Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252791 5 警告 The PHP Group - PHP の phar 拡張における重要な情報を取得される脆弱性 CWE-134
書式文字列の問題 		CVE-2010-2094 2010-08-18 18:26 2010-05-14 Show GitHub Exploit DB Packet Storm
252792 7.5 危険 The PHP Group - PHP の sqlite_single_query および sqlite_array_query 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1868 2010-08-18 18:26 2010-05-7 Show GitHub Exploit DB Packet Storm
252793 7.5 危険 The PHP Group - PHP の dechunk フィルタにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-1866 2010-08-18 18:26 2010-05-2 Show GitHub Exploit DB Packet Storm
252794 5 警告 The PHP Group - PHP の chunk_split 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1862 2010-08-18 18:25 2010-05-4 Show GitHub Exploit DB Packet Storm
252795 5 警告 The PHP Group - PHP の addcslashes 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1864 2010-08-17 17:37 2010-05-3 Show GitHub Exploit DB Packet Storm
252796 5 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2190 2010-08-17 17:36 2010-05-30 Show GitHub Exploit DB Packet Storm
252797 6.4 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2010-2191 2010-08-17 17:35 2010-05-31 Show GitHub Exploit DB Packet Storm
252798 5 警告 The PHP Group - PHP の Zend Engine における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1914 2010-08-17 17:34 2010-05-8 Show GitHub Exploit DB Packet Storm
252799 6.4 警告 The PHP Group - PHP の sysvshm 拡張における任意のメモリアドレスを書かれる脆弱性 CWE-399
リソース管理の問題 		CVE-2010-1861 2010-08-17 17:33 2010-05-5 Show GitHub Exploit DB Packet Storm
252800 4.3 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-0654 2010-08-16 18:57 2010-02-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
271461 - microsoft windows_server_2008
windows_server_2012 		Active Directory in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 allows remote authenticated users to cause a denial of service (service outage) by creating multiple machi… CWE-17
Code 		CVE-2015-2535 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271462 - microsoft windows_10
windows_server_2012
windows_8.1 		Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows 10 improperly processes ACL settings, which allows local users to bypass intended network-traffic restrictions via a crafted appl… CWE-284
Improper Access Control 		CVE-2015-2534 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271463 - microsoft lync_server Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Lync Server XSS Information Disclosure Vu… CWE-79
Cross-site Scripting 		CVE-2015-2532 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271464 - microsoft lync_server
skype_for_business_server 		Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft Lync Server 2013 and Skype for Business Server 2015 allows remote attackers to inject arbitrary web script or HTML via a cra… CWE-79
Cross-site Scripting 		CVE-2015-2531 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271465 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8
windows_10 		Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 all… CWE-20
 Improper Input Validation  		CVE-2015-2530 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271466 - microsoft windows_server_2012
windows_8.1
windows_rt_8.1
windows_10 		The kernel in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10 allows local users to bypass the ASLR protection mechanism via a crafted application, aka "Kernel ASLR Bypa… CWE-254
 7PK - Security Features 		CVE-2015-2529 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271467 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8
windows_10 		Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 do not properly constrain impersonation levels, which allows local users to gain privileges … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2528 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271468 - microsoft windows_server_2012
windows_rt
windows_8.1
windows_rt_8.1
windows_8
windows_10 		The process-initialization implementation in win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 does n… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2527 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271469 - microsoft .net_framework Microsoft .NET Framework 4.5, 4.5.1, 4.5.2, and 4.6 allows remote attackers to cause a denial of service to an ASP.NET web site via crafted requests, aka "MVC Denial of Service Vulnerability." CWE-17
Code 		CVE-2015-2526 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm
271470 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8
windows_10 		Task Scheduler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allo… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2525 2024-11-21 11:27 2015-09-9 Show GitHub Exploit DB Packet Storm