Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 2:21 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252921	7.5	危険	レッドハット	-	Red Hat Enterprise MRG の Management Console における任意のジョブを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4179	2011-01-4 16:28	2010-11-30	Show	GitHub Exploit DB Packet Storm

252922	7.8	危険	シスコシステムズ	-	複数の CIsco 製品上で稼働する remote-access IPSec VPN の実装における有効なグループ名を列挙される脆弱性	CWE-399 リソース管理の問題	CVE-2010-4354	2011-01-4 16:18	2010-09-22	Show	GitHub Exploit DB Packet Storm

252923	4	警告	Pidgin オラクル	-	Pidgin の libpurple 内にある oscar プロトコルプラグインの clientautoresp 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2528	2011-01-4 16:14	2010-07-30	Show	GitHub Exploit DB Packet Storm

252924	7.2	危険	VMware	-	複数の VMware 製品の VMware-Tools アップデート機能における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-4297	2010-12-27 15:40	2010-12-2	Show	GitHub Exploit DB Packet Storm

252925	7.2	危険	VMware	-	複数の VMware 製品の vmware-mount における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4296	2010-12-27 15:38	2010-12-2	Show	GitHub Exploit DB Packet Storm

252926	6.9	警告	VMware	-	複数の VMware 製品の vmware-mount における権限昇格の脆弱性	CWE-362 競合状態	CVE-2010-4295	2010-12-27 15:36	2010-12-2	Show	GitHub Exploit DB Packet Storm

252927	9.3	危険	VMware	-	複数の VMware 製品の VMnc メディアコーデック内にあるフレーム復元機能における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4294	2010-12-27 15:33	2010-12-2	Show	GitHub Exploit DB Packet Storm

252928	2.1	注意	アップル	-	Windows 上で稼働する Apple QuickTime における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0530	2010-12-27 15:07	2010-12-9	Show	GitHub Exploit DB Packet Storm

252929	9.3	危険	アップル	-	Windows 上で稼働する Apple QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1508	2010-12-27 15:06	2010-12-9	Show	GitHub Exploit DB Packet Storm

252930	9.3	危険	アップル	-	Apple QuickTime における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3800	2010-12-27 14:59	2010-12-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253281	5.4	MEDIUM Network	paessler	prtg_network_monitor	PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored Cross-Site Scripting on all group names created, related to incorrect error handling for an HTML encoded script.	CWE-79 Cross-site Scripting	CVE-2017-15360	2024-11-21 12:14	2017-10-16	Show	GitHub Exploit DB Packet Storm

253282	5.3	MEDIUM Network	ewbf	cuda_zcash_miner	The miner statistics HTTP API in EWBF Cuda Zcash Miner Version 0.3.4b hangs on incoming TCP connections until some sort of request is made (such as "GET / HTTP/1.1"), which allows for a Denial of Ser…	NVD-CWE-noinfo	CVE-2017-15300	2024-11-21 12:14	2017-10-15	Show	GitHub Exploit DB Packet Storm

253283	6.1	MEDIUM Network	nexusphp_project	nexusphp	XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php.	CWE-79 Cross-site Scripting	CVE-2017-15305	2024-11-21 12:14	2017-10-15	Show	GitHub Exploit DB Packet Storm

253284	9.8	CRITICAL Network	airtame	hdmi_dongle_firmware	/bin/login.php in the Web Panel on the Airtame HDMI dongle with firmware before 3.0 allows an attacker to set his own session id via a "Cookie: PHPSESSID=" header. This can be used to achieve persist…	CWE-384 Session Fixation	CVE-2017-15304	2024-11-21 12:14	2017-10-15	Show	GitHub Exploit DB Packet Storm

253285	5.5	MEDIUM Local	linux	linux_kernel	The KEYS subsystem in the Linux kernel through 4.13.7 mishandles use of add_key for a key that already exists but is uninstantiated, which allows local users to cause a denial of service (NULL pointe…	CWE-476 NULL Pointer Dereference	CVE-2017-15299	2024-11-21 12:14	2017-10-15	Show	GitHub Exploit DB Packet Storm

253286	5.5	MEDIUM Local	git-scm canonical	git ubuntu_linux	Git through 2.14.2 mishandles layers of tree objects, which allows remote attackers to cause a denial of service (memory consumption) via a crafted repository, aka a Git bomb. This can also have an i…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-15298	2024-11-21 12:14	2017-10-15	Show	GitHub Exploit DB Packet Storm

253287	5.9	MEDIUM Network	infineon	trusted_platform_firmware rsa_library	The Infineon RSA library 1.02.013 in Infineon Trusted Platform Module (TPM) firmware, such as versions before 0000000000000422 - 4.34, before 000000000000062b - 6.43, and before 0000000000008521 - 13…	NVD-CWE-noinfo	CVE-2017-15361	2024-11-21 12:14	2017-10-17	Show	GitHub Exploit DB Packet Storm

253288	6.1	MEDIUM Network	wpjobboard	wpjobboard	Multiple client-side cross site scripting vulnerabilities have been discovered in the WpJobBoard v4.5.1 web-application for WordPress. The vulnerabilities are located in the `query` and `id` paramete…	CWE-79 Cross-site Scripting	CVE-2017-15375	2024-11-21 12:14	2017-10-16	Show	GitHub Exploit DB Packet Storm

253289	6.1	MEDIUM Network	shopware	shopware	Shopware v5.2.5 - v5.3 is vulnerable to cross site scripting in the customer and order section of the content management system backend modules. Remote attackers are able to inject malicious script c…	CWE-79 Cross-site Scripting	CVE-2017-15374	2024-11-21 12:14	2017-10-16	Show	GitHub Exploit DB Packet Storm

253290	7.8	HIGH Local	cpuid	cpu-z	In CPUID CPU-Z through 1.81, there are improper access rights to a kernel-mode driver (e.g., cpuz143_x64.sys for version 1.43) that can result in information disclosure or elevation of privileges, be…	NVD-CWE-noinfo	CVE-2017-15302	2024-11-21 12:14	2017-10-16	Show	GitHub Exploit DB Packet Storm