Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
240101 6.8 警告 カスペルスキー - Kaspersky Anti-Virus などにおける SYSTEM 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-4452 2012-09-25 17:38 2009-12-29 Show GitHub Exploit DB Packet Storm
240102 6.8 警告 php.html - kandalf upper の upper.php における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2009-4451 2012-09-25 17:38 2009-12-29 Show GitHub Exploit DB Packet Storm
240103 4.3 警告 LiveZilla - LiveZilla の map.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4450 2012-09-25 17:38 2009-12-29 Show GitHub Exploit DB Packet Storm
240104 6.3 警告 mybboard - MyBB におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-4449 2012-09-25 17:38 2009-12-29 Show GitHub Exploit DB Packet Storm
240105 5 警告 mybboard - MyBB の inc/functions_time.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-4448 2012-09-25 17:38 2009-12-19 Show GitHub Exploit DB Packet Storm
240106 7.5 危険 jax scripts - Jax Guestbook における管理者の設定を変更される脆弱性 CWE-287
不適切な認証
CVE-2009-4447 2012-09-25 17:38 2009-12-29 Show GitHub Exploit DB Packet Storm
240107 4.3 警告 ikemcg - phpInstantGallery の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4446 2012-09-25 17:38 2009-12-29 Show GitHub Exploit DB Packet Storm
240108 6 警告 マイクロソフト - Microsoft IIS における任意の拡張子を伴う空ファイルを作成される脆弱性 CWE-20
不適切な入力確認
CVE-2009-4445 2012-09-25 17:38 2009-12-29 Show GitHub Exploit DB Packet Storm
240109 6 警告 マイクロソフト - Microsoft IIS におけるサードパーティの拡張制限を回避される脆弱性 CWE-20
不適切な入力確認
CVE-2009-4444 2012-09-25 17:38 2009-12-27 Show GitHub Exploit DB Packet Storm
240110 5 警告 idevSpot - IDevSpot iSupport の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-4434 2012-09-25 17:38 2009-12-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268851 6.1 MEDIUM
Network
get-simple getsimple_cms admin/profile.php in GetSimple CMS 3.x has XSS in a name field. CWE-79
Cross-site Scripting
CVE-2017-10673 2024-11-21 12:06 2017-06-29 Show GitHub Exploit DB Packet Storm
268852 9.8 CRITICAL
Network
xml-libxml_project
debian
xml-libxml
debian_linux
Use-after-free in the XML-LibXML module through 2.0129 for Perl allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call. CWE-416
 Use After Free
CVE-2017-10672 2024-11-21 12:06 2017-06-29 Show GitHub Exploit DB Packet Storm
268853 7.8 HIGH
Local
sthttpd_project sthttpd Heap-based Buffer Overflow in the de_dotdot function in libhttpd.c in sthttpd before 2.27.1 allows remote attackers to cause a denial of service (daemon crash) or possibly have unspecified other impa… CWE-787
 Out-of-bounds Write
CVE-2017-10671 2024-11-21 12:06 2017-06-29 Show GitHub Exploit DB Packet Storm
268854 6.1 MEDIUM
Network
zen-cart zen_cart In index.php in Zen Cart 1.6.0, the products_id parameter can cause XSS. CWE-79
Cross-site Scripting
CVE-2017-10667 2024-11-21 12:06 2017-06-29 Show GitHub Exploit DB Packet Storm
268855 7.8 HIGH
Local
postfix postfix Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging undocumented functionality in Berkeley DB 2.x and late… NVD-CWE-noinfo
CVE-2017-10140 2024-11-21 12:05 2018-04-17 Show GitHub Exploit DB Packet Storm
268856 8.1 HIGH
Network
oracle peoplesoft_enterprise_peopletools Vulnerability in the PeopleSoft Enterprise PRTL Interaction Hub component of Oracle PeopleSoft Products (subcomponent: Enterprise Portal). The supported version that is affected is 9.1.00. Easily exp… NVD-CWE-noinfo
CVE-2017-10301 2024-11-21 12:05 2018-01-18 Show GitHub Exploit DB Packet Storm
268857 9.1 CRITICAL
Network
oracle database_server Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows high privileged attacker h… NVD-CWE-noinfo
CVE-2017-10282 2024-11-21 12:05 2018-01-18 Show GitHub Exploit DB Packet Storm
268858 4.7 MEDIUM
Local
oracle jdeveloper Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware (subcomponent: Deployment). Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.… CWE-22
Path Traversal
CVE-2017-10273 2024-11-21 12:05 2018-01-18 Show GitHub Exploit DB Packet Storm
268859 5.9 MEDIUM
Network
oracle access_manager Vulnerability in the Oracle Access Manager component of Oracle Fusion Middleware (subcomponent: Web Server Plugin). The supported version that is affected is 11.1.2.3.0. Difficult to exploit vulnerab… CWE-200
Information Exposure
CVE-2017-10262 2024-11-21 12:05 2018-01-18 Show GitHub Exploit DB Packet Storm
268860 8.2 HIGH
Network
oracle business_intelligence Vulnerability in the Oracle Business Intelligence Enterprise Edition component of Oracle Fusion Middleware (subcomponent: Analytics Web Dashboards). The supported version that is affected is 12.2.1.3… NVD-CWE-noinfo
CVE-2017-10068 2024-11-21 12:05 2018-01-18 Show GitHub Exploit DB Packet Storm