Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251581 7.5 危険 Geeklog - Geeklog の filemgmt/singlefile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4933 2012-02-28 15:48 2011-10-9 Show GitHub Exploit DB Packet Storm
251582 4.3 警告 Khader Abbeb - Entrans の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4932 2012-02-28 15:47 2011-10-9 Show GitHub Exploit DB Packet Storm
251583 4.3 警告 atmail pty ltd - Atmail Webmail の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4930 2012-02-28 14:27 2011-10-9 Show GitHub Exploit DB Packet Storm
251584 7.5 危険 Joostina CMS - Joomla! 用 Joostina コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4929 2012-02-28 14:09 2011-10-9 Show GitHub Exploit DB Packet Storm
251585 4.3 警告 PhotoIndochina - Joomla! 用 Restaurant Guide コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4928 2012-02-28 14:07 2011-10-9 Show GitHub Exploit DB Packet Storm
251586 7.5 危険 PhotoIndochina - Joomla! 用 Restaurant Guide コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4927 2012-02-28 13:57 2011-10-9 Show GitHub Exploit DB Packet Storm
251587 7.5 危険 TimeTrack - Joomla! 用 TimeTrack コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4926 2012-02-28 13:53 2011-10-9 Show GitHub Exploit DB Packet Storm
251588 7.5 危険 Nuked-Klan - Nuked-Klan 用 Partenaires モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4925 2012-02-28 13:40 2011-10-9 Show GitHub Exploit DB Packet Storm
251589 7.5 危険 Virtue Netz - Virtue Netz Virtue Book Store における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4923 2012-02-28 13:39 2011-10-9 Show GitHub Exploit DB Packet Storm
251590 7.5 危険 Allinta - Allinta CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4922 2012-02-28 11:20 2011-10-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273951 - symantec web_gateway The management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0.0.1277 allows remote authenticated users to bypass intended access restrictions and execute arbitrary… CWE-78
OS Command  		CVE-2015-5690 2024-11-21 11:33 2015-09-21 Show GitHub Exploit DB Packet Storm
273952 - symantec ghost_solutions_suite
deployment_solution 		ghostexp.exe in Ghost Explorer Utility in Symantec Ghost Solutions Suite (GSS) before 3.0 HF2 12.0.0.8010 and Symantec Deployment Solution (DS) before 7.6 HF4 12.0.0.7045 performs improper sign-exten… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-5689 2024-11-21 11:33 2015-09-21 Show GitHub Exploit DB Packet Storm
273953 - newphoria_corporation 1.1 The Newphoria Photon application before 1.2 for Android allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-5637 2024-11-21 11:33 2015-09-21 Show GitHub Exploit DB Packet Storm
273954 - newphoria_corporation reversi The Newphoria Reversi application before 1.0.3 for Android and before 1.2 for iOS allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-5636 2024-11-21 11:33 2015-09-21 Show GitHub Exploit DB Packet Storm
273955 - newphoria_corporation koritore The Newphoria Koritore application before 1.1 for Android and before 1.1 for iOS allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-5635 2024-11-21 11:33 2015-09-21 Show GitHub Exploit DB Packet Storm
273956 - newphoria_corporation megaphone_music The Newphoria MEGAPHONE MUSIC application before 1.1 for Android and before 1.1 for iOS allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-5634 2024-11-21 11:33 2015-09-21 Show GitHub Exploit DB Packet Storm
273957 - newphoria_corporation auction_camera The Newphoria Auction Camera application for iOS and before 1.2 for Android allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-5633 2024-11-21 11:33 2015-09-21 Show GitHub Exploit DB Packet Storm
273958 - newphoria_corporation applican The runtime engine in the Newphoria applican framework before 1.12.3 for Android and before 1.12.2 for iOS allows attackers to bypass a whitelist.xml URL whitelist protection mechanism and obtain API… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-5632 2024-11-21 11:33 2015-09-21 Show GitHub Exploit DB Packet Storm
273959 - dena h20 Directory traversal vulnerability in H2O before 1.4.5 and 1.5.x before 1.5.0-beta2, when the file.dir directive is enabled, allows remote attackers to read arbitrary files via a crafted URL. CWE-22
Path Traversal 		CVE-2015-5638 2024-11-21 11:33 2015-09-20 Show GitHub Exploit DB Packet Storm
273960 - apple watchos
iphone_os 		Apple iOS before 9 allows attackers to discover the e-mail address of a player via a crafted Game Center app. CWE-200
Information Exposure 		CVE-2015-5855 2024-11-21 11:33 2015-09-18 Show GitHub Exploit DB Packet Storm