Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251461 6.8 警告 guernion sylvain portail - Guernion Sylvain Portail Web Php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1957 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251462 7.5 危険 archivexpert - ArchiveXpert におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1954 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251463 9.3 危険 ACD Systems International - ACDSee Photo Manager における整数オーバーフローの脆弱性 - CVE-2007-1943 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251464 9.3 危険 FastStone Soft - FastStone Image Viewer における整数オーバーフローの脆弱性 - CVE-2007-1942 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251465 6.8 警告 daniel naber - Daniel Naber LanguageTool の埋め込み Web サーバにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1939 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251466 6.8 警告 dreamcodes - Scorp Book の smilies.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1937 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251467 7.5 危険 dreamcodes - PcP-Book におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1933 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251468 7.8 危険 cattadoc - cattaDoc の download2.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1930 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251469 5 警告 gna - Beryo の downloadpic.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1929 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
251470 7.5 危険 LedgerSMB
dws systems inc.
- LedgerSMB における制限された機能にアクセスされる脆弱性 - CVE-2007-1923 2012-06-26 15:46 2007-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313331 - linux
suse
opensuse
debian
linux_kernel
linux_enterprise_server
opensuse
linux_enterprise_desktop
linux_enterprise_software_development_kit
linux_enterprise_real_time_extension
debian_linux
The sisfb_ioctl function in drivers/video/sis/sis_main.c in the Linux kernel before 2.6.36-rc6 does not properly initialize a certain structure member, which allows local users to obtain potentially … CWE-909
 Missing Initialization of Resource
CVE-2010-4078 2024-11-21 10:20 2010-11-30 Show GitHub Exploit DB Packet Storm
313332 - linux linux_kernel The ntty_ioctl_tiocgicount function in drivers/char/nozomi.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain poten… CWE-200
Information Exposure
CVE-2010-4077 2024-11-21 10:20 2010-11-30 Show GitHub Exploit DB Packet Storm
313333 - linux linux_kernel The rs_ioctl function in drivers/char/amiserial.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain potentially sens… CWE-200
Information Exposure
CVE-2010-4076 2024-11-21 10:20 2010-11-30 Show GitHub Exploit DB Packet Storm
313334 - linux linux_kernel The uart_get_count function in drivers/serial/serial_core.c in the Linux kernel before 2.6.37-rc1 does not properly initialize a certain structure member, which allows local users to obtain potential… CWE-200
Information Exposure
CVE-2010-4075 2024-11-21 10:20 2010-11-30 Show GitHub Exploit DB Packet Storm
313335 - linux
debian
linux_kernel
debian_linux
The USB subsystem in the Linux kernel before 2.6.36-rc5 does not properly initialize certain structure members, which allows local users to obtain potentially sensitive information from kernel stack … CWE-200
Information Exposure
CVE-2010-4074 2024-11-21 10:20 2010-11-30 Show GitHub Exploit DB Packet Storm
313336 - linux
suse
opensuse
debian
linux_kernel
linux_enterprise_server
linux_enterprise_desktop
opensuse
linux_enterprise_software_development_kit
linux_enterprise_real_time_extension
debian_linux
The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, which allows local users to obtain potentially sensitive information from kernel stack memory via vecto… CWE-200
Information Exposure
CVE-2010-4073 2024-11-21 10:20 2010-11-30 Show GitHub Exploit DB Packet Storm
313337 - linux
suse
opensuse
debian
canonical
linux_kernel
linux_enterprise_server
linux_enterprise_desktop
opensuse
linux_enterprise_software_development_kit
linux_enterprise_real_time_extension
debian_linux
ubuntu_linux
The copy_shmid_to_user function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from k… CWE-200
Information Exposure
CVE-2010-4072 2024-11-21 10:20 2010-11-30 Show GitHub Exploit DB Packet Storm
313338 - apache tomcat The default configuration of Apache Tomcat 6.x does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to hijack a session via script access to a cookie. CWE-16
Configuration
CVE-2010-4312 2024-11-21 10:20 2010-11-27 Show GitHub Exploit DB Packet Storm
313339 - dustincowell free_simple_software Free Simple Software 1.0 stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive information. CWE-310
Cryptographic Issues
CVE-2010-4311 2024-11-21 10:20 2010-11-27 Show GitHub Exploit DB Packet Storm
313340 - dustincowell free_simple_software SQL injection vulnerability in the download module in Free Simple Software 1.0 allows remote attackers to execute arbitrary SQL commands via the downloads_id parameter in a download_now action to ind… CWE-89
SQL Injection
CVE-2010-4298 2024-11-21 10:20 2010-11-27 Show GitHub Exploit DB Packet Storm