Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251361	6.5	警告	オラクル	-	Oracle Database の JavaVM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0866	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

251362	7.1	危険	オラクル	-	Oracle Database の Core RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0860	2010-05-12 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

251363	7.5	危険	オラクル	-	複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0853	2010-05-12 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

251364	2.6	注意	シックス・アパート株式会社	-	Movable Type におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1985	2010-05-12 12:01	2010-05-12	Show	GitHub Exploit DB Packet Storm

251365	10	危険	日立	-	複数の EUR Form 製品および EUR 製品における任意のコードが実行される脆弱性	CWE-noinfo 情報不足	-	2010-05-11 15:16	2010-03-31	Show	GitHub Exploit DB Packet Storm

251366	6.4	警告	マイクロソフト	-	Microsoft Windows における ISATAP パケットの処理に関する IPv4 ソースアドレスの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0812	2010-05-11 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

251367	7.6	危険	マイクロソフト	-	Microsoft Office Visio における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0256	2010-05-11 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

251368	7.6	危険	マイクロソフト	-	Microsoft Office Visio における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0254	2010-05-11 15:15	2010-04-13	Show	GitHub Exploit DB Packet Storm

251369	5	警告	マイクロソフト	-	Microsoft Windows の SMTP コンポーネントにおける情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2010-0025	2010-05-11 15:15	2010-04-13	Show	GitHub Exploit DB Packet Storm

251370	5	警告	マイクロソフト	-	Microsoft Windows の SMTP コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0024	2010-05-11 15:15	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
284921	-	tightvnc ultravnc	tightvnc ultravnc	Multiple integer signedness errors in (1) UltraVNC 1.0.2 and 1.0.5 and (2) TightVnc 1.3.9 allow remote VNC servers to cause a denial of service (heap corruption and application crash) or possibly exe…	CWE-189 Numeric Errors	CVE-2009-0388	2018-10-12 06:01	2009-02-5	Show	GitHub Exploit DB Packet Storm

284922	-	enomaly	elastic_computing_platform	Argument injection vulnerability in Enomaly Elastic Computing Platform (ECP), formerly Enomalism, before 2.1.1 allows local users to send signals to arbitrary processes by populating the /tmp/enomali…	CWE-94 Code Injection	CVE-2009-0390	2018-10-12 06:01	2009-02-3	Show	GitHub Exploit DB Packet Storm

284923	-	motorola	cpei300	Directory traversal vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the page parameter.	CWE-22 Path Traversal	CVE-2009-0392	2018-10-12 06:01	2009-02-3	Show	GitHub Exploit DB Packet Storm

284924	-	motorola	cpei300	Cross-site scripting (XSS) vulnerability in sysconf.cgi in Motorola Wimax modem CPEi300 allows remote authenticated users to inject arbitrary web script or HTML via the page parameter.	CWE-79 Cross-site Scripting	CVE-2009-0393	2018-10-12 06:01	2009-02-3	Show	GitHub Exploit DB Packet Storm

284925	-	sony_ericsson	k530i k610i k618i k660i k810i w660i w880i w910i z610i	The Sony Ericsson W910i, W660i, K618i, K610i, Z610i, K810i, K660i, W880i, and K530i phones allow remote attackers to cause a denial of service (device reboot or hang-up) via a malformed WAP Push pack…	CWE-20 Improper Input Validation	CVE-2009-0396	2018-10-12 06:01	2009-02-3	Show	GitHub Exploit DB Packet Storm

284926	-	gstreamer	good_plug-ins plug-ins	Heap-based buffer overflow in the qtdemux_parse_samples function in gst/qtdemux/qtdemux.c in GStreamer Good Plug-ins (aka gst-plugins-good) 0.10.9 through 0.10.11, and GStreamer Plug-ins (aka gstream…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0397	2018-10-12 06:01	2009-02-3	Show	GitHub Exploit DB Packet Storm

284927	-	mzbservices	max.blog	SQL injection vulnerability in offline_auth.php in Max.Blog 1.0.6 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter.	CWE-89 SQL Injection	CVE-2009-0409	2018-10-12 06:01	2009-02-4	Show	GitHub Exploit DB Packet Storm

284928	-	novell	groupwise	Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote attackers to execute arbitrary code via a long …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0410	2018-10-12 06:01	2009-02-4	Show	GitHub Exploit DB Packet Storm

284929	-	interspire	shopping_cart	The ProcessLogin function in class.auth.php in Interspire Shopping Cart (ISC) 4.0.1 Ultimate edition allows remote attackers to bypass authentication and obtain administrative access by reusing the R…	CWE-287 Improper Authentication	CVE-2009-0412	2018-10-12 06:01	2009-02-4	Show	GitHub Exploit DB Packet Storm

284930	-	tincan	phplist	Dynamic variable evaluation vulnerability in lists/admin.php in phpList 2.10.8 and earlier, when register_globals is disabled, allows remote attackers to include and execute arbitrary local files via…	CWE-94 Code Injection	CVE-2009-0422	2018-10-12 06:01	2009-02-5	Show	GitHub Exploit DB Packet Storm