Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252041	7.8	危険	シスコシステムズ	-	Cisco Linksys WRT54GC におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0352	2011-01-21 11:02	2011-01-21	Show	GitHub Exploit DB Packet Storm

252042	9.3	危険	マイクロソフト	-	Microsoft WMI Administrative Tools の WBEMSingleView.ocx ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4588	2011-01-20 13:58	2010-12-23	Show	GitHub Exploit DB Packet Storm

252043	5.8	警告	Mozilla Foundation オラクル	-	複数の Mozilla 製品の Math.random 関数におけるユーザを追跡される脆弱性	CWE-310 暗号の問題	CVE-2010-3171	2011-01-20 13:51	2010-06-22	Show	GitHub Exploit DB Packet Storm

252044	4.3	警告	Git project レッドハット	-	Git の Gitweb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3906	2011-01-20 13:47	2010-12-14	Show	GitHub Exploit DB Packet Storm

252045	9.3	危険	Google レッドハット	-	Google Chrome の WebM libvpx におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2010-4203	2011-01-20 13:41	2010-11-4	Show	GitHub Exploit DB Packet Storm

252046	10	危険	Ecava	-	Ecava IntegraXor にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4597	2011-01-20 13:33	2010-12-20	Show	GitHub Exploit DB Packet Storm

252047	9.3	危険	アドビシステムズ	-	Adobe PhotoShop における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-3127	2011-01-20 13:29	2010-08-26	Show	GitHub Exploit DB Packet Storm

252048	6.1	警告	アップル	-	複数の Apple 製品上で稼働する ICMPv6 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2189	2011-01-20 11:14	2010-12-22	Show	GitHub Exploit DB Packet Storm

252049	7.1	危険	アップル	-	複数の Apple 製品上で稼働するネットワークブリッジ機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-1804	2011-01-19 16:36	2010-12-22	Show	GitHub Exploit DB Packet Storm

252050	2.6	注意	アップル	-	複数の Apple 製品上で稼働する Application-Level Gateway におけるデバイスの IP アドレスを使用される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0039	2011-01-19 16:34	2010-12-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298861	8.8	HIGH Network	liferay	liferay_portal	Liferay Portal through 6.2.10 allows remote authenticated users to execute arbitrary shell commands via a crafted Velocity template.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-5327	2024-11-21 10:23	2017-01-14	Show	GitHub Exploit DB Packet Storm

298862	9.8	CRITICAL Network	redhat linuxfoundation oracle	enterprise_linux_server_eus enterprise_linux_hpc_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation foomatic-filters linux enterprise_linux	Heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly ex…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2010-5325	2024-11-21 10:23	2016-04-15	Show	GitHub Exploit DB Packet Storm

298863	-		gehealthcare	revolution_xq\/i	The Acquisition Workstation for the GE Healthcare Revolution XQ/i has a password of adw3.1 for the sdc user, which has unspecified impact and attack vectors. NOTE: it is not clear whether this passw…	CWE-255 Credentials Management	CVE-2010-5310	2024-11-21 10:23	2015-08-4	Show	GitHub Exploit DB Packet Storm

298864	-		gehealthcare	cadstream_server_firmware	GE Healthcare CADStream Server has a default password of confirma for the admin user, which has unspecified impact and attack vectors.	CWE-255 Credentials Management	CVE-2010-5309	2024-11-21 10:23	2015-08-4	Show	GitHub Exploit DB Packet Storm

298865	-		gehealthcare	optima_mr360_firmware	GE Healthcare Optima MR360 does not require authentication for the HIPAA emergency login procedure, which allows physically proximate users to gain access via an arbitrary username in the Emergency L…	CWE-255 Credentials Management	CVE-2010-5308	2024-11-21 10:23	2015-08-4	Show	GitHub Exploit DB Packet Storm

298866	-		gehealthcare	optima_mr360_firmware	The HIPAA configuration interface in GE Healthcare Optima MR360 has a password of (1) operator for the root account, (2) adw2.0 for the admin account, and (3) adw2.0 for the sdc account, which has un…	CWE-255 Credentials Management	CVE-2010-5307	2024-11-21 10:23	2015-08-4	Show	GitHub Exploit DB Packet Storm

298867	-		gehealthcare	optima_ct540_firmware optima_ct680_firmware optima_ct520_firmware	GE Healthcare Optima CT680, CT540, CT640, and CT520 has a default password of #bigguy for the root user, which has unspecified impact and attack vectors.	CWE-255 Credentials Management	CVE-2010-5306	2024-11-21 10:23	2015-08-4	Show	GitHub Exploit DB Packet Storm

298868	-		novell	zenworks_configuration_management	Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 before 10.3 allows remote attackers to execute arbitrary cod…	CWE-22 Path Traversal	CVE-2010-5324	2024-11-21 10:23	2015-06-8	Show	GitHub Exploit DB Packet Storm

298869	-		novell	zenworks_configuration_management	Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 before 10.3 allows remote attackers to execute arbitrary cod…	CWE-22 Path Traversal	CVE-2010-5323	2024-11-21 10:23	2015-06-8	Show	GitHub Exploit DB Packet Storm

298870	-		ajsquare	zeuscart	Cross-site scripting (XSS) vulnerability in ZeusCart 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to index.php.	CWE-79 Cross-site Scripting	CVE-2010-5322	2024-11-21 10:23	2015-03-11	Show	GitHub Exploit DB Packet Storm