Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251981	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3641	2011-02-1 16:26	2010-11-4	Show	GitHub Exploit DB Packet Storm

251982	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3640	2011-02-1 16:25	2010-11-4	Show	GitHub Exploit DB Packet Storm

251983	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3639	2011-02-1 16:24	2010-11-4	Show	GitHub Exploit DB Packet Storm

251984	9.3	危険	アドビシステムズオラクル	-	Adobe Flash Player の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3637	2011-02-1 16:23	2010-11-4	Show	GitHub Exploit DB Packet Storm

251985	2.6	注意	アップルアドビシステムズレッドハットオラクル	-	Flash Player におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3636	2011-02-1 16:20	2010-11-9	Show	GitHub Exploit DB Packet Storm

251986	8.5	危険	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL の dispatch_command 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-134 書式文字列の問題	CVE-2009-2446	2011-02-1 16:19	2009-07-7	Show	GitHub Exploit DB Packet Storm

251987	9.3	危険	サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	Windows 上で稼働する OpenOffice.org の Impress モジュールにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2936	2011-02-1 16:13	2010-08-25	Show	GitHub Exploit DB Packet Storm

251988	9.3	危険	サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	Windows 上で稼働する OpenOffice.org の Impress モジュールにおける任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-2935	2011-02-1 16:11	2010-08-25	Show	GitHub Exploit DB Packet Storm

251989	1.9	注意	Linux レッドハット	-	Linux kernel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4525	2011-02-1 14:08	2011-01-11	Show	GitHub Exploit DB Packet Storm

251990	1.9	注意	Linux レッドハット	-	Linux kernel の ntty_ioctl_tiocgicount 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4077	2011-02-1 13:33	2010-11-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271371	-	spider_contacts_project	spider_contacts	SQL injection vulnerability in the Spider Contacts module for Drupal allows remote authenticated users with the "access Spider Contacts category administration" permission to execute arbitrary SQL co…	CWE-89 SQL Injection	CVE-2015-4348	2024-11-21 11:30	2015-06-15	Show	GitHub Exploit DB Packet Storm

271372	-	inlinks_project	inlinks	Cross-site scripting (XSS) vulnerability in the inLinks Integration module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified path arguments.	CWE-79 Cross-site Scripting	CVE-2015-4347	2024-11-21 11:30	2015-06-15	Show	GitHub Exploit DB Packet Storm

271373	-	sms_framework_project	sms_framework	Cross-site scripting (XSS) vulnerability in the SMS Framework module 6.x-1.x before 6.x-1.1 for Drupal, when the "Send to phone" submodule is enabled, allows remote attackers to inject arbitrary web …	CWE-79 Cross-site Scripting	CVE-2015-4346	2024-11-21 11:30	2015-06-15	Show	GitHub Exploit DB Packet Storm

271374	-	restful_web_services_project	restful_web_services	The RESTWS Basic Auth submodule in the RESTful Web Services module 7.x-1.x before 7.x-1.5 and 7.x-2.x before 7.x-2.3 for Drupal caches pages for authenticated requests, which allows remote attackers …	CWE-200 Information Exposure	CVE-2015-4345	2024-11-21 11:30	2015-06-15	Show	GitHub Exploit DB Packet Storm

271375	-	services_basic_authentication_project	services_basic_authentication	The Services Basic Authentication module 7.x-1.x through 7.x-1.3 for Drupal allows remote attackers to bypass intended resource restrictions via vectors related to page caching.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-4344	2024-11-21 11:30	2015-06-15	Show	GitHub Exploit DB Packet Storm

271376	-	rle	nova-wind_turbine_hmi_firmware	RLE Nova-Wind Turbine HMI devices store cleartext credentials, which allows remote attackers to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2015-3951	2024-11-21 11:30	2015-06-14	Show	GitHub Exploit DB Packet Storm

271377	-	sinapsi	esolar_light_firmware	Sinapsi eSolar Light with firmware before 2.0.3970_schsl_2.2.85 allows attackers to discover cleartext passwords by reading the HTML source code of the mail-configuration page.	CWE-200 Information Exposure	CVE-2015-3949	2024-11-21 11:30	2015-06-14	Show	GitHub Exploit DB Packet Storm

271378	-	actian	matrix	Actian Matrix 5.1.x through 5.1.2.4 and 5.2.x through 5.2.0.1 allows remote authenticated users to bypass intended write-access restrictions and execute an UPDATE statement by referencing a table.	CWE-89 SQL Injection	CVE-2015-3993	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

271379	-	cisco	ios	The TCL interpreter in Cisco IOS 15.2 does not properly maintain the vty state, which allows local users to gain privileges by starting a session very soon after a TCL script execution, aka Bug ID CS…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-4185	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

271380	-	cisco	email_security_appliance	The anti-spam scanner on Cisco Email Security Appliance (ESA) devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote attackers to bypass intended e-mail restrictions via a malformed DNS SPF rec…	CWE-20 Improper Input Validation	CVE-2015-4184	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed