Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252621	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3215	2010-10-26 15:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

252622	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2750	2010-10-26 15:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

252623	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2748	2010-10-26 15:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

252624	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2747	2010-10-26 15:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

252625	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2741	2010-10-26 15:31	2010-10-12	Show	GitHub Exploit DB Packet Storm

252626	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2740	2010-10-26 15:29	2010-10-12	Show	GitHub Exploit DB Packet Storm

252627	7.2	危険	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2744	2010-10-26 15:28	2010-10-12	Show	GitHub Exploit DB Packet Storm

252628	4.9	警告	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2549	2010-10-26 15:28	2010-10-12	Show	GitHub Exploit DB Packet Storm

252629	6.5	警告	IBM	-	Linux 上で稼働する IBM DB2 におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0462	2010-10-26 15:24	2010-01-28	Show	GitHub Exploit DB Packet Storm

252630	9.3	危険	マイクロソフト	-	64-bit プラットフォーム上で稼働している Microsoft .NET Framework の JIT コンパイラにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3228	2010-10-25 16:37	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256081	9.8	CRITICAL Network	cmsmadesimple	cms_made_simple	CMS Made Simple version 2.1.6 and 2.2 are vulnerable to Smarty templating injection in some core modules, resulting in unauthenticated PHP code execution.	CWE-74 Injection	CVE-2017-1000453	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256082	7.5	HIGH Network	samlify_project	samlify	An XML Signature Wrapping vulnerability exists in Samlify 2.2.0 and earlier, and in predecessor Express-saml2 which could allow attackers to impersonate arbitrary users.	CWE-91 Blind XPath Injection	CVE-2017-1000452	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256083	7.8	HIGH Local	fs-git_project	fs-git	fs-git is a file system like api for git repository. The fs-git version 1.0.1 module relies on child_process.exec, however, the buildCommand method used to construct exec strings does not properly sa…	NVD-CWE-noinfo	CVE-2017-1000451	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256084	8.8	HIGH Network	opencv debian	opencv debian_linux	In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote co…	CWE-190 Integer Overflow or Wraparound	CVE-2017-1000450	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256085	7.5	HIGH Network	structured-data	structured_data_linter	Structured Data Linter versions 2.4.1 and older are vulnerable to a directory traversal attack in the URL input field resulting in the possibility of disclosing information about the remote host.	CWE-22 Path Traversal	CVE-2017-1000448	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256086	5.9	MEDIUM Network	linaro	op-tee	Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable a timing attack in the Montgomery parts of libMPA in OP-TEE resulting in a compromised private RSA key.	CWE-200 Information Exposure	CVE-2017-1000413	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256087	7.5	HIGH Network	linaro	op-tee	Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key.	CWE-200 Information Exposure	CVE-2017-1000412	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256088	6.5	MEDIUM Network	imagemagick debian canonical	imagemagick debian_linux ubuntu_linux	ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service	CWE-476 NULL Pointer Dereference	CVE-2017-1000445	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256089	9.8	CRITICAL Network	openhacker_project	openhacker	Eleix Openhacker version 0.1.47 is vulnerable to an SQL injection in the account registration and login component resulting in information disclosure and remote code execution	CWE-89 SQL Injection	CVE-2017-1000444	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

256090	6.1	MEDIUM Network	openhacker_project	openhacker	Eleix Openhacker version 0.1.47 is vulnerable to a XSS vulnerability in the bank transactions component resulting in arbitrary code execution in the browser.	CWE-79 Cross-site Scripting	CVE-2017-1000443	2024-11-21 12:04	2018-01-2	Show	GitHub Exploit DB Packet Storm