Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251881 7.5 危険 Ecava - Ecava IntegraXor HMI における認証を回避される脆弱性 CWE-89
SQLインジェクション 		CVE-2011-1562 2011-06-6 14:47 2011-04-5 Show GitHub Exploit DB Packet Storm
251882 6.8 警告 IntelliCom Innovation AB - 複数の IntelliCom 製品の cgi-bin/read.cgi における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4731 2011-06-6 14:46 2011-02-15 Show GitHub Exploit DB Packet Storm
251883 9 危険 IntelliCom Innovation AB - 複数の IntelliCom 製品の cgi-bin/read.cgi における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4732 2011-06-6 14:44 2011-02-15 Show GitHub Exploit DB Packet Storm
251884 6.8 警告 IntelliCom Innovation AB - 複数の IntelliCom 製品の cgi-bin/read.cgi におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4730 2011-06-6 14:34 2011-02-15 Show GitHub Exploit DB Packet Storm
251885 7.8 危険 Imperva Inc. - Imperva SecureSphere の Web Application Firewall および Database Firewall における intrusion-prevention 機能を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1329 2011-06-6 14:29 2010-04-5 Show GitHub Exploit DB Packet Storm
251886 4.3 警告 Imperva Inc. - Imperva SecureSphere MX Management Server の management GUI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1463 2011-06-6 14:27 2008-03-18 Show GitHub Exploit DB Packet Storm
251887 6.5 警告 バラクーダネットワークス - Barracuda Spam Firewall の Account View ページ内にある index.cgi における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1094 2011-06-6 14:23 2008-12-15 Show GitHub Exploit DB Packet Storm
251888 3.5 注意 バラクーダネットワークス - 複数の Barracuda 製品の index.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0971 2011-06-6 14:21 2008-12-15 Show GitHub Exploit DB Packet Storm
251889 4.3 警告 バラクーダネットワークス - Barracuda Spam Firewall の ldap_test.cgi におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2333 2011-06-6 14:20 2008-05-22 Show GitHub Exploit DB Packet Storm
251890 10 危険 7-Technologies - 7-Technologies Interactive Graphical SCADA System の logText 関数における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2011-1568 2011-06-6 14:19 2011-04-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269381 - opensuse
cyrus 		leap
opensuse
imap 		The index_urlfetch function in index.c in Cyrus IMAP 2.3.x before 2.3.19, 2.4.x before 2.4.18, 2.5.x before 2.5.4 allows remote attackers to obtain sensitive information or possibly have unspecified … CWE-119
CWE-200
Incorrect Access of Indexable Resource ('Range Error') 
Information Exposure 		CVE-2015-8076 2024-11-21 11:37 2015-12-4 Show GitHub Exploit DB Packet Storm
269382 - mcafee mcafee_enterprise_security_manager McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and Enterprise Security Manager/Receiver (ESMREC) 9.3.x before 9.3.2MR19, 9.4.x before 9.4.2MR9, and 9.5.x b… CWE-78
OS Command  		CVE-2015-8024 2024-11-21 11:37 2015-12-3 Show GitHub Exploit DB Packet Storm
269383 - valvesoftware steam_client Valve Steam 2.10.91.91 uses weak permissions (Users: read and write) for the Install folder, which allows local users to gain privileges via a Trojan horse steam.exe file. CWE-276
Incorrect Default Permissions  		CVE-2015-7985 2024-11-21 11:37 2015-11-25 Show GitHub Exploit DB Packet Storm
269384 - canonical
debian
redhat
libpng 		ubuntu_linux
debian_linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux_ser… 		The png_convert_to_rfc1123 function in png.c in libpng 1.0.x before 1.0.64, 1.2.x before 1.2.54, and 1.4.x before 1.4.17 allows remote attackers to obtain sensitive process memory information via cra… CWE-200
Information Exposure 		CVE-2015-7981 2024-11-21 11:37 2015-11-25 Show GitHub Exploit DB Packet Storm
269385 - canonical
nvidia 		ubuntu_linux
gpu_driver 		Multiple integer overflows in the kernel mode driver for the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows and R304 before 304.131, R340 before … CWE-189
Numeric Errors 		CVE-2015-7869 2024-11-21 11:37 2015-11-25 Show GitHub Exploit DB Packet Storm
269386 - nvidia gpu_driver Unquoted Windows search path vulnerability in the Smart Maximize Helper (nvSmartMaxApp.exe) in the Control Panel in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 bef… NVD-CWE-Other
CVE-2015-7866 2024-11-21 11:37 2015-11-25 Show GitHub Exploit DB Packet Storm
269387 - nvidia gpu_driver nvSCPAPISvr.exe in the Stereoscopic 3D Driver Service in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows does not properly restrict access to … CWE-284
Improper Access Control 		CVE-2015-7865 2024-11-21 11:37 2015-11-25 Show GitHub Exploit DB Packet Storm
269388 - vbulletin vbulletin The vB_Api_Hook::decodeArguments method in vBulletin 5 Connect 5.1.2 through 5.1.9 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted seriali… CWE-20
 Improper Input Validation  		CVE-2015-7808 2024-11-21 11:37 2015-11-25 Show GitHub Exploit DB Packet Storm
269389 - tibbo aggregate ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService … NVD-CWE-Other
CVE-2015-7913 2024-11-21 11:37 2015-11-21 Show GitHub Exploit DB Packet Storm
269390 - tibbo aggregate The Ice Faces servlet in ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML do… NVD-CWE-Other
CVE-2015-7912 2024-11-21 11:37 2015-11-21 Show GitHub Exploit DB Packet Storm