Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252571	4.9	警告	オラクル	-	Oracle Solaris および OpenSolaris における Kernel/X86 の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-3517	2010-11-2 15:51	2010-10-12	Show	GitHub Exploit DB Packet Storm

252572	5.8	警告	オラクル	-	Oracle Sun Products Suite の Oracle iPlanet Web Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3545	2010-11-2 15:51	2010-10-12	Show	GitHub Exploit DB Packet Storm

252573	6.3	警告	オラクル	-	Oracle Solaris における su の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-3503	2010-11-2 15:51	2010-10-12	Show	GitHub Exploit DB Packet Storm

252574	9.3	危険	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType 2 における CFF フォントの処理に脆弱性	CWE-119 バッファエラー	CVE-2010-1797	2010-11-2 15:24	2010-08-9	Show	GitHub Exploit DB Packet Storm

252575	6.6	警告	オラクル	-	Oracle Solaris における Live Upgrade の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-3507	2010-11-1 15:41	2010-10-12	Show	GitHub Exploit DB Packet Storm

252576	10	危険	オラクル	-	Oracle Solaris における Scheduler の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-3509	2010-11-1 15:41	2010-10-12	Show	GitHub Exploit DB Packet Storm

252577	4.3	警告	オラクル	-	Oracle Fusion Middleware の Forms コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2396	2010-11-1 15:41	2010-10-12	Show	GitHub Exploit DB Packet Storm

252578	4.3	警告	オラクル	-	Oracle Fusion Middleware の Cabo/UIX コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2410	2010-11-1 15:41	2010-10-12	Show	GitHub Exploit DB Packet Storm

252579	4.3	警告	オラクル	-	Oracle Fusion Middleware の Cabo/UIX コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2409	2010-11-1 15:40	2010-10-12	Show	GitHub Exploit DB Packet Storm

252580	4.3	警告	オラクル	-	Oracle Fusion Middleware の Cabo/UIX コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2395	2010-11-1 15:39	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290901	-	nullsoft	winamp	Multiple heap-based buffer overflows in bmp.w5s in Winamp before 5.63 build 3235 allow remote attackers to execute arbitrary code via the (1) strf chunk in BI_RGB or (2) UYVY video data in an AVI fil…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4045	2024-11-21 10:42	2012-07-23	Show	GitHub Exploit DB Packet Storm

290902	-	squashfs_project	squashfs	Integer overflow in the queue_init function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted block_log field in the superblock…	CWE-190 Integer Overflow or Wraparound	CVE-2012-4025	2024-11-21 10:42	2012-07-20	Show	GitHub Exploit DB Packet Storm

290903	-	squashfs_project	squashfs	Stack-based buffer overflow in the get_component function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted list file (aka a cr…	CWE-787 Out-of-bounds Write	CVE-2012-4024	2024-11-21 10:42	2012-07-20	Show	GitHub Exploit DB Packet Storm

290904	-	zingiri	zingiri_web_shop	Multiple unspecified vulnerabilities in the Zingiri Web Shop plugin before 2.4.0 for WordPress have unknown impact and attack vectors.	NVD-CWE-noinfo	CVE-2012-4033	2024-11-21 10:42	2012-07-19	Show	GitHub Exploit DB Packet Storm

290905	-	websitepanel	websitepanel	Open redirect vulnerability in the login page in WebsitePanel before 1.2.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in ReturnUrl to De…	CWE-20 Improper Input Validation	CVE-2012-4032	2024-11-21 10:42	2012-07-18	Show	GitHub Exploit DB Packet Storm

290906	-	wangkongbao	cns-1100 cns-1000	Multiple directory traversal vulnerabilities in src/acloglogin.php in Wangkongbao CNS-1000 and 1100 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) lang or (2) langid coo…	CWE-22 Path Traversal	CVE-2012-4031	2024-11-21 10:42	2012-07-18	Show	GitHub Exploit DB Packet Storm

290907	-	tridium	niagara_ax	Tridium Niagara AX Framework does not properly store credential data, which allows context-dependent attackers to bypass intended access restrictions by using the stored information for authenticatio…	CWE-522 Insufficiently Protected Credentials	CVE-2012-4028	2024-11-21 10:42	2012-07-17	Show	GitHub Exploit DB Packet Storm

290908	-	tridium	niagara_ax	Directory traversal vulnerability in Tridium Niagara AX Framework allows remote attackers to read files outside of the intended images, nav, and px folders by leveraging incorrect permissions, as dem…	CWE-22 Path Traversal	CVE-2012-4027	2024-11-21 10:42	2012-07-17	Show	GitHub Exploit DB Packet Storm

290909	-	johnsoncontrols	pegasys_p2000_server_software pegasys_p2000_server	The Johnson Controls Pegasys P2000 server with software before 3.11 allows remote attackers to trigger false alerts via crafted packets to TCP port 41013 (aka the upload port), a different vulnerabil…	CWE-20 Improper Input Validation	CVE-2012-4026	2024-11-21 10:42	2012-07-17	Show	GitHub Exploit DB Packet Storm

290910	-	ckeditor	fckeditor	Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remo…	CWE-79 Cross-site Scripting	CVE-2012-4000	2024-11-21 10:42	2012-07-13	Show	GitHub Exploit DB Packet Storm