Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251981	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3641	2011-02-1 16:26	2010-11-4	Show	GitHub Exploit DB Packet Storm

251982	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3640	2011-02-1 16:25	2010-11-4	Show	GitHub Exploit DB Packet Storm

251983	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3639	2011-02-1 16:24	2010-11-4	Show	GitHub Exploit DB Packet Storm

251984	9.3	危険	アドビシステムズオラクル	-	Adobe Flash Player の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3637	2011-02-1 16:23	2010-11-4	Show	GitHub Exploit DB Packet Storm

251985	2.6	注意	アップルアドビシステムズレッドハットオラクル	-	Flash Player におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3636	2011-02-1 16:20	2010-11-9	Show	GitHub Exploit DB Packet Storm

251986	8.5	危険	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL の dispatch_command 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-134 書式文字列の問題	CVE-2009-2446	2011-02-1 16:19	2009-07-7	Show	GitHub Exploit DB Packet Storm

251987	9.3	危険	サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	Windows 上で稼働する OpenOffice.org の Impress モジュールにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2936	2011-02-1 16:13	2010-08-25	Show	GitHub Exploit DB Packet Storm

251988	9.3	危険	サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	Windows 上で稼働する OpenOffice.org の Impress モジュールにおける任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-2935	2011-02-1 16:11	2010-08-25	Show	GitHub Exploit DB Packet Storm

251989	1.9	注意	Linux レッドハット	-	Linux kernel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4525	2011-02-1 14:08	2011-01-11	Show	GitHub Exploit DB Packet Storm

251990	1.9	注意	Linux レッドハット	-	Linux kernel の ntty_ioctl_tiocgicount 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4077	2011-02-1 13:33	2010-11-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268291	-		splunk	splunk	Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.2.x before 6.2.6 and Splunk Light 6.2.x before 6.2.6 allows remote attackers to inject arbitrary web script or HTML via u…	CWE-79 Cross-site Scripting	CVE-2015-7604	2024-11-21 11:37	2015-09-30	Show	GitHub Exploit DB Packet Storm

268292	-		konicaminolta	ftp_utility	Directory traversal vulnerability in Konica Minolta FTP Utility 1.0 allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in a RETR command.	CWE-22 Path Traversal	CVE-2015-7603	2024-11-21 11:37	2015-09-30	Show	GitHub Exploit DB Packet Storm

268293	-		bisonware	bisonftp	Directory traversal vulnerability in BisonWare BisonFTP 3.5 allows remote attackers to read arbitrary files via a ../ (dot dot slash) in a RETR command.	CWE-22 Path Traversal	CVE-2015-7602	2024-11-21 11:37	2015-09-30	Show	GitHub Exploit DB Packet Storm

268294	-		pcman\'s_ftp_server_project	pcman\'s_ftp_server	Directory traversal vulnerability in PCMan's FTP Server 2.0.7 allows remote attackers to read arbitrary files via a ..// (dot dot double slash) in a RETR command.	CWE-22 Path Traversal	CVE-2015-7601	2024-11-21 11:37	2015-09-30	Show	GitHub Exploit DB Packet Storm

268295	7.5	HIGH Network	lenovo	system_update	MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A vulnerability was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and p…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2015-7336	2024-11-21 11:36	2020-03-28	Show	GitHub Exploit DB Packet Storm

268296	7.0	HIGH Local	lenovo	system_update	MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A race condition was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and …	CWE-362 Race Condition	CVE-2015-7335	2024-11-21 11:36	2020-03-28	Show	GitHub Exploit DB Packet Storm

268297	7.8	HIGH Local	lenovo	system_update	MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A local privilege escalation vulnerability was reported (fixed and publicly disclosed in 2015) in Lenovo System Upd…	CWE-269 Improper Privilege Management	CVE-2015-7334	2024-11-21 11:36	2020-03-28	Show	GitHub Exploit DB Packet Storm

268298	7.8	HIGH Local	lenovo	system_update	MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A local privilege escalation vulnerability was reported (fixed and publicly disclosed in 2015) in Lenovo System Upd…	CWE-269 Improper Privilege Management	CVE-2015-7333	2024-11-21 11:36	2020-03-28	Show	GitHub Exploit DB Packet Storm

268299	7.2	HIGH Network	joobi	jnews	JNews Joomla Component before 8.5.0 allows SQL injection via upload thumbnail, Queue Search Field, Subscribers Search Field, or Newsletters Search Field.	CWE-89 SQL Injection	CVE-2015-7342	2024-11-21 11:36	2020-03-10	Show	GitHub Exploit DB Packet Storm

268300	8.8	HIGH Network	joobi	jnews	JNews Joomla Component before 8.5.0 allows arbitrary File Upload via Subscribers or Templates, as demonstrated by the .php5 extension.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2015-7341	2024-11-21 11:36	2020-03-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed