Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252411	7.5	危険	アップル VMware サン・マイクロシステムズヒューレット・パッカードレッドハット	-	複数の Oracle 製品の Java 2D コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0848	2011-03-17 08:18	2010-03-30	Show	GitHub Exploit DB Packet Storm

252412	7.5	危険	サン・マイクロシステムズ VMware	-	複数の Oracle 製品の Java 2D コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0850	2011-03-17 08:17	2010-03-30	Show	GitHub Exploit DB Packet Storm

252413	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の TextXtra モジュールにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-4195	2011-03-11 18:22	2011-02-8	Show	GitHub Exploit DB Packet Storm

252414	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の dirapi.dll モジュールにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-4194	2011-03-11 18:21	2011-02-8	Show	GitHub Exploit DB Packet Storm

252415	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-4193	2011-03-11 18:21	2011-02-8	Show	GitHub Exploit DB Packet Storm

252416	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4192	2011-03-11 18:21	2011-02-8	Show	GitHub Exploit DB Packet Storm

252417	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-4191	2011-03-11 18:20	2011-02-8	Show	GitHub Exploit DB Packet Storm

252418	7.5	危険	アップル VMware サン・マイクロシステムズヒューレット・パッカードレッドハット	-	複数の Oracle 製品の ImageIO コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0846	2011-03-11 10:16	2010-03-30	Show	GitHub Exploit DB Packet Storm

252419	7.5	危険	アップルサイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカード VMware レッドハット	-	複数の Oracle 製品の ImageIO コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0841	2011-03-11 10:11	2010-03-30	Show	GitHub Exploit DB Packet Storm

252420	7.5	危険	アップルサイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカード VMware レッドハット	-	Oracle Sun Java が Java アプレットの署名を正しく検証しない脆弱性	CWE-noinfo 情報不足	CVE-2010-0087	2011-03-11 10:10	2010-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266301	9.8	CRITICAL Network	canonical gnome	ubuntu_linux evolution	camel/providers/imapx/camel-imapx-server.c in the IMAPx component in GNOME evolution-data-server before 3.21.2 proceeds with cleartext data containing a password if the client wishes to use STARTTLS …	CWE-200 Information Exposure	CVE-2016-10727	2024-11-21 11:44	2018-07-20	Show	GitHub Exploit DB Packet Storm

266302	7.5	HIGH Network	duraspace	dspace	The XMLUI feature in DSpace before 3.6, 4.x before 4.5, and 5.x before 5.5 allows directory traversal via the themes/ path in an attack with two or more arbitrary characters and a colon before a path…	CWE-22 Path Traversal	CVE-2016-10726	2024-11-21 11:44	2018-07-10	Show	GitHub Exploit DB Packet Storm

266303	7.5	HIGH Network	bitcoin	bitcoin_core bitcoin-qt bitcoind	In Bitcoin Core before v0.13.0, a non-final alert is able to block the special "final alert" (which is supposed to override all other alerts) because operations occur in the wrong order. This behavio…	CWE-310 Cryptographic Issues	CVE-2016-10725	2024-11-21 11:44	2018-07-6	Show	GitHub Exploit DB Packet Storm

266304	7.5	HIGH Network	bitcoin	bitcoin_core bitcoin-qt bitcoind	Bitcoin Core before v0.13.0 allows denial of service (memory exhaustion) triggered by the remote network alert system (deprecated since Q1 2016) if an attacker can sign a message with a certain priva…	CWE-400 Uncontrolled Resource Consumption	CVE-2016-10724	2024-11-21 11:44	2018-07-6	Show	GitHub Exploit DB Packet Storm

266305	8.8	HIGH Network	rails_admin_project	rails_admin	rails_admin ruby gem <v1.1.1 is vulnerable to cross-site request forgery (CSRF) attacks. Non-GET methods were not validating CSRF tokens and, as a result, an attacker could hypothetically gain access…	CWE-352 Origin Validation Error	CVE-2016-10522	2024-11-21 11:44	2018-07-6	Show	GitHub Exploit DB Packet Storm

266306	5.5	MEDIUM Local	linux	linux_kernel	An issue was discovered in the Linux kernel through 4.17.2. Since the page allocator does not yield CPU resources to the owner of the oom_lock mutex, a local unprivileged user can trivially lock up t…	CWE-399 Resource Management Errors	CVE-2016-10723	2024-11-21 11:44	2018-06-21	Show	GitHub Exploit DB Packet Storm

266307	8.1	HIGH Network	react-native-baidu-voice-synthesizer_project	react-native-baidu-voice-synthesizer	react-native-baidu-voice-synthesizer is a baidu voice speech synthesizer for react native. react-native-baidu-voice-synthesizer downloads resources over HTTP, which leaves it vulnerable to MITM attac…	CWE-310 Cryptographic Issues	CVE-2016-10697	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

266308	8.1	HIGH Network	windows-latestchromedriver_project	windows-latestchromedriver	windows-latestchromedriver downloads the latest version of chromedriver.exe. windows-latestchromedriver downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be pos…	CWE-310 Cryptographic Issues	CVE-2016-10696	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

266309	8.1	HIGH Network	mapbox	npm-test-sqlite3-trunk	The npm-test-sqlite3-trunk module provides asynchronous, non-blocking SQLite3 bindings. npm-test-sqlite3-trunk downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may…	CWE-310 Cryptographic Issues	CVE-2016-10695	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm

266310	8.1	HIGH Network	alto-saxophone_project	alto-saxophone	alto-saxophone is a module to install and launch Chromedriver for Mac, Linux or Windows. alto-saxophone versions below 2.25.1 download binary resources over HTTP, which leaves it vulnerable to MITM a…	CWE-310 Cryptographic Issues	CVE-2016-10694	2024-11-21 11:44	2018-06-5	Show	GitHub Exploit DB Packet Storm