Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 12:10 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252621 9.3 危険 マイクロソフト - Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2748 2010-10-26 15:33 2010-10-12 Show GitHub Exploit DB Packet Storm
252622 9.3 危険 マイクロソフト - Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2747 2010-10-26 15:32 2010-10-12 Show GitHub Exploit DB Packet Storm
252623 7.2 危険 マイクロソフト - 複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2741 2010-10-26 15:31 2010-10-12 Show GitHub Exploit DB Packet Storm
252624 7.2 危険 マイクロソフト - 複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2740 2010-10-26 15:29 2010-10-12 Show GitHub Exploit DB Packet Storm
252625 7.2 危険 マイクロソフト - 複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2744 2010-10-26 15:28 2010-10-12 Show GitHub Exploit DB Packet Storm
252626 4.9 警告 マイクロソフト - 複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2549 2010-10-26 15:28 2010-10-12 Show GitHub Exploit DB Packet Storm
252627 6.5 警告 IBM - Linux 上で稼働する IBM DB2 におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0462 2010-10-26 15:24 2010-01-28 Show GitHub Exploit DB Packet Storm
252628 9.3 危険 マイクロソフト - 64-bit プラットフォーム上で稼働している Microsoft .NET Framework の JIT コンパイラにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3228 2010-10-25 16:37 2010-10-12 Show GitHub Exploit DB Packet Storm
252629 9.3 危険 マイクロソフト - 複数の Microsoft 製品の Embedded OpenType Font Engine における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1883 2010-10-25 16:37 2010-10-12 Show GitHub Exploit DB Packet Storm
252630 7.6 危険 マイクロソフト - 複数の Microsoft 製品の Media Player Network Sharing Service における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3225 2010-10-25 16:36 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284121 - ibm spss_analytical_decision_management IBM SPSS Analytical Decision Management 6.1 before IF1, 6.2 before IF1, and 7.0 before FP1 IF6 might allow remote attackers to execute arbitrary code by deploying and accessing a service. CWE-94
Code Injection 		CVE-2013-5369 2024-11-21 10:57 2013-09-17 Show GitHub Exploit DB Packet Storm
284122 - moodle moodle badges/external.php in Moodle 2.5.x before 2.5.2 does not properly handle an object obtained by unserializing a description of an external badge, which allows remote attackers to conduct PHP object i… CWE-94
Code Injection 		CVE-2013-5674 2024-11-21 10:57 2013-09-16 Show GitHub Exploit DB Packet Storm
284123 - cisco nx-os Open Network Environment Platform (ONEP) in Cisco NX-OS allows remote authenticated users to cause a denial of service (network-element reload) via a crafted packet, aka Bug ID CSCui51551. CWE-20
 Improper Input Validation  		CVE-2013-5496 2024-11-21 10:57 2013-09-16 Show GitHub Exploit DB Packet Storm
284124 - cisco unified_meetingplace
unified_meetingplace_web_conferencing 		Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified MeetingPlace Solution, as used in Unified MeetingPlace Web Conferencing and Unified MeetingPlace, allows remote a… CWE-352
 Origin Validation Error 		CVE-2013-5494 2024-11-21 10:57 2013-09-16 Show GitHub Exploit DB Packet Storm
284125 - cisco unified_meetingplace Cross-site scripting (XSS) vulnerability in the web framework in the Application Server in Cisco Unified MeetingPlace allows remote attackers to inject arbitrary web script or HTML via an unspecified… CWE-79
Cross-site Scripting 		CVE-2013-5495 2024-11-21 10:57 2013-09-16 Show GitHub Exploit DB Packet Storm
284126 - juniper ive_os Multiple cross-site scripting (XSS) vulnerabilities in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS 7.1 before 7.1r15, 7.2 before 7.2r11, 7.3 before 7.3r6, and 7.4 before 7.4r3… CWE-79
Cross-site Scripting 		CVE-2013-5649 2024-11-21 10:57 2013-09-13 Show GitHub Exploit DB Packet Storm
284127 - cisco virtualization_experience_client_6000_series_firmware
virtualization_experience_client_6000 		The diagnostic module in the firmware on Cisco Virtualization Experience Client 6000 devices allows local users to bypass intended access restrictions and execute arbitrary commands via unspecified v… CWE-20
 Improper Input Validation  		CVE-2013-5493 2024-11-21 10:57 2013-09-13 Show GitHub Exploit DB Packet Storm
284128 - cisco socialminer administration.jsp in Cisco SocialMiner allows remote attackers to obtain sensitive information by sniffing the network for HTTP client-server traffic, aka Bug ID CSCuh76780. CWE-310
Cryptographic Issues 		CVE-2013-5492 2024-11-21 10:57 2013-09-13 Show GitHub Exploit DB Packet Storm
284129 - cisco socialminer The gadget implementation in Cisco SocialMiner does not properly restrict the content of GET requests, which allows remote attackers to obtain sensitive information by reading (1) web-server access l… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5489 2024-11-21 10:57 2013-09-13 Show GitHub Exploit DB Packet Storm
284130 - cisco prime_lan_management_solution Cisco Prime LAN Management Solution (LMS) does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks v… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-5482 2024-11-21 10:57 2013-09-13 Show GitHub Exploit DB Packet Storm