Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250841	6.8	警告	E-Xoopport	-	E-Xoopport Samsara における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3467	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250842	4.3	警告	NetArt Media	-	NetArt Media iBoutique.MALL の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3466	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250843	4.3	警告	ecommercesoft	-	XSE Shopping Cart におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3465	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250844	6.8	警告	santafox	-	SantaFox の admin/manager_users.class.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3464	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250845	4.3	警告	santafox	-	SantaFox の modules/search/search.class.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3463	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250846	4.3	警告	mollify	-	Mollify の backend/plugin/Registration/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3462	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250847	7.5	危険	endonesia	-	eNdonesia の Publisher モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3461	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250848	5	警告	Gecad Technologies	-	AXIGEN Mail Server の HTTP インターフェースにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3460	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250849	4.3	警告	Gecad Technologies	-	AXIGEN Mail Server の Ajax WebMail インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3459	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

250850	4	警告	Linux	-	Linux kernel のdrivers/platform/x86/thinkpad_acpi.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3448	2012-03-27 18:42	2011-01-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285991	-	hiox	hiox_guest_book	Multiple cross-site scripting (XSS) vulnerabilities in add.php in HIOX Guest Book (HGB) 5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name1, (2) email, or (3) cmt para…	CWE-79 Cross-site Scripting	CVE-2014-1620	2024-11-21 11:04	2014-01-22	Show	GitHub Exploit DB Packet Storm

285992	-	cubicfactory	cubic_cms	Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the (1) resource_id or (2) version_id parameter to recursos/agen…	CWE-89 SQL Injection	CVE-2014-1619	2024-11-21 11:04	2014-01-22	Show	GitHub Exploit DB Packet Storm

285993	-	uaepd	shopping_cart_script	Multiple SQL injection vulnerabilities in UAEPD Shopping Cart Script allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) p_id parameter to products.php or id parameter …	CWE-89 SQL Injection	CVE-2014-1618	2024-11-21 11:04	2014-01-22	Show	GitHub Exploit DB Packet Storm

285994	-	freebsd	freebsd	Stack-based buffer overflow in lib/snmpagent.c in bsnmpd, as used in FreeBSD 8.3 through 10.0, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1452	2024-11-21 11:04	2014-01-22	Show	GitHub Exploit DB Packet Storm

285995	-	linux	linux_kernel	The yam_ioctl function in drivers/net/hamradio/yam.c in the Linux kernel before 3.12.8 does not initialize a certain structure member, which allows local users to obtain sensitive information from ke…	CWE-399 Resource Management Errors	CVE-2014-1446	2024-11-21 11:04	2014-01-19	Show	GitHub Exploit DB Packet Storm

285996	-	linux	linux_kernel	The wanxl_ioctl function in drivers/net/wan/wanxl.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information f…	CWE-399 Resource Management Errors	CVE-2014-1445	2024-11-21 11:04	2014-01-19	Show	GitHub Exploit DB Packet Storm

285997	-	linux	linux_kernel	The fst_get_iface function in drivers/net/wan/farsync.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive informati…	CWE-399 Resource Management Errors	CVE-2014-1444	2024-11-21 11:04	2014-01-19	Show	GitHub Exploit DB Packet Storm

285998	-	linux	linux_kernel	The restore_fpu_checking function in arch/x86/include/asm/fpu-internal.h in the Linux kernel before 3.12.8 on the AMD K7 and K8 platforms does not clear pending exceptions before proceeding to an EMM…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1438	2024-11-21 11:04	2014-01-19	Show	GitHub Exploit DB Packet Storm

285999	-	mcafee	vulnerability_manager	Multiple cross-site request forgery (CSRF) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to hijack the authentication of use…	CWE-352 Origin Validation Error	CVE-2014-1473	2024-11-21 11:04	2014-01-16	Show	GitHub Exploit DB Packet Storm

286000	-	mcafee	vulnerability_manager	Multiple cross-site scripting (XSS) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to inject arbitrary web script or HTML via…	CWE-79 Cross-site Scripting	CVE-2014-1472	2024-11-21 11:04	2014-01-16	Show	GitHub Exploit DB Packet Storm