Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252931	4.3	警告	VMware	-	複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2277	2010-07-14 17:27	2010-03-29	Show	GitHub Exploit DB Packet Storm

252932	6.9	警告	VMware	-	複数の VMware 製品の USB サービスにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1140	2010-07-14 17:27	2010-04-9	Show	GitHub Exploit DB Packet Storm

252933	9.3	危険	シマンテック	-	Symantec Workspace Streaming (旧 Symantec AppStream) に脆弱性	CWE-287 不適切な認証	CVE-2008-4389	2010-07-14 17:26	2010-06-22	Show	GitHub Exploit DB Packet Storm

252934	5.8	警告	アップル	-	Apple iOS の設定アプリケーションにおけるユーザを追跡可能な脆弱性	CWE-DesignError	CVE-2010-1756	2010-07-14 17:26	2010-06-22	Show	GitHub Exploit DB Packet Storm

252935	4.3	警告	アップル	-	Apple iOS の Safari におけるリモートの Web サーバがユーザを追跡可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1755	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

252936	1.9	注意	アップル	-	Apple iOS のパスコードロックにおける任意のデータにアクセスされる脆弱性	CWE-362 競合状態	CVE-2010-1775	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

252937	6.9	警告	アップル	-	Apple iOS のパスコードロックにおけるパスコード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1754	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

252938	6.8	警告	アップル	-	Apple iOS の ImageIO における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1753	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

252939	5	警告	アップル	-	Apple iOS の Application Sandbox におけるロケーション情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1751	2010-07-14 17:24	2010-06-22	Show	GitHub Exploit DB Packet Storm

252940	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1774	2010-07-14 16:44	2010-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291901	-	adobe	shockwave_player	Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-2044	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291902	-	adobe	shockwave_player	Adobe Shockwave Player before 11.6.6.636 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-2…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-2043	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291903	-	kyle_browning	cdn2_video	Cross-site request forgery (CSRF) vulnerability in the CDN2 Video module 6.x for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.	CWE-352 Origin Validation Error	CVE-2012-2155	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291904	-	kyle_browning	cdn2_video	Cross-site scripting (XSS) vulnerability in the CDN2 Video module 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2012-2154	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291905	-	chaos_tool_suite_project	ctools	Cross-site scripting (XSS) vulnerability in the Chaos tool suite (aka CTools) module 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with the post comments permission to inject ar…	CWE-79 Cross-site Scripting	CVE-2012-2082	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291906	-	moshe_weitzman	organic_groups	The Organic Groups (OG) module 6.x-2.x before 6.x-2.3 for Drupal does not properly restrict access, which allows remote attackers to obtain sensitive information such as private group titles via a re…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-2081	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291907	-	node_limit_number_project	node_limitnumber	Cross-site request forgery (CSRF) vulnerability in the Node Limit Number module before 6.x-1.2 for Drupal allows remote attackers to hijack the authentication of users with the administer node limitn…	CWE-352 Origin Validation Error	CVE-2012-2080	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291908	-	rob_loach	sharethis	Cross-site request forgery (CSRF) vulnerability in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of users with administer sharethis permi…	CWE-352 Origin Validation Error	CVE-2012-2077	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291909	-	rob_loach	sharethis	Cross-site scripting (XSS) vulnerability in the administration forms in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with administer sharethis permissions …	CWE-79 Cross-site Scripting	CVE-2012-2076	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm

291910	-	steindom	contact_save	Cross-site scripting (XSS) vulnerability in the Contact Save module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users with the access site-wide contact form permission to inject arb…	CWE-79 Cross-site Scripting	CVE-2012-2075	2024-11-21 10:38	2012-08-15	Show	GitHub Exploit DB Packet Storm