Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252521 1.9 注意 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の xfs_swapext 関数における読み込み権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2226 2011-03-3 13:28 2010-08-1 Show GitHub Exploit DB Packet Storm
252522 1.9 注意 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の mext_check_arguments 関数におけるファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2066 2011-03-3 13:26 2010-06-2 Show GitHub Exploit DB Packet Storm
252523 6.5 警告 IBM - IBM DB2 における non-DDL ステートメントを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0757 2011-03-2 16:40 2011-01-28 Show GitHub Exploit DB Packet Storm
252524 4.3 警告 シングス - 複数のシングス CGI 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0455 2011-03-2 16:01 2011-03-2 Show GitHub Exploit DB Packet Storm
252525 5 警告 The PHP Group - PHP の mt_rand 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0755 2011-03-1 15:57 2010-12-9 Show GitHub Exploit DB Packet Storm
252526 4.4 警告 The PHP Group - PHP の SplFileInfo::getType 関数におけるシンボリックリンク攻撃の脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-0754 2011-03-1 15:55 2010-12-9 Show GitHub Exploit DB Packet Storm
252527 4.3 警告 The PHP Group - PHP の PCNTL 拡張におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2011-0753 2011-03-1 15:54 2010-12-9 Show GitHub Exploit DB Packet Storm
252528 5 警告 The PHP Group - PHP の extract 関数におけるアクセス制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0752 2011-03-1 15:52 2010-12-8 Show GitHub Exploit DB Packet Storm
252529 5 警告 日立 - JP1/NETM/DM におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2011-03-1 15:26 2011-01-31 Show GitHub Exploit DB Packet Storm
252530 7.5 危険 IBM - IBM DB2 の DB2 Administration Server コンポーネントにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0731 2011-03-1 15:17 2011-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266441 5.9 MEDIUM
Network 		airbrake airbrake The airbrake module 0.3.8 and earlier defaults to sending environment variables over HTTP. Environment variables can often times contain secret keys and other sensitive values. A malicious user could… CWE-310
CWE-200
Cryptographic Issues
Information Exposure 		CVE-2016-10530 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266442 8.8 HIGH
Network 		droppy_project droppy Droppy versions <3.5.0 does not perform any verification for cross-domain websocket requests. An attacker is able to make a specially crafted page that can send requests as the context of the current… CWE-352
 Origin Validation Error 		CVE-2016-10529 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266443 4.9 MEDIUM
Network 		restafary_project restafary restafary is a REpresentful State Transfer API for Creating, Reading, Using, Deleting files on a server from the web. Restafary before 1.6.1 is able to set up a root path, which should only allow it … CWE-22
Path Traversal 		CVE-2016-10528 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266444 8.8 HIGH
Network 		express-restify-mongoose_project express-restify-mongoose express-restify-mongoose is a module to easily create a flexible REST interface for mongoose models. express-restify-mongoose 2.4.2 and earlier and 3.0.X through 3.0.1 allows a malicious user to send… CWE-200
Information Exposure 		CVE-2016-10533 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266445 9.8 CRITICAL
Network 		console-io_project console-io console-io is a module that allows users to implement a web console in their application. A malicious user could bypass the authentication and execute any command that the user who is running the con… CWE-287
Improper Authentication 		CVE-2016-10532 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266446 7.5 HIGH
Network 		riot.js riot-compiler The riot-compiler version version 2.3.21 has an issue in a regex (Catastrophic Backtracking) thats make it unusable under certain conditions. CWE-399
 Resource Management Errors 		CVE-2016-10527 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266447 8.6 HIGH
Network 		grunt-gh-pages_project grunt-gh-pages A common setup to deploy to gh-pages on every commit via a CI system is to expose a github token to ENV and to use it directly in the auth part of the url. In module versions < 0.9.1 the auth portion… CWE-255
CWE-532
Credentials Management
 Inclusion of Sensitive Information in Log Files 		CVE-2016-10526 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266448 8.2 HIGH
Network 		i18n-node-angular_project i18n-node-angular i18n-node-angular is a module used to interact between i18n and angular without using additional resources. A REST API endpoint that is used for development in i18n-node-angular before 1.4.0 was not … CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-10524 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266449 7.5 HIGH
Network 		mqtt-packet_project mqtt-packet MQTT before 3.4.6 and 4.0.x before 4.0.5 allows specifically crafted MQTT packets to crash the application, making a DoS attack feasible with very little bandwidth. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-10523 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm
266450 7.5 HIGH
Network 		jshamcrest_project jshamcrest jshamcrest is vulnerable to regular expression denial of service (ReDoS) when certain types of user input is passed in to the emailAddress validator. CWE-20
 Improper Input Validation  		CVE-2016-10521 2024-11-21 11:44 2018-06-1 Show GitHub Exploit DB Packet Storm