef4211cdcdbc7446c978f23ab859847cdd allows remote attackers to cause a denial of service (uninitialized memory access …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-1783	2024-11-21 11:26	2017-08-12	Show	GitHub Exploit DB Packet Storm

285130	9.8	CRITICAL Network	rest-client_project	rest-client	REST client for Ruby (aka rest-client) before 1.8.0 allows remote attackers to conduct session fixation attacks or obtain sensitive cookie information by leveraging passage of cookies set in a respon…	CWE-384 Session Fixation	CVE-2015-1820	2024-11-21 11:26	2017-08-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed