Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252261	6.4	警告	ヒューレット・パッカードレッドハット日立オラクル	-	Oracle Sun Products Suite の Oracle Communications Messaging Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3564	2010-12-16 15:22	2010-10-12	Show	GitHub Exploit DB Packet Storm

252262	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-DesignError	CVE-2010-3817	2010-12-16 14:18	2010-11-22	Show	GitHub Exploit DB Packet Storm

252263	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-3816	2010-12-16 14:18	2010-11-22	Show	GitHub Exploit DB Packet Storm

252264	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-3811	2010-12-16 14:16	2010-11-22	Show	GitHub Exploit DB Packet Storm

252265	5	警告	The PHP Group サイバートラスト株式会社レッドハット	-	PHP のセッションシリアライザにおける任意のセッション変数に変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3065	2010-12-15 15:28	2010-05-31	Show	GitHub Exploit DB Packet Storm

252266	5	警告	日立	-	JP1/NETM 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	-	2010-12-15 15:27	2010-07-30	Show	GitHub Exploit DB Packet Storm

252267	5	警告	The PHP Group サイバートラスト株式会社ターボリナックスレッドハット	-	PHP におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1917	2010-12-15 15:27	2010-05-11	Show	GitHub Exploit DB Packet Storm

252268	5	警告	The PHP Group アップルターボリナックスサイバートラスト株式会社レッドハット	-	PHP の xmlrpc 拡張におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0397	2010-12-15 15:27	2010-03-16	Show	GitHub Exploit DB Packet Storm

252269	6.4	警告	The PHP Group サイバートラスト株式会社レッドハット	-	PHP の Linear Congruential Generator における値を推測される脆弱性	CWE-310 暗号の問題	CVE-2010-1128	2010-12-15 15:26	2010-03-26	Show	GitHub Exploit DB Packet Storm

252270	6.9	警告	GNU Project 日本電気ターボリナックスサイバートラスト株式会社レッドハット	-	GNU Libtool の libltdl における権限昇格の脆弱性	CWE-DesignError	CVE-2009-3736	2010-12-15 15:26	2009-11-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
289651	-	opera	opera_browser	Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript code that overrides methods of unspecified native …	CWE-79 Cross-site Scripting	CVE-2012-6464	2024-11-21 10:46	2013-01-2	Show	GitHub Exploit DB Packet Storm

289652	-	opera	opera_browser	Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via vectors involving an unspecified sequence of loading of documents and…	CWE-79 Cross-site Scripting	CVE-2012-6463	2024-11-21 10:46	2013-01-2	Show	GitHub Exploit DB Packet Storm

289653	-	opera	opera_browser	Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specification, which allows remote attackers to bypass intended page-content restrictions via a crafted request.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6462	2024-11-21 10:46	2013-01-2	Show	GitHub Exploit DB Packet Storm

289654	-	opera	opera_browser	The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by caus…	CWE-20 Improper Input Validation	CVE-2012-6461	2024-11-21 10:46	2013-01-2	Show	GitHub Exploit DB Packet Storm

289655	-	opera	opera_browser	Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, and possibly trigger downloading and execution of arbitrary programs, via a crafted web site.	NVD-CWE-Other	CVE-2012-6460	2024-11-21 10:46	2013-01-2	Show	GitHub Exploit DB Packet Storm

289656	-	intel	connman	ConnMan 1.3 on Tizen continues to list the bluetooth service after offline mode has been enabled, which might allow remote attackers to obtain sensitive information via Bluetooth packets.	CWE-200 Information Exposure	CVE-2012-6459	2024-11-21 10:46	2013-01-2	Show	GitHub Exploit DB Packet Storm

289657	-	lemonldap-ng	lemonldap\	LemonLDAP::NG before 1.2.3 does not use the signature-verification capability of the Lasso library, which allows remote attackers to bypass intended access-control restrictions via crafted SAML data.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6426	2024-11-21 10:46	2013-01-2	Show	GitHub Exploit DB Packet Storm

289658	-	belkin	n900_wireless_router	The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits of the LAN/WLAN MAC address, which makes it easier for remote attackers to obtain access to a Wi-Fi…	CWE-310 Cryptographic Issues	CVE-2012-6371	2024-11-21 10:46	2013-01-1	Show	GitHub Exploit DB Packet Storm

289659	-	mediawiki	rssreader	Cross-site scripting (XSS) vulnerability in the RSS Reader extension before 0.2.6 for MediaWiki allows remote attackers to inject arbitrary web script or HTML via a crafted feed.	CWE-79 Cross-site Scripting	CVE-2012-6453	2024-11-21 10:46	2012-12-31	Show	GitHub Exploit DB Packet Storm

289660	-	cerberusftp	ftp_server	Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cerberus FTP Server before 5.0.6.0 allow (1) remote attackers to inject arbitrary web script or HTML via a l…	CWE-79 Cross-site Scripting	CVE-2012-6339	2024-11-21 10:46	2012-12-31	Show	GitHub Exploit DB Packet Storm