Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251981 4.3 警告 Apache Software Foundation - libcloud における証明書偽造の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4340 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
251982 4.3 警告 hypermail-project - Hypermail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4339 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
251983 6.2 警告 jwilk - ocrodjvu における任意のファイルを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-4338 2012-03-27 18:42 2011-01-20 Show GitHub Exploit DB Packet Storm
251984 3.3 注意 GNU Project - gnash の configure スクリプトにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-4337 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
251985 7.5 危険 Cake Software Foundation - CakePHP の _validatePost 関数における内部 Cake キャッシュを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4335 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
251986 4 警告 io-socket-ssl - IO::Socket::SSL モジュールにおける証明書の制限を回避される脆弱性 CWE-310
暗号の問題 		CVE-2010-4334 2012-03-27 18:42 2011-01-13 Show GitHub Exploit DB Packet Storm
251987 7.5 危険 Laurent Destailleur - AWStats における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4367 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
251988 4.3 警告 abk-soft - Chameleon Social Networking の forum_new_topic.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4366 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
251989 7.5 危険 Joomla!
Jextensions		 - Joomla! のJE Ajax Event Calendar コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4365 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
251990 4.3 警告 dadabik - DaDaBIK における保護メカニズムを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4364 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264821 5.5 MEDIUM
Local 		linux linux_kernel sound/core/timer.c in the Linux kernel before 4.11.5 is vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read information belonging to other users, i… CWE-200
Information Exposure 		CVE-2017-1000380 2024-11-21 12:04 2017-06-18 Show GitHub Exploit DB Packet Storm
264822 8.2 HIGH
Local 		sudo_project sudo Todd Miller's sudo version 1.8.20p1 and earlier is vulnerable to an input validation (embedded newlines) in the get_process_ttyname() function resulting in information disclosure and command executio… CWE-20
 Improper Input Validation  		CVE-2017-1000368 2024-11-21 12:04 2017-06-6 Show GitHub Exploit DB Packet Storm
264823 6.4 MEDIUM
Local 		sudo_project sudo Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an input validation (embedded spaces) in the get_process_ttyname() function resulting in information disclosure and command execution. CWE-362
Race Condition 		CVE-2017-1000367 2024-11-21 12:04 2017-06-5 Show GitHub Exploit DB Packet Storm
264824 7.5 HIGH
Network 		opendaylight opendaylight DOMRpcImplementationNotAvailableException when sending Port-Status packets to OpenDaylight. Controller launches exceptions and consumes more CPU resources. Component: OpenDaylight is vulnerable to th… NVD-CWE-noinfo
CVE-2017-1000361 2024-11-21 12:04 2017-04-25 Show GitHub Exploit DB Packet Storm
264825 5.3 MEDIUM
Network 		opendaylight opendaylight StreamCorruptedException and NullPointerException in OpenDaylight odl-mdsal-xsql. Controller launches exceptions in the console. Component: OpenDaylight odl-mdsal-xsql is vulnerable to this flaw. Ver… CWE-476
 NULL Pointer Dereference 		CVE-2017-1000360 2024-11-21 12:04 2017-04-25 Show GitHub Exploit DB Packet Storm
264826 5.3 MEDIUM
Network 		opendaylight opendaylight Java out of memory error and significant increase in resource consumption. Component: OpenDaylight odl-mdsal-xsql is vulnerable to this flaw. Version: The tested versions are OpenDaylight 3.3 and 4.0. CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-1000359 2024-11-21 12:04 2017-04-25 Show GitHub Exploit DB Packet Storm
264827 6.5 MEDIUM
Network 		opendaylight opendaylight Controller throws an exception and does not allow user to add subsequent flow for a particular switch. Component: OpenDaylight odl-restconf feature contains this flaw. Version: OpenDaylight 4.0 is af… CWE-476
 NULL Pointer Dereference 		CVE-2017-1000358 2024-11-21 12:04 2017-04-25 Show GitHub Exploit DB Packet Storm
264828 7.5 HIGH
Network 		opendaylight opendaylight Denial of Service attack when the switch rejects to receive packets from the controller. Component: This vulnerability affects OpenDaylight odl-l2switch-switch, which is the feature responsible for t… CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-1000357 2024-11-21 12:04 2017-04-25 Show GitHub Exploit DB Packet Storm
264829 7.5 HIGH
Network 		wordpress wordpress The register_routes function in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in the REST API in WordPress 4.7.x before 4.7.2 does not require an integer identifier, which allows … NVD-CWE-noinfo
CVE-2017-1001000 2024-11-21 12:04 2017-04-3 Show GitHub Exploit DB Packet Storm
264830 7.5 HIGH
Network 		ui airos
edgemax_firmware 		Denial of Service attack in airMAX < 8.3.2 , airMAX < 6.0.7 and EdgeMAX < 1.9.7 allow attackers to use the Discovery Protocol in amplification attacks. CWE-20
 Improper Input Validation  		CVE-2017-0938 2024-11-21 12:03 2019-02-13 Show GitHub Exploit DB Packet Storm