Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250901	7.5	危険	PreProject.com	-	PreProjects Pre Online Tests Generator Pro の takefreestart.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4776	2012-03-27 18:42	2011-03-23	Show	GitHub Exploit DB Packet Storm

250902	7.5	危険	AuraCMS	-	AuraCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4774	2012-03-27 18:42	2011-03-23	Show	GitHub Exploit DB Packet Storm

250903	4.3	警告	matteoiammarrone	-	S-CMS の blocks/lang.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4772	2012-03-27 18:42	2011-03-23	Show	GitHub Exploit DB Packet Storm

250904	4	警告	IBM	-	IBM Tivoli Directory Server (TDS) のプロキシサーバ実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4789	2012-03-27 18:42	2010-10-29	Show	GitHub Exploit DB Packet Storm

250905	4	警告	IBM	-	IBM TDS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4788	2012-03-27 18:42	2010-02-10	Show	GitHub Exploit DB Packet Storm

250906	4	警告	IBM	-	IBM TDS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4787	2012-03-27 18:42	2010-06-9	Show	GitHub Exploit DB Packet Storm

250907	4	警告	IBM	-	IBM TDS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4786	2012-03-27 18:42	2010-04-23	Show	GitHub Exploit DB Packet Storm

250908	4	警告	IBM	-	IBM TDS の do_extendedOp 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4785	2012-03-27 18:42	2010-01-20	Show	GitHub Exploit DB Packet Storm

250909	5	警告	nicholas thompson	-	Drupal 用の Relevant Content モジュールにおける制限されたノードタイトルおよびリレーションシップを発見される脆弱性	CWE-20 不適切な入力確認	CVE-2010-4775	2012-03-27 18:42	2010-11-17	Show	GitHub Exploit DB Packet Storm

250910	7.5	危険	matteoiammarrone	-	S-CMS の viewforum.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4771	2012-03-27 18:42	2011-03-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280831	5.9	MEDIUM Network	okb	smart_passbook	Smartphone Passbook 1.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to obtain sensitive information from encrypted communications via a crafted cer…	CWE-295 Improper Certificate Validation	CVE-2015-0874	2024-11-21 11:23	2017-09-26	Show	GitHub Exploit DB Packet Storm

280832	7.5	HIGH Network	cisco	cloud_web_security	Cisco Cloud Web Security before 3.0.1.7 allows remote attackers to bypass intended filtering protection mechanisms by leveraging improper handling of HTTP methods, aka Bug ID CSCut69743.	CWE-119 CWE-19 Incorrect Access of Indexable Resource ('Range Error') Data Processing Errors	CVE-2015-0689	2024-11-21 11:23	2017-09-20	Show	GitHub Exploit DB Packet Storm

280833	8.8	HIGH Network	pysvn_project	svn-workbench	svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$(xeyes).	CWE-20 Improper Input Validation	CVE-2015-0853	2024-11-21 11:23	2017-09-7	Show	GitHub Exploit DB Packet Storm

280834	7.0	HIGH Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in HSDPA.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-0576	2024-11-21 11:23	2017-08-19	Show	GitHub Exploit DB Packet Storm

280835	9.8	CRITICAL Network	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, insecure ciphersuites were included in the default configuration.	CWE-326 Inadequate Encryption Strength	CVE-2015-0575	2024-11-21 11:23	2017-08-19	Show	GitHub Exploit DB Packet Storm

280836	9.8	CRITICAL Network	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, the validation of filesystem access was insufficient.	CWE-20 Improper Input Validation	CVE-2015-0574	2024-11-21 11:23	2017-08-19	Show	GitHub Exploit DB Packet Storm

280837	9.8	CRITICAL Network	novell	zenworks_configuration_management	Stack-based buffer overflow in the logging functionality in the Preboot Policy service in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary code via unspecif…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-0786	2024-11-21 11:23	2017-08-10	Show	GitHub Exploit DB Packet Storm

280838	7.5	HIGH Network	novell	zenworks_configuration_management	com.novell.zenworks.inventory.rtr.actionclasses.wcreports in Novell ZENworks Configuration Management (ZCM) allows remote attackers to read arbitrary folders via the dirname variable.	CWE-200 Information Exposure	CVE-2015-0785	2024-11-21 11:23	2017-08-10	Show	GitHub Exploit DB Packet Storm

280839	7.5	HIGH Network	novell	zenworks_configuration_management	Rtrlet.class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to obtain Session IDs of logged in users via a value of ShowLogins for the maintenance variable.	CWE-200 Information Exposure	CVE-2015-0784	2024-11-21 11:23	2017-08-10	Show	GitHub Exploit DB Packet Storm

280840	6.5	MEDIUM Network	novell	zenworks_configuration_management	The FileViewer class in Novell ZENworks Configuration Management (ZCM) allows remote authenticated users to read arbitrary files via the filename variable.	CWE-200 Information Exposure	CVE-2015-0783	2024-11-21 11:23	2017-08-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed