Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252071 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Consent User Interface における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3961 2011-01-17 15:06 2010-12-14 Show GitHub Exploit DB Packet Storm
252072 7.2 危険 マイクロソフト - Microsoft Windows 製品の Routing and Remote Access NDProxy コンポーネントにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3963 2011-01-17 15:03 2010-12-14 Show GitHub Exploit DB Packet Storm
252073 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3944 2011-01-17 14:45 2010-12-14 Show GitHub Exploit DB Packet Storm
252074 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3943 2011-01-17 14:38 2010-12-14 Show GitHub Exploit DB Packet Storm
252075 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2010-3942 2011-01-17 14:35 2010-12-14 Show GitHub Exploit DB Packet Storm
252076 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3941 2011-01-17 14:29 2010-12-14 Show GitHub Exploit DB Packet Storm
252077 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3940 2011-01-14 15:55 2010-12-14 Show GitHub Exploit DB Packet Storm
252078 7.2 危険 マイクロソフト - Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3939 2011-01-14 15:53 2010-12-14 Show GitHub Exploit DB Packet Storm
252079 9.3 危険 マイクロソフト - Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3144 2011-01-14 15:49 2010-12-14 Show GitHub Exploit DB Packet Storm
252080 9.3 危険 マイクロソフト - Windows Address Book の wab.exe における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3147 2011-01-14 15:47 2010-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298871 - memht memht_portal Multiple cross-site request forgery (CSRF) vulnerabilities in MemHT Portal 4.0.1 allow remote attackers to hijack the authentication of administrators for requests that (1) modify settings via a conf… CWE-352
 Origin Validation Error 		CVE-2010-5320 2024-11-21 10:23 2015-01-3 Show GitHub Exploit DB Packet Storm
298872 - kan-studio kandidat_cms Multiple cross-site request forgery (CSRF) vulnerabilities in Kandidat CMS 1.4.2 allow remote attackers to hijack the authentication of administrators for requests that (1) modify settings via a vali… CWE-352
 Origin Validation Error 		CVE-2010-5319 2024-11-21 10:23 2015-01-3 Show GitHub Exploit DB Packet Storm
298873 - basic-cms sweetrice The password-reset feature in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to modify the administrator's password by specifying the administrator's e-mail address in the email… CWE-255
Credentials Management 		CVE-2010-5318 2024-11-21 10:23 2015-01-3 Show GitHub Exploit DB Packet Storm
298874 - basic-cms sweetrice Multiple SQL injection vulnerabilities in index.php in SweetRice CMS before 0.6.7.1 allow remote attackers to execute arbitrary SQL commands via (1) the file_name parameter in an attachment action, (… CWE-89
SQL Injection 		CVE-2010-5317 2024-11-21 10:23 2015-01-3 Show GitHub Exploit DB Packet Storm
298875 - basic-cms sweetrice Cross-site scripting (XSS) vulnerability in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to inject arbitrary web script or HTML via a top_height cookie. CWE-79
Cross-site Scripting 		CVE-2010-5316 2024-11-21 10:23 2015-01-3 Show GitHub Exploit DB Packet Storm
298876 - chialab_\&_channelweb bedita Multiple cross-site request forgery (CSRF) vulnerabilities in BEdita before 3.1 allow remote attackers to hijack the authentication of administrators for requests that (1) create categories via a dat… CWE-352
 Origin Validation Error 		CVE-2010-5315 2024-11-21 10:23 2015-01-3 Show GitHub Exploit DB Packet Storm
298877 - chialab_\&_channelweb bedita Cross-site scripting (XSS) vulnerability in controllers/home_controller.php in BEdita before 3.1 allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter to news/… CWE-79
Cross-site Scripting 		CVE-2010-5314 2024-11-21 10:23 2015-01-3 Show GitHub Exploit DB Packet Storm
298878 - linux linux_kernel Race condition in arch/x86/kvm/x86.c in the Linux kernel before 2.6.38 allows L2 guest OS users to cause a denial of service (L1 guest OS crash) via a crafted instruction that triggers an L2 emulatio… CWE-362
Race Condition 		CVE-2010-5313 2024-11-21 10:23 2014-11-30 Show GitHub Exploit DB Packet Storm
298879 6.1 MEDIUM
Network 		debian
jqueryui
fedoraproject
netapp
apache
drupal 		debian_linux
jquery_ui
fedora
snapcenter
drill
drupal 		Cross-site scripting (XSS) vulnerability in jquery.ui.dialog.js in the Dialog widget in jQuery UI before 1.10.0 allows remote attackers to inject arbitrary web script or HTML via the title option. CWE-79
Cross-site Scripting 		CVE-2010-5312 2024-11-21 10:23 2014-11-25 Show GitHub Exploit DB Packet Storm
298880 - tetex
gnome
t1lib 		tetex
evince
t1lib 		Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service (c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-0433 2024-11-21 10:23 2012-11-19 Show GitHub Exploit DB Packet Storm