Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252581	9.3	危険	マイクロソフト	-	Microsoft Forefront UAG の MicrosoftClient.jar における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-1969	2011-10-21 15:31	2011-10-11	Show	GitHub Exploit DB Packet Storm

252582	4.3	警告	マイクロソフト	-	Microsoft Forefront UAG 2010 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1897	2011-10-21 15:30	2011-10-11	Show	GitHub Exploit DB Packet Storm

252583	4.3	警告	マイクロソフト	-	Microsoft Forefront UAG 2010 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1896	2011-10-21 15:30	2011-10-11	Show	GitHub Exploit DB Packet Storm

252584	9.3	危険	マイクロソフト	-	Microsoft Forefront UAG 2010 における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-1895	2011-10-21 15:28	2011-10-11	Show	GitHub Exploit DB Packet Storm

252585	9.3	危険	マイクロソフト	-	Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1253	2011-10-21 15:27	2011-10-11	Show	GitHub Exploit DB Packet Storm

252586	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2011	2011-10-21 15:26	2011-10-11	Show	GitHub Exploit DB Packet Storm

252587	9.3	危険	マイクロソフト	-	Microsoft Windows の win32k.sys のバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2003	2011-10-21 15:25	2011-10-11	Show	GitHub Exploit DB Packet Storm

252588	4.7	警告	マイクロソフト	-	Microsoft Windows の win32k.sys におけるサービス運用妨害 (システムハング) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2002	2011-10-21 15:25	2011-10-11	Show	GitHub Exploit DB Packet Storm

252589	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格またはサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1985	2011-10-21 15:24	2011-10-11	Show	GitHub Exploit DB Packet Storm

252590	9.3	危険	マイクロソフト	-	Microsoft Windows Vista および Windows 7 の Windows Media Center における権限昇格の脆弱性	CWE-Other その他	CVE-2011-2009	2011-10-21 15:24	2011-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
302541	-	gehealthcare	optima_mr360_firmware	The HIPAA configuration interface in GE Healthcare Optima MR360 has a password of (1) operator for the root account, (2) adw2.0 for the admin account, and (3) adw2.0 for the sdc account, which has un…	CWE-255 Credentials Management	CVE-2010-5307	2024-11-21 10:23	2015-08-4	Show	GitHub Exploit DB Packet Storm

302542	-	gehealthcare	optima_ct540_firmware optima_ct680_firmware optima_ct520_firmware	GE Healthcare Optima CT680, CT540, CT640, and CT520 has a default password of #bigguy for the root user, which has unspecified impact and attack vectors.	CWE-255 Credentials Management	CVE-2010-5306	2024-11-21 10:23	2015-08-4	Show	GitHub Exploit DB Packet Storm

302543	-	novell	zenworks_configuration_management	Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 before 10.3 allows remote attackers to execute arbitrary cod…	CWE-22 Path Traversal	CVE-2010-5324	2024-11-21 10:23	2015-06-8	Show	GitHub Exploit DB Packet Storm

302544	-	novell	zenworks_configuration_management	Directory traversal vulnerability in UploadServlet in the Remote Management component in Novell ZENworks Configuration Management (ZCM) 10 before 10.3 allows remote attackers to execute arbitrary cod…	CWE-22 Path Traversal	CVE-2010-5323	2024-11-21 10:23	2015-06-8	Show	GitHub Exploit DB Packet Storm

302545	-	ajsquare	zeuscart	Cross-site scripting (XSS) vulnerability in ZeusCart 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to index.php.	CWE-79 Cross-site Scripting	CVE-2010-5322	2024-11-21 10:23	2015-03-11	Show	GitHub Exploit DB Packet Storm

302546	-	memht	memht_portal	Multiple cross-site request forgery (CSRF) vulnerabilities in MemHT Portal 4.0.1 allow remote attackers to hijack the authentication of administrators for requests that (1) modify settings via a conf…	CWE-352 Origin Validation Error	CVE-2010-5320	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

302547	-	kan-studio	kandidat_cms	Multiple cross-site request forgery (CSRF) vulnerabilities in Kandidat CMS 1.4.2 allow remote attackers to hijack the authentication of administrators for requests that (1) modify settings via a vali…	CWE-352 Origin Validation Error	CVE-2010-5319	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

302548	-	basic-cms	sweetrice	The password-reset feature in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to modify the administrator's password by specifying the administrator's e-mail address in the email…	CWE-255 Credentials Management	CVE-2010-5318	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

302549	-	basic-cms	sweetrice	Multiple SQL injection vulnerabilities in index.php in SweetRice CMS before 0.6.7.1 allow remote attackers to execute arbitrary SQL commands via (1) the file_name parameter in an attachment action, (…	CWE-89 SQL Injection	CVE-2010-5317	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm

302550	-	basic-cms	sweetrice	Cross-site scripting (XSS) vulnerability in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to inject arbitrary web script or HTML via a top_height cookie.	CWE-79 Cross-site Scripting	CVE-2010-5316	2024-11-21 10:23	2015-01-3	Show	GitHub Exploit DB Packet Storm