Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250861 7.5 危険 Digital Junkies - dompdf の dompdf.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4879 2012-03-27 18:42 2011-10-7 Show GitHub Exploit DB Packet Storm
250862 7.5 危険 WordPress.org
edgetechweb		 - Event Registration プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4839 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
250863 6 警告 extensiondepot
Joomla!		 - Joomla! の JSupport (com_jsupport) コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4838 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
250864 4.3 警告 extensiondepot - Joomla! の JSupport (com_jsupport) コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4837 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
250865 4.3 警告 phpshop - PHPShop の register.html におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4836 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
250866 4 警告 OneOrZero - OneOrZero AIMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4835 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
250867 6.5 警告 OneOrZero - OneOrZero AIMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4834 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
250868 9.3 危険 GTK+ - GTK+ の modules/engines/ms-windows/xp_theme.c における権限を取得される脆弱性 CWE-Other
その他 		CVE-2010-4833 2012-03-27 18:42 2011-09-6 Show GitHub Exploit DB Packet Storm
250869 7.5 危険 t-dreams - T-Dreams Job Career Package の Resumes/TD_RESUME_Indlist.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4830 2012-03-27 18:42 2011-08-24 Show GitHub Exploit DB Packet Storm
250870 7.5 危険 t-dreams - T-Dreams Cars Ads Package の processview.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4829 2012-03-27 18:42 2011-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
308541 - adobe acrobat
acrobat_reader 		Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows and Mac OS X, allows attackers to execute arbitrary code via a crafted font, a different vulnerab… CWE-20
 Improper Input Validation  		CVE-2010-2889 2024-11-21 10:17 2010-10-7 Show GitHub Exploit DB Packet Storm
308542 - adobe acrobat
acrobat_reader 		Multiple unspecified vulnerabilities in an ActiveX control in Adobe Reader and Acrobat 8.x before 8.2.5 and 9.x before 9.4 on Windows allow attackers to execute arbitrary code via unknown vectors. CWE-20
 Improper Input Validation  		CVE-2010-2888 2024-11-21 10:17 2010-10-7 Show GitHub Exploit DB Packet Storm
308543 - adobe acrobat_reader
acrobat 		Multiple unspecified vulnerabilities in Adobe Reader and Acrobat 9.x before 9.4 on Linux allow attackers to gain privileges via unknown vectors. NVD-CWE-noinfo
CVE-2010-2887 2024-11-21 10:17 2010-10-7 Show GitHub Exploit DB Packet Storm
308544 - linux linux_kernel Race condition in the hvc_close function in drivers/char/hvc_console.c in the Linux kernel before 2.6.34 allows local users to cause a denial of service or possibly have unspecified other impact by c… CWE-362
Race Condition 		CVE-2010-2653 2024-11-21 10:17 2010-10-6 Show GitHub Exploit DB Packet Storm
308545 5.5 MEDIUM
Local 		linux
canonical
suse 		linux_kernel
ubuntu_linux
linux_enterprise_server
linux_enterprise_high_availability_extension
linux_enterprise_desktop 		kernel/trace/ftrace.c in the Linux kernel before 2.6.35.5, when debugfs is enabled, does not properly handle interaction between mutex possession and llseek operations, which allows local users to ca… CWE-476
 NULL Pointer Dereference 		CVE-2010-3079 2024-11-21 10:17 2010-10-1 Show GitHub Exploit DB Packet Storm
308546 8.1 HIGH
Network 		linux
canonical
vmware
avaya 		linux_kernel
ubuntu_linux
esx
aura_system_manager
aura_communication_manager
aura_system_platform
aura_session_manager
aura_presence_services
iq
aura_voice_portal 		The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode buffers, which allows remote authenticated users to read unlinked files, or read… CWE-200
Information Exposure 		CVE-2010-2943 2024-11-21 10:17 2010-10-1 Show GitHub Exploit DB Packet Storm
308547 - linux
canonical 		linux_kernel
ubuntu_linux 		Buffer overflow in the niu_get_ethtool_tcam_all function in drivers/net/niu.c in the Linux kernel before 2.6.36-rc4 allows local users to cause a denial of service or possibly have unspecified other … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2010-3084 2024-11-21 10:17 2010-09-30 Show GitHub Exploit DB Packet Storm
308548 - linux
canonical 		linux_kernel
ubuntu_linux 		fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy format for storage of extended attributes, which might allow local users by bypass intended xattr namespac… CWE-20
 Improper Input Validation  		CVE-2010-2946 2024-11-21 10:17 2010-09-30 Show GitHub Exploit DB Packet Storm
308549 - dietrich_ayala nusoap Cross-site scripting (XSS) vulnerability in NuSOAP 0.9.5, as used in MantisBT and other products, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to an arbitrary PHP … CWE-79
Cross-site Scripting 		CVE-2010-3070 2024-11-21 10:17 2010-09-29 Show GitHub Exploit DB Packet Storm
308550 - php php Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows context-dependent attackers to obtain sensitive information (memory contents) and possibly execute arbi… CWE-134
Use of Externally-Controlled Format String 		CVE-2010-2950 2024-11-21 10:17 2010-09-29 Show GitHub Exploit DB Packet Storm