Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252731 7.8 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2834 2010-10-13 16:59 2010-09-22 Show GitHub Exploit DB Packet Storm
252732 6.4 警告 ジャストシステム
日立ソフトウェアエンジニアリング
富士通
ユミルリンク		 - Internet Explorer コンポーネントを使用するアプリケーションにおけるセキュリティゾーンの扱いに関する脆弱性 - - 2010-10-12 16:44 2005-07-12 Show GitHub Exploit DB Packet Storm
252733 7.8 危険 シスコシステムズ - Cisco IOS の H.225.0 実装の NAT におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2833 2010-10-12 16:37 2010-09-22 Show GitHub Exploit DB Packet Storm
252734 7.8 危険 シスコシステムズ - Cisco IOS の H.323 実装の NAT におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2832 2010-10-12 16:36 2010-09-22 Show GitHub Exploit DB Packet Storm
252735 7.8 危険 シスコシステムズ - Cisco IOS の SIP 実装の NAT におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2831 2010-10-12 16:36 2010-09-22 Show GitHub Exploit DB Packet Storm
252736 7.1 危険 シスコシステムズ - Cisco IOS の IGMPv3 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-2830 2010-10-12 16:35 2010-09-22 Show GitHub Exploit DB Packet Storm
252737 7.8 危険 シスコシステムズ - Cisco IOS の H.323 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2829 2010-10-12 16:35 2010-09-22 Show GitHub Exploit DB Packet Storm
252738 7.8 危険 シスコシステムズ - Cisco IOS の H.323 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2828 2010-10-12 16:35 2010-09-22 Show GitHub Exploit DB Packet Storm
252739 6.8 警告 竹村喜人(たけちん) - Lhasa における実行ファイル読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-2369 2010-10-12 11:03 2010-10-12 Show GitHub Exploit DB Packet Storm
252740 6.8 警告 Schezo - Lhaplus における DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-2368 2010-10-12 11:02 2010-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266691 8.8 HIGH
Network 		omniauth omniauth The request phase of the OmniAuth Ruby gem (1.9.1 and earlier) is vulnerable to Cross-Site Request Forgery when used as part of the Ruby on Rails framework, allowing accounts to be connected without … CWE-352
 Origin Validation Error 		CVE-2015-9284 2024-11-21 11:40 2019-04-27 Show GitHub Exploit DB Packet Storm
266692 6.1 MEDIUM
Network 		grafana piechart-panel The Pie Chart Panel plugin through 2019-01-02 for Grafana is vulnerable to XSS via legend data or tooltip data. When a chart is included in a Grafana dashboard, this vulnerability could allow an atta… CWE-79
Cross-site Scripting 		CVE-2015-9282 2024-11-21 11:40 2019-02-7 Show GitHub Exploit DB Packet Storm
266693 6.1 MEDIUM
Network 		sas web_infrastructure_platform Logon Manager in SAS Web Infrastructure Platform before 9.4M3 allows reflected XSS on the Timeout page. CWE-79
Cross-site Scripting 		CVE-2015-9281 2024-11-21 11:40 2019-01-17 Show GitHub Exploit DB Packet Storm
266694 10.0 CRITICAL
Network 		mailenable mailenable MailEnable before 8.60 allows XXE via an XML document in the request.aspx Options parameter. CWE-611
XXE 		CVE-2015-9280 2024-11-21 11:40 2019-01-17 Show GitHub Exploit DB Packet Storm
266695 6.1 MEDIUM
Network 		mailenable mailenable MailEnable before 8.60 allows Stored XSS via malformed use of "<img/src" with no ">" character in the body of an e-mail message. CWE-79
Cross-site Scripting 		CVE-2015-9279 2024-11-21 11:40 2019-01-17 Show GitHub Exploit DB Packet Storm
266696 9.8 CRITICAL
Network 		mailenable mailenable MailEnable before 8.60 allows Privilege Escalation because admin accounts could be created as a consequence of %0A mishandling in AUTH.TAB after a password-change request. CWE-255
Credentials Management 		CVE-2015-9278 2024-11-21 11:40 2019-01-17 Show GitHub Exploit DB Packet Storm
266697 9.1 CRITICAL
Network 		mailenable mailenable MailEnable before 8.60 allows Directory Traversal for reading the messages of other users, uploading files, and deleting files because "/../" and "/.. /" are mishandled. CWE-22
Path Traversal 		CVE-2015-9277 2024-11-21 11:40 2019-01-17 Show GitHub Exploit DB Packet Storm
266698 6.1 MEDIUM
Network 		smartertools smartermail SmarterTools SmarterMail before 13.3.5535 was vulnerable to stored XSS by bypassing the anti-XSS mechanisms. It was possible to run JavaScript code when a victim user opens or replies to the attacker… CWE-79
Cross-site Scripting 		CVE-2015-9276 2024-11-21 11:40 2019-01-17 Show GitHub Exploit DB Packet Storm
266699 5.3 MEDIUM
Network 		arc_project arc ARC 5.21q allows directory traversal via a full pathname in an archive file. CWE-22
Path Traversal 		CVE-2015-9275 2024-11-21 11:40 2019-01-8 Show GitHub Exploit DB Packet Storm
266700 6.5 MEDIUM
Network 		harfbuzz_project harfbuzz HarfBuzz before 1.0.4 allows remote attackers to cause a denial of service (invalid read of two bytes and application crash) because of GPOS and GSUB table mishandling, related to hb-ot-layout-gpos-t… CWE-125
Out-of-bounds Read 		CVE-2015-9274 2024-11-21 11:40 2018-11-15 Show GitHub Exploit DB Packet Storm