Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250941 5 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus における任意のユーザアカウントへのアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3273 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
250942 4.3 警告 Zoho Corporation - ZOHO ManageEngine ADSelfService Plus の security-questions 実装における任意のユーザアカウントへのアクセスを取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3272 2012-03-27 18:42 2011-02-17 Show GitHub Exploit DB Packet Storm
250943 6.8 警告 IBM - IBM WAS の Integrated Solutions Console におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3271 2012-03-27 18:42 2011-07-18 Show GitHub Exploit DB Packet Storm
250944 6.8 警告 シスコシステムズ - Cisco WebEx Meeting Center T27LB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3270 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
250945 9.3 危険 シスコシステムズ - Cisco WRF および ARF Player T27LB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3269 2012-03-27 18:42 2011-02-1 Show GitHub Exploit DB Packet Storm
250946 6.4 警告 orbeon - Orbeon Forms の XForms サービスの xforms-server コンポーネントにおけるイントラネットサーバへ HTTP リクエストを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3260 2012-03-27 18:42 2011-04-26 Show GitHub Exploit DB Packet Storm
250947 5 警告 シマンテック
インテル		 - Symantec Antivirus Corporate Edition などで使用される Intel AMS の GetStringAMSHandler 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3268 2012-03-27 18:42 2010-12-22 Show GitHub Exploit DB Packet Storm
250948 6.5 警告 ifdefined - BugTracker.NET における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3267 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250949 3.5 注意 ifdefined - BugTracker.NET におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3266 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
250950 2.1 注意 Novell - Novell Identity Manager のエンジンインストーラにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-3264 2012-03-27 18:42 2010-08-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290451 - cisco secure_access_control_system Cross-site scripting (XSS) vulnerability in the Help index page in Cisco Secure Access Control System (ACS) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter… CWE-79
Cross-site Scripting 		CVE-2013-3421 2024-11-21 10:53 2013-07-13 Show GitHub Exploit DB Packet Storm
290452 - cisco unified_meetingplace_web_conferencing Cross-site scripting (XSS) vulnerability in Cisco Unified MeetingPlace Web Conferencing allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuh74… CWE-79
Cross-site Scripting 		CVE-2013-3419 2024-11-21 10:53 2013-07-12 Show GitHub Exploit DB Packet Storm
290453 - cisco unified_communications_domain_manager Cisco Unified Communications Domain Manager does not properly allocate memory for GET and POST requests, which allows remote authenticated users to cause a denial of service (memory consumption and p… CWE-399
 Resource Management Errors 		CVE-2013-3418 2024-11-21 10:53 2013-07-12 Show GitHub Exploit DB Packet Storm
290454 - lookout lookout_security_\&_antivirus The Lookout Mobile Security application before 8.17-8a39d3f for Android allows attackers to cause a denial of service (application crash) via a crafted application that sends an intent to com.lookout… NVD-CWE-noinfo
CVE-2013-3579 2024-11-21 10:53 2013-07-11 Show GitHub Exploit DB Packet Storm
290455 - cisco unified_service_monitor
unified_operations_manager 		Cross-site scripting (XSS) vulnerability in the web framework in the unified-communications management implementation in Cisco Unified Operations Manager and Unified Service Monitor allows remote att… CWE-79
Cross-site Scripting 		CVE-2013-3416 2024-11-21 10:53 2013-07-11 Show GitHub Exploit DB Packet Storm
290456 - cisco virtualization_experience_client_6000_series_firmware
virtualization_experience_client_6000
virtualization_experience_client_6215 		The firmware on Cisco Virtualization Experience Client 6000 devices sets incorrect operating-system permissions, which allows local users to gain privileges via an unspecified sequence of commands, a… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3408 2024-11-21 10:53 2013-07-11 Show GitHub Exploit DB Packet Storm
290457 - cisco telepresence_tc_software The web portal in TC software on Cisco TelePresence endpoints does not require an exact password match during a login attempt by a user who has not configured a password, which allows remote attacker… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3405 2024-11-21 10:53 2013-07-11 Show GitHub Exploit DB Packet Storm
290458 - cisco nx-os
nexus_1000v 		The license-installation module in Cisco NX-OS on Nexus 1000V devices allows local users to execute arbitrary commands via crafted "install license" arguments, aka Bug ID CSCuh30824. CWE-20
 Improper Input Validation  		CVE-2013-3400 2024-11-21 10:53 2013-07-11 Show GitHub Exploit DB Packet Storm
290459 - videolan vlc_media_player plugins/demux/libmkv_plugin.dll in VideoLAN VLC Media Player 2.0.7, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3245 2024-11-21 10:53 2013-07-11 Show GitHub Exploit DB Packet Storm
290460 - adobe coldfusion Adobe ColdFusion 10 before Update 11 allows remote attackers to call ColdFusion Components (CFC) public methods via WebSockets. NVD-CWE-Other
CVE-2013-3350 2024-11-21 10:53 2013-07-10 Show GitHub Exploit DB Packet Storm