Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252891 7.8 危険 マイクロソフト - Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0022 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
252892 9 危険 マイクロソフト - Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性 CWE-20
CWE-94
CVE-2010-0020 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
252893 6.9 警告 マイクロソフト - Microsoft Windows の Client/Server Run-time Subsystem における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0023 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
252894 4 警告 マイクロソフト - Microsoft Windows の Hyper-V サーバ実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0026 2010-03-3 11:53 2010-02-9 Show GitHub Exploit DB Packet Storm
252895 9.3 危険 日本電気
アップル
富士通
古河電気工業
ヒューレット・パッカード
インターネットイニシアティブ
アラクサラネットワークス
日立		 - IPv6 NDP 実装における Neighbor Discovery メッセージの送信元検証処理に関する脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2476 2010-03-3 11:43 2008-10-3 Show GitHub Exploit DB Packet Storm
252896 9.3 危険 マイクロソフト - Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0034 2010-03-2 11:29 2010-02-9 Show GitHub Exploit DB Packet Storm
252897 9.3 危険 マイクロソフト - Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0033 2010-03-2 11:28 2010-02-9 Show GitHub Exploit DB Packet Storm
252898 9.3 危険 マイクロソフト - Microsoft Office PowerPoint における任意のコードを実行される脆弱性 CWE-94
CWE-Other
CVE-2010-0032 2010-03-2 11:28 2010-02-9 Show GitHub Exploit DB Packet Storm
252899 9.3 危険 マイクロソフト - Microsoft Office PowerPoint における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0031 2010-03-2 11:27 2010-02-9 Show GitHub Exploit DB Packet Storm
252900 9.3 危険 マイクロソフト - Microsoft Office PowerPoint におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0030 2010-03-2 11:27 2010-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290991 - djangoproject django The get_image_dimensions function in the image-handling functionality in Django before 1.3.2 and 1.4.x before 1.4.1 uses a constant chunk size in all attempts to determine dimensions, which allows re… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3444 2024-11-21 10:40 2012-08-1 Show GitHub Exploit DB Packet Storm
290992 - djangoproject django The django.forms.ImageField class in the form system in Django before 1.3.2 and 1.4.x before 1.4.1 completely decompresses image data during image validation, which allows remote attackers to cause a… CWE-20
 Improper Input Validation  		CVE-2012-3443 2024-11-21 10:40 2012-08-1 Show GitHub Exploit DB Packet Storm
290993 - djangoproject django The (1) django.http.HttpResponseRedirect and (2) django.http.HttpResponsePermanentRedirect classes in Django before 1.3.2 and 1.4.x before 1.4.1 do not validate the scheme of a redirect target, which… CWE-79
Cross-site Scripting 		CVE-2012-3442 2024-11-21 10:40 2012-08-1 Show GitHub Exploit DB Packet Storm
290994 - openstack essex
keystone
horizon 		OpenStack Keystone before 2012.1.1, as used in OpenStack Folsom before Folsom-1 and OpenStack Essex, does not properly implement token expiration, which allows remote authenticated users to bypass in… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-3426 2024-11-21 10:40 2012-07-31 Show GitHub Exploit DB Packet Storm
290995 - iconics genesis32
bizviz 		The lockout-recovery feature in the Security Configurator component in ICONICS GENESIS32 9.22 and earlier and BizViz 9.22 and earlier uses an improper encryption algorithm for generation of an authen… CWE-310
Cryptographic Issues 		CVE-2012-3018 2024-11-21 10:40 2012-07-31 Show GitHub Exploit DB Packet Storm
290996 - siemens simatic_s7-400_cpu_firmware
simatic_s7-400_cpu_414-3_pn\/dp
simatic_s7-400_cpu_416-3_pn\/dp
simatic_s7-400_cpu_416f-3_pn\/dp 		Siemens SIMATIC S7-400 PN CPU devices with firmware 5.x allow remote attackers to cause a denial of service (defect-mode transition and service outage) via (1) malformed HTTP traffic or (2) malformed… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-3017 2024-11-21 10:40 2012-07-31 Show GitHub Exploit DB Packet Storm
290997 - siemens simatic_s7-400_cpu_firmware
simatic_s7-400_cpu_412-2_pn
simatic_s7-400_cpu_414-3_pn\/dp
simatic_s7-400_cpu_414f-3_pn\/dp
simatic_s7-400_cpu_416-3_pn\/dp
simatic_s7-400_cpu_416f-3_pn\/dp 		Siemens SIMATIC S7-400 PN CPU devices with firmware 6 before 6.0.3 allow remote attackers to cause a denial of service (defect-mode transition and service outage) via crafted ICMP packets. NVD-CWE-Other
CVE-2012-3016 2024-11-21 10:40 2012-07-31 Show GitHub Exploit DB Packet Storm
290998 - sonicwall scrutinizer SQL injection vulnerability in d4d/statusFilter.php in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.2 allows remote authenticated users to execute arbitrary SQL commands via the q p… CWE-89
SQL Injection 		CVE-2012-2962 2024-11-21 10:40 2012-07-31 Show GitHub Exploit DB Packet Storm
290999 - nlnetlabs nsd query.c in NSD 3.0.x through 3.0.8, 3.1.x through 3.1.1, and 3.2.x before 3.2.12 allows remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via a crafted … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-2978 2024-11-21 10:40 2012-07-27 Show GitHub Exploit DB Packet Storm
291000 - siemens simatic_pcs7
simatic_step_7 		Untrusted search path vulnerability in Siemens SIMATIC STEP7 before 5.5 SP1, as used in SIMATIC PCS7 7.1 SP3 and earlier and other products, allows local users to gain privileges via a Trojan horse D… NVD-CWE-Other
CVE-2012-3015 2024-11-21 10:40 2012-07-26 Show GitHub Exploit DB Packet Storm