Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252741 6.8 警告 アップル - Apple Mac OS X の Apple Filing Protocol Server におけるパスワード要求を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-1820 2010-10-8 17:08 2010-09-21 Show GitHub Exploit DB Packet Storm
252742 5 警告 マイクロソフト - Microsoft .NET Framework における View State フォームデータを復号または変更される脆弱性 CWE-310
暗号の問題 		CVE-2010-3332 2010-10-8 17:07 2010-09-17 Show GitHub Exploit DB Packet Storm
252743 2.6 注意 IBM - IBM WebSphere Application Server の Web コンテナにおける重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0777 2010-10-8 17:05 2010-05-8 Show GitHub Exploit DB Packet Storm
252744 5 警告 IBM - IBM WebSphere Application Server の Web コンテナ におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0776 2010-10-8 17:04 2010-05-8 Show GitHub Exploit DB Packet Storm
252745 5 警告 Drupal
サイバートラスト株式会社		 - Drupal の OpenID モジュールにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-3686 2010-10-7 16:40 2010-08-11 Show GitHub Exploit DB Packet Storm
252746 5 警告 Drupal
サイバートラスト株式会社		 - Drupal の OpenID モジュールにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-3685 2010-10-7 16:39 2010-08-11 Show GitHub Exploit DB Packet Storm
252747 5 警告 Drupal
サイバートラスト株式会社		 - Drupal の OpenID モジュールにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-3091 2010-10-7 16:39 2010-08-11 Show GitHub Exploit DB Packet Storm
252748 2.1 注意 Drupal
サイバートラスト株式会社		 - Drupal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3094 2010-10-7 16:39 2010-08-11 Show GitHub Exploit DB Packet Storm
252749 3.5 注意 Drupal
サイバートラスト株式会社		 - Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3093 2010-10-7 16:38 2010-08-11 Show GitHub Exploit DB Packet Storm
252750 5.5 警告 Drupal
サイバートラスト株式会社		 - Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3092 2010-10-7 16:37 2010-08-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
280851 - cybozu garoon The Portlets subsystem in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to bypass intended access restrictions via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-1993 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
280852 - cybozu garoon Cross-site scripting (XSS) vulnerability in the Messages functionality in Cybozu Garoon 3.1.x, 3.5.x, and 3.7.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2014-1992 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
280853 - cybozu garoon The CGI component in Cybozu Garoon 3.1.0 through 3.7 SP3 allows remote attackers to execute arbitrary commands via unspecified vectors. CWE-78
OS Command  		CVE-2014-1987 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
280854 - nextapp file_explorer Directory traversal vulnerability in the NextApp File Explorer application before 2.1.0.3 for Android allows remote attackers to overwrite or create arbitrary files via a crafted filename. CWE-22
Path Traversal 		CVE-2014-1973 2024-11-21 11:05 2014-07-20 Show GitHub Exploit DB Packet Storm
280855 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_7
windows_8.1
windows_rt_8.1
windows_vista
windows_8 		Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote a… CWE-94
Code Injection 		CVE-2014-1824 2024-11-21 11:05 2014-07-9 Show GitHub Exploit DB Packet Storm
280856 - cisco unified_communications_domain_manager
unified_cdm_platform_software 		Cisco Unified Communications Domain Manager (CDM) in Unified CDM Platform Software before 4.4.2 has a hardcoded SSH private key, which makes it easier for remote attackers to obtain access to the sup… CWE-255
Credentials Management 		CVE-2014-2198 2024-11-21 11:05 2014-07-7 Show GitHub Exploit DB Packet Storm
280857 - cisco unified_communications_domain_manager
unified_cdm_application_software 		The Administration GUI in the web framework in Cisco Unified Communications Domain Manager (CDM) in Unified CDM Application Software before 8.1.4 does not properly implement access control, which all… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-2197 2024-11-21 11:05 2014-07-7 Show GitHub Exploit DB Packet Storm
280858 - intercom web_kyukincho Cross-site scripting (XSS) vulnerability in Intercom Web Kyukincho 3.x before 3.0.030 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2014-2006 2024-11-21 11:05 2014-06-28 Show GitHub Exploit DB Packet Storm
280859 6.8 MEDIUM
Physics 		sophos enterprise_console Sophos Disk Encryption (SDE) 5.x in Sophos Enterprise Console (SEC) 5.x before 5.2.2 does not enforce intended authentication requirements for a resume action from sleep mode, which allows physically… CWE-287
Improper Authentication 		CVE-2014-2005 2024-11-21 11:05 2014-06-25 Show GitHub Exploit DB Packet Storm
280860 - jreast jr_east_japan The East Japan Railway Company JR East Japan application before 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to obtain sensitive inf… CWE-310
Cryptographic Issues 		CVE-2014-2001 2024-11-21 11:05 2014-06-19 Show GitHub Exploit DB Packet Storm