Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252791	-	-	（複数のベンダ）	-	侵入検知システム (IDS) および侵入防止システム (IPS) の機能を回避可能な問題	-	-	2011-01-21 16:30	2010-12-16	Show	GitHub Exploit DB Packet Storm

252792	6.9	警告	Ecava	-	Ecava IntegraXor における権限昇格の脆弱性	CWE-Other その他	CVE-2010-4599	2011-01-21 15:52	2010-12-17	Show	GitHub Exploit DB Packet Storm

252793	5	警告	Ecava	-	Ecava IntegraXor におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4598	2011-01-21 15:38	2011-01-12	Show	GitHub Exploit DB Packet Storm

252794	6.8	警告	Lunascape	-	Lunascape における DLL 読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3927	2011-01-21 11:02	2011-01-21	Show	GitHub Exploit DB Packet Storm

252795	7.8	危険	シスコシステムズ	-	Cisco Linksys WRT54GC におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0352	2011-01-21 11:02	2011-01-21	Show	GitHub Exploit DB Packet Storm

252796	9.3	危険	マイクロソフト	-	Microsoft WMI Administrative Tools の WBEMSingleView.ocx ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4588	2011-01-20 13:58	2010-12-23	Show	GitHub Exploit DB Packet Storm

252797	5.8	警告	Mozilla Foundation オラクル	-	複数の Mozilla 製品の Math.random 関数におけるユーザを追跡される脆弱性	CWE-310 暗号の問題	CVE-2010-3171	2011-01-20 13:51	2010-06-22	Show	GitHub Exploit DB Packet Storm

252798	4.3	警告	Git project レッドハット	-	Git の Gitweb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3906	2011-01-20 13:47	2010-12-14	Show	GitHub Exploit DB Packet Storm

252799	9.3	危険	Google レッドハット	-	Google Chrome の WebM libvpx におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2010-4203	2011-01-20 13:41	2010-11-4	Show	GitHub Exploit DB Packet Storm

252800	10	危険	Ecava	-	Ecava IntegraXor にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4597	2011-01-20 13:33	2010-12-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
282371	-		microsoft	windows_media_player	Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-2671	2024-11-21 11:06	2014-03-31	Show	GitHub Exploit DB Packet Storm

282372	-		postgresql	postgresql	Multiple integer overflows in contrib/hstore/hstore_io.c in PostgreSQL 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have un…	CWE-189 Numeric Errors	CVE-2014-2669	2024-11-21 11:06	2014-03-31	Show	GitHub Exploit DB Packet Storm

282373	-		zohocorp	manageengine_opstor	Cross-site scripting (XSS) vulnerability in Properties.do in ZOHO ManageEngine OpStor before build 8500 allows remote authenticated users to inject arbitrary web script or HTML via the name parameter…	CWE-79 Cross-site Scripting	CVE-2014-2670	2024-11-21 11:06	2014-03-30	Show	GitHub Exploit DB Packet Storm

282374	-		apache	couchdb	Apache CouchDB 1.5.0 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via the count parameter to /_uuids.	CWE-20 Improper Input Validation	CVE-2014-2668	2024-11-21 11:06	2014-03-29	Show	GitHub Exploit DB Packet Storm

282375	-		xen	xen	The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service (CPU consumption) by leveragin…	CWE-20 Improper Input Validation	CVE-2014-2599	2024-11-21 11:06	2014-03-29	Show	GitHub Exploit DB Packet Storm

282376	-		pyyaml opensuse	libyaml leap opensuse	Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function in LibYAML before 0.1.6 allows context-dependent attackers to execute arbitrary code via a long sequence of percent-encoded cha…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-2525	2024-11-21 11:06	2014-03-29	Show	GitHub Exploit DB Packet Storm

282377	-		fedoraproject opensuse cacti debian	fedora opensuse cacti debian_linux	Cross-site scripting (XSS) vulnerability in cdef.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-2326	2024-11-21 11:06	2014-03-28	Show	GitHub Exploit DB Packet Storm

282378	-		openbsd	openssh	The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertific…	CWE-20 Improper Input Validation	CVE-2014-2653	2024-11-21 11:06	2014-03-27	Show	GitHub Exploit DB Packet Storm

282379	-		joshua_peek	rack-ssl	Cross-site scripting (XSS) vulnerability in lib/rack/ssl.rb in the rack-ssl gem before 1.4.0 for Ruby allows remote attackers to inject arbitrary web script or HTML via a URI, which might not be prop…	CWE-79 Cross-site Scripting	CVE-2014-2538	2024-11-21 11:06	2014-03-26	Show	GitHub Exploit DB Packet Storm

282380	6.1	MEDIUM Network	barracudadrive	barracudadrive	Multiple cross-site scripting (XSS) vulnerabilities in BarracudaDrive before 6.7 allow remote attackers to inject arbitrary web script or HTML via the (1) sForumName or (2) sDescription parameter to …	CWE-79 Cross-site Scripting	CVE-2014-2526	2024-11-21 11:06	2014-03-26	Show	GitHub Exploit DB Packet Storm