Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
244791	5	警告	code-garage	-	Joomla! の Code-Garage noticeboard コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1658	2012-06-26 16:19	2010-05-3	Show	GitHub Exploit DB Packet Storm

244792	7.5	危険	airiny	-	Joomla! 用の Airiny ABC コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1656	2012-06-26 16:19	2010-05-3	Show	GitHub Exploit DB Packet Storm

244793	6.5	警告	The Cacti Group	-	Red Hat HPC Solution などの製品で使用される Cacti における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1645	2012-06-26 16:19	2010-08-23	Show	GitHub Exploit DB Packet Storm

244794	4.3	警告	The Cacti Group	-	Red Hat HPC Solution などの製品で使用される Cacti におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1644	2012-06-26 16:19	2010-08-23	Show	GitHub Exploit DB Packet Storm

244795	4.3	警告	ClamAV	-	ClamAV の parseicon 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-1640	2012-06-26 16:19	2010-05-18	Show	GitHub Exploit DB Packet Storm

244796	4.3	警告	ClamAV	-	ClamAV の cli_pdf 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-1639	2012-06-26 16:19	2010-05-10	Show	GitHub Exploit DB Packet Storm

244797	7.2	危険	GNUstep	-	GNUstep Base の gdomap の load_iface 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1620	2012-06-26 16:19	2010-05-12	Show	GitHub Exploit DB Packet Storm

244798	6.8	警告	AlegroCart	-	AlegroCart におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-1611	2012-06-26 16:19	2010-04-29	Show	GitHub Exploit DB Packet Storm

244799	4.3	警告	g5-scripts	-	G5-Scripts Auto-Img-Gallery の upload.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1709	2012-06-26 16:19	2010-05-4	Show	GitHub Exploit DB Packet Storm

244800	7.5	危険	RWC	-	Free Realty の agentadmin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1708	2012-06-26 16:19	2010-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253291	9.8	CRITICAL Network	hp	xp_command_view	A Remote Bypass of Security Restrictions vulnerability was identified in HPE XP Command View Advanced Edition Software Earlier than 8.5.3-00. The vulnerability impacts DevMgr Earlier than 8.5.3-00 (f…	NVD-CWE-noinfo	CVE-2017-8988	2024-11-21 12:35	2018-08-7	Show	GitHub Exploit DB Packet Storm

253292	8.6	HIGH Network	hp	integrated_lights-out_3_firmware	A Unauthenticated Remote Denial of Service vulnerability was identified in HPE Integrated Lights-Out 3 (iLO 3) version v1.88 only. The vulnerability is resolved in iLO3 v1.89 or subsequent versions.	NVD-CWE-noinfo	CVE-2017-8987	2024-11-21 12:35	2018-08-7	Show	GitHub Exploit DB Packet Storm

253293	7.8	HIGH Local	hp	restful_interface_tool	A remote execution of arbitrary code vulnerability has been identified in HPE RESTful Interface Tool 1.5, 2.0 (hprest-1.5-79.x86_64.rpm, ilorest-2.0-403.x86_64.rpm). The issue is resolved in iLOREST …	NVD-CWE-noinfo	CVE-2017-8968	2024-11-21 12:35	2018-08-7	Show	GitHub Exploit DB Packet Storm

253294	9.8	CRITICAL Network	php netapp	php storage_automation_store	PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a long string because of an Integer ov…	CWE-190 Integer Overflow or Wraparound	CVE-2017-9120	2024-11-21 12:35	2018-08-3	Show	GitHub Exploit DB Packet Storm

253295	7.5	HIGH Network	php netapp	php storage_automation_store	PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.	CWE-125 Out-of-bounds Read	CVE-2017-9118	2024-11-21 12:35	2018-08-3	Show	GitHub Exploit DB Packet Storm

253296	7.5	HIGH Network	rockwellautomation	allen-bradley_l30erms_firmware	Improperly implemented option-field processing in the TCP/IP stack on Allen-Bradley L30ERMS safety devices v30 and earlier causes a denial of service. When a crafted TCP packet is received, the devic…	CWE-20 Improper Input Validation	CVE-2017-9312	2024-11-21 12:35	2018-06-26	Show	GitHub Exploit DB Packet Storm

253297	8.8	HIGH Network	dahuasecurity	xvr5x16_firmware xvr5x08_firmware xvr5x04_firmware xvr7x16_firmware ipc-hdbw4xxx_firmware ipc-hdbw5xxx_firmware	Privilege escalation vulnerability found in some Dahua IP devices. Attacker in possession of low privilege account can gain access to credential information of high privilege account and further obta…	NVD-CWE-noinfo	CVE-2017-9317	2024-11-21 12:35	2018-05-24	Show	GitHub Exploit DB Packet Storm

253298	7.5	HIGH Network	netiq	identity_manager	IDM 4.6 Identity Applications prior to 4.6.2.1 may expose sensitive information.	CWE-200 Information Exposure	CVE-2017-9284	2024-11-21 12:35	2018-04-27	Show	GitHub Exploit DB Packet Storm

253299	6.1	MEDIUM Network	netiq	identity_reporting	NetIQ Identity Reporting, in versions prior to 5.5 Service Pack 1, is susceptible to an XSS attack.	CWE-79 Cross-site Scripting	CVE-2017-9275	2024-11-21 12:35	2018-04-27	Show	GitHub Exploit DB Packet Storm

253300	9.8	CRITICAL Network	netiq microfocus	edirectory	NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services.	CWE-287 Improper Authentication	CVE-2017-9285	2024-11-21 12:35	2018-03-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed