Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250941	6.9	警告	Mono Project	-	Mono の metadata/loader.c における権限を取得される脆弱性	CWE-Other その他	CVE-2010-4159	2012-03-27 18:42	2010-09-26	Show	GitHub Exploit DB Packet Storm

250942	4.3	警告	exv2	-	eXV2 CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4155	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

250943	9.3	危険	rhinosoft	-	Rhino の FTP Voyager におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4154	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

250944	9.3	危険	crossftp	-	CrossFTP Pro におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4153	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

250945	7.5	危険	4site	-	4site CMS の catalog/index.shtml における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4152	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

250946	6.8	警告	deluxebb	-	DeluxeBB における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4151	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

250947	9.3	危険	freshwebmaster	-	FreshWebMaster Fresh FTP におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4149	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

250948	9.3	危険	anyconnect	-	AnyConnect におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4148	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

250949	7.5	危険	avactis	-	Pentasoft Avactis Shopping Cart における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4147	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

250950	4.3	警告	Attachmate	-	Web 2008 の Attachmate Reflection におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4146	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305271	-		memht	memht_portal	Multiple cross-site request forgery (CSRF) vulnerabilities in MemHT Portal 4.0.1 allow remote attackers to hijack the authentication of administrators for requests that (1) modify settings via a conf…	CWE-352 Origin Validation Error	CVE-2010-5320	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

305272	-		kan-studio	kandidat_cms	Multiple cross-site request forgery (CSRF) vulnerabilities in Kandidat CMS 1.4.2 allow remote attackers to hijack the authentication of administrators for requests that (1) modify settings via a vali…	CWE-352 Origin Validation Error	CVE-2010-5319	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

305273	-		basic-cms	sweetrice	The password-reset feature in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to modify the administrator's password by specifying the administrator's e-mail address in the email…	CWE-255 Credentials Management	CVE-2010-5318	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

305274	-		basic-cms	sweetrice	Multiple SQL injection vulnerabilities in index.php in SweetRice CMS before 0.6.7.1 allow remote attackers to execute arbitrary SQL commands via (1) the file_name parameter in an attachment action, (…	CWE-89 SQL Injection	CVE-2010-5317	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

305275	-		basic-cms	sweetrice	Cross-site scripting (XSS) vulnerability in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to inject arbitrary web script or HTML via a top_height cookie.	CWE-79 Cross-site Scripting	CVE-2010-5316	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

305276	-		chialab_\&_channelweb	bedita	Multiple cross-site request forgery (CSRF) vulnerabilities in BEdita before 3.1 allow remote attackers to hijack the authentication of administrators for requests that (1) create categories via a dat…	CWE-352 Origin Validation Error	CVE-2010-5315	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

305277	-		chialab_\&_channelweb	bedita	Cross-site scripting (XSS) vulnerability in controllers/home_controller.php in BEdita before 3.1 allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter to news/…	CWE-79 Cross-site Scripting	CVE-2010-5314	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

305278	-		linux	linux_kernel	Race condition in arch/x86/kvm/x86.c in the Linux kernel before 2.6.38 allows L2 guest OS users to cause a denial of service (L1 guest OS crash) via a crafted instruction that triggers an L2 emulatio…	CWE-362 Race Condition	CVE-2010-5313	2024-11-21 10:23	2014-11-30	Show	GitHub Exploit DB Packet Storm

305279	6.1	MEDIUM Network	debian jqueryui fedoraproject netapp apache drupal	debian_linux jquery_ui fedora snapcenter drill drupal	Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option.	CWE-79 Cross-site Scripting	CVE-2010-5312	2024-11-21 10:23	2014-11-25	Show	GitHub Exploit DB Packet Storm

305280	-		tetex gnome t1lib	tetex evince t1lib	Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service (c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-0433	2024-11-21 10:23	2012-11-19	Show	GitHub Exploit DB Packet Storm