Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250981	4.3	警告	Coppermine Photo Gallery	-	CPG におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4667	2012-03-27 18:42	2011-06-14	Show	GitHub Exploit DB Packet Storm

250982	10	危険	CMS Made Simple	-	CMSMS のNews モジュールにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2010-4663	2012-03-27 18:42	2011-06-8	Show	GitHub Exploit DB Packet Storm

250983	4.3	警告	Hastymail	-	Hastymail2 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4646	2012-03-27 18:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

250984	10	危険	Novell	-	Novell GroupWise の IMAP サーバコンポーネンにおけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4711	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

250985	4.3	警告	Yahoo!	-	YUI のメニューウィジェットにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4710	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

250986	7.5	危険	Joomla!	-	Joomla! における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4696	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

250987	4.3	警告	XWiki	-	XWiki Enterprise におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4642	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250988	7.5	危険	XWiki	-	XWiki Enterprise における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4641	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250989	4.3	警告	XWiki	-	XWiki Watch におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4640	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250990	7.5	危険	intendance	-	MySource Matrix の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4639	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257641	9.8	CRITICAL Network	quest	netvault_backup	This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The …	CWE-89 SQL Injection	CVE-2017-17655	2024-11-21 12:18	2018-02-9	Show	GitHub Exploit DB Packet Storm

257642	9.8	CRITICAL Network	quest	netvault_backup	This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The …	CWE-89 SQL Injection	CVE-2017-17654	2024-11-21 12:18	2018-02-9	Show	GitHub Exploit DB Packet Storm

257643	9.8	CRITICAL Network	quest	netvault_backup	This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The …	CWE-89 SQL Injection	CVE-2017-17653	2024-11-21 12:18	2018-02-9	Show	GitHub Exploit DB Packet Storm

257644	9.8	CRITICAL Network	quest	netvault_backup	This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The …	CWE-89 SQL Injection	CVE-2017-17652	2024-11-21 12:18	2018-02-9	Show	GitHub Exploit DB Packet Storm

257645	8.8	HIGH Network	zohocorp	manageengine_admanager_plus	/LoadFrame in Zoho ManageEngine AD Manager Plus build 6590 - 6613 allows attackers to conduct URL Redirection attacks via the src parameter, resulting in a bypass of CSRF protection, or potentially m…	CWE-352 Origin Validation Error	CVE-2017-17552	2024-11-21 12:18	2018-02-8	Show	GitHub Exploit DB Packet Storm

257646	7.8	HIGH Local	hp	openvms	An issue was discovered in OpenVMS through V8.4-2L2 on Alpha and through V8.4-2L1 on IA64, and VAX/VMS 4.0 and later. A malformed DCL command table may result in a buffer overflow allowing a local pr…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-17482	2024-11-21 12:18	2018-02-8	Show	GitHub Exploit DB Packet Storm

257647	9.8	CRITICAL Network	acme	thttpd mini_httpd	The htpasswd implementation of mini_httpd before v1.28 and of thttpd before v2.28 is affected by a buffer overflow that can be exploited remotely to perform code execution.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-17663	2024-11-21 12:18	2018-02-7	Show	GitHub Exploit DB Packet Storm

257648	6.1	MEDIUM Network	synacor	zimbra_collaboration_suite	Synacor Zimbra Collaboration Suite (ZCS) before 8.8.3 has Persistent XSS.	CWE-79 Cross-site Scripting	CVE-2017-17703	2024-11-21 12:18	2018-02-4	Show	GitHub Exploit DB Packet Storm

257649	7.8	HIGH Local	artifex	mupdf	Heap-based buffer overflow in the ensure_solid_xref function in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 allows a remote attacker to potentially execute arbitrary code via a crafted PDF file, because x…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-17858	2024-11-21 12:18	2018-01-23	Show	GitHub Exploit DB Packet Storm

257650	5.7	MEDIUM Adjacent	google	android	In Samsung Gear products, Bluetooth link key is updated to the different key which is same with attacker's link key. It can be attacked without user's intention only if attacker can reveal the Blueto…	CWE-20 Improper Input Validation	CVE-2017-17860	2024-11-21 12:18	2018-01-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed