Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251221	6.8	警告	サン・マイクロシステムズ GNU Project ターボリナックスサイバートラスト株式会社レッドハット	-	GNU tar および GNU cpio の rmt_read__ 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0624	2010-06-11 18:45	2010-03-15	Show	GitHub Exploit DB Packet Storm

251222	3.5	注意	PostgreSQL.org サイバートラスト株式会社レッドハット	-	PostgreSQL における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0733	2010-06-9 16:54	2010-03-19	Show	GitHub Exploit DB Packet Storm

251223	6.5	警告	PostgreSQL.org サイバートラスト株式会社レッドハット	-	PostgreSQL の bitsubstr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0442	2010-06-9 16:54	2010-02-2	Show	GitHub Exploit DB Packet Storm

251224	6.8	警告	アップル	-	Java の window drawing 実装における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0539	2010-06-7 17:58	2010-05-18	Show	GitHub Exploit DB Packet Storm

251225	6.8	警告	アップル	-	Apple Mac OS X 上で稼働する Java における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0538	2010-06-7 17:58	2010-05-18	Show	GitHub Exploit DB Packet Storm

251226	6.5	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	PostgreSQL におけるインデックスの処理に関する権限を取得される脆弱性	CWE-Other その他	CVE-2009-4136	2010-06-7 16:48	2009-12-15	Show	GitHub Exploit DB Packet Storm

251227	-	-	コンソナ	-	Consona (旧 SupportSoft) Intelligent Assistance Suite (IAS) に複数の脆弱性	-	-	2010-06-4 17:58	2010-05-13	Show	GitHub Exploit DB Packet Storm

251228	7.5	危険	アップル VMware サン・マイクロシステムズヒューレット・パッカードレッドハット	-	JDK および JRE の Java プラグインにおける古い JRE バージョンで動作可能な脆弱性	CWE-DesignError	CVE-2009-1105	2010-06-4 15:54	2009-03-24	Show	GitHub Exploit DB Packet Storm

251229	10	危険	日立	-	Collaboration - Common Utility におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	-	2010-06-3 15:19	2010-05-12	Show	GitHub Exploit DB Packet Storm

251230	10	危険	日立 CA Technologies	-	CA ARCserve Backup および BrightStor ARCserve Backup における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	-	2010-06-3 15:19	2010-03-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
287961	-	axesstel	mv_410r	cgi-bin/sysconf.cgi on the Axesstel MV 410R allows remote attackers to cause a denial of service (configuration reset) via a RESTORE=RESTORE query string.	NVD-CWE-Other	CVE-2009-2321	2018-10-11 04:39	2009-07-6	Show	GitHub Exploit DB Packet Storm

287962	-	axesstel	mv_410r	Cross-site scripting (XSS) vulnerability in cgi-bin/sysconf.cgi on the Axesstel MV 410R allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2009-2322	2018-10-11 04:39	2009-07-6	Show	GitHub Exploit DB Packet Storm

287963	-	axesstel	mv_410r	The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site r…	CWE-352 Origin Validation Error	CVE-2009-2323	2018-10-11 04:39	2009-07-6	Show	GitHub Exploit DB Packet Storm

287964	-	fckeditor	fckeditor	Multiple cross-site scripting (XSS) vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to inject arbitrary web script or HTML via components in the samples (aka _samples) directory.	CWE-79 Cross-site Scripting	CVE-2009-2324	2018-10-11 04:39	2009-07-6	Show	GitHub Exploit DB Packet Storm

287965	-	wordpress	wordpress wordpress_mu	wp-admin/admin.php in WordPress and WordPress MU before 2.8.1 does not require administrative authentication to access the configuration of a plugin, which allows remote attackers to specify a config…	CWE-287 Improper Authentication	CVE-2009-2334	2018-10-11 04:39	2009-07-11	Show	GitHub Exploit DB Packet Storm

287966	-	sourcefire	3d_sensor defense_center	The web-based management interfaces in Sourcefire Defense Center (DC) and 3D Sensor before 4.8.2 allow remote authenticated users to gain privileges via a $admin value for the admin parameter in an e…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-2344	2018-10-11 04:39	2009-07-8	Show	GitHub Exploit DB Packet Storm

287967	-	libtiff	libtiff	Multiple integer overflows in inter-color spaces conversion tools in libtiff 3.8 through 3.8.2, 3.9, and 4.0 allow context-dependent attackers to execute arbitrary code via a TIFF image with large (1…	CWE-189 Numeric Errors	CVE-2009-2347	2018-10-11 04:39	2009-07-15	Show	GitHub Exploit DB Packet Storm

287968	-	microsoft	internet_explorer	Microsoft Internet Explorer 6.0.2900.2180 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks…	CWE-79 Cross-site Scripting	CVE-2009-2350	2018-10-11 04:39	2009-07-8	Show	GitHub Exploit DB Packet Storm

287969	-	google	chrome	Google Chrome 1.0.154.48 and earlier does not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors rela…	CWE-79 Cross-site Scripting	CVE-2009-2352	2018-10-11 04:39	2009-07-8	Show	GitHub Exploit DB Packet Storm

287970	-	eaccelerator	eaccelerator	encoder.php in eAccelerator allows remote attackers to execute arbitrary code by copying a local executable file to a location under the web root via the -o option, and then making a direct request t…	CWE-94 Code Injection	CVE-2009-2353	2018-10-11 04:39	2009-07-8	Show	GitHub Exploit DB Packet Storm