Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251221 6.9 警告 texmacs - TeXmacsの texmacs スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3394 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251222 6.9 警告 ECMWF - Magics++ の magics-config における権限を取得される脆弱性 CWE-DesignError
CVE-2010-3393 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251223 6.9 警告 lttng - LTTng Userspace Tracer の usttrace における権限を取得される脆弱性 CWE-DesignError
CVE-2010-3386 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251224 6.9 警告 herac - TuxGuitar における権限を取得される脆弱性 CWE-DesignError
CVE-2010-3385 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251225 6.9 警告 Bernhard Wymann - TORCS の torcs などのスクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3384 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251226 6.9 警告 TeamSpeak Systems GmbH - TeamSpeak の teamspeak スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3383 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251227 6.9 警告 uoregon - TAU の tauex における権限を取得される脆弱性 CWE-DesignError
CVE-2010-3382 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251228 6.9 警告 alex launi - Tangerine の tangerine スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3381 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
251229 6.9 警告 Lawrence Livermore National Laboratory (LLNL) - SLURM の init.d/slurm スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3380 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
251230 6.9 警告 scilab - Scilab の scilab スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3378 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
281661 - sonatype nexus Directory traversal vulnerability in Sonatype Nexus OSS and Pro before 2.11.1-01 allows remote attackers to read or write to arbitrary files via unspecified vectors. CWE-22
Path Traversal 		CVE-2014-9389 2024-11-21 11:20 2015-01-6 Show GitHub Exploit DB Packet Storm
281662 - mediawiki mediawiki The wfMangleFlashPolicy function in OutputHandler.php in MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and 1.23.x before 1.23.7 allows remote attackers to conduct PHP object injecti… CWE-77
Command Injection 		CVE-2014-9277 2024-11-21 11:20 2015-01-5 Show GitHub Exploit DB Packet Storm
281663 - mediawiki mediawiki Cross-site request forgery (CSRF) vulnerability in the Special:ExpandedTemplates page in MediaWiki before 1.19.22, 1.20.x through 1.22.x before 1.22.14, and 1.23.x before 1.23.7, when $wgRawHTML is s… CWE-352
 Origin Validation Error 		CVE-2014-9276 2024-11-21 11:20 2015-01-5 Show GitHub Exploit DB Packet Storm
281664 - microweber microweber SQL injection vulnerability in Category.php in Microweber CMS 0.95 before 20141209 allows remote attackers to execute arbitrary SQL commands via the category parameter when displaying a category, rel… CWE-89
SQL Injection 		CVE-2014-9464 2024-11-21 11:20 2015-01-4 Show GitHub Exploit DB Packet Storm
281665 - php php sapi/cgi/cgi_main.c in the CGI component in PHP through 5.4.36, 5.5.x through 5.5.20, and 5.6.x through 5.6.4, when mmap is used to read a .php file, does not properly consider the mapping's length d… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9427 2024-11-21 11:20 2015-01-3 Show GitHub Exploit DB Packet Storm
281666 - reality66 cart66_lite Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to read arbitrary files via a .. (dot dot) in the member_… CWE-22
Path Traversal 		CVE-2014-9461 2024-11-21 11:20 2015-01-3 Show GitHub Exploit DB Packet Storm
281667 - linux linux_kernel The batadv_frag_merge_packets function in net/batman-adv/fragmentation.c in the B.A.T.M.A.N. implementation in the Linux kernel through 3.18.1 uses an incorrect length field during a calculation of a… CWE-399
 Resource Management Errors 		CVE-2014-9428 2024-11-21 11:20 2015-01-3 Show GitHub Exploit DB Packet Storm
281668 - justin_klein wp-vipergb Multiple cross-site request forgery (CSRF) vulnerabilities in the WP-ViperGB plugin before 1.3.11 for WordPress allow remote attackers to hijack the authentication of administrators for requests that… CWE-352
 Origin Validation Error 		CVE-2014-9460 2024-11-21 11:20 2015-01-3 Show GitHub Exploit DB Packet Storm
281669 - e107 e107 Cross-site request forgery (CSRF) vulnerability in the AdminObserver function in e107_admin/users.php in e107 2.0 alpha2 allows remote attackers to hijack the authentication of administrators for req… CWE-352
 Origin Validation Error 		CVE-2014-9459 2024-11-21 11:20 2015-01-3 Show GitHub Exploit DB Packet Storm
281670 - hex-rays ida Heap-based buffer overflow in the GDB debugger module in Hex-Rays IDA Pro before 6.6 cumulative fix 2014-12-24 allows remote GDB servers to have unspecified impact via unknown vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-9458 2024-11-21 11:20 2015-01-3 Show GitHub Exploit DB Packet Storm