Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 29, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252951	5	警告	アップルサイバートラスト株式会社 VMware サン・マイクロシステムズレッドハット	-	Sun Java SE および OpenJDK の Java Runtime Environment (JRE) におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3728	2010-02-23 11:51	2009-11-9	Show	GitHub Exploit DB Packet Storm

252952	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0248	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

252953	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0244	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

252954	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer の URL 検証における任意のローカルプログラムを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0027	2010-02-22 12:15	2010-01-21	Show	GitHub Exploit DB Packet Storm

252955	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0247	2010-02-22 12:14	2010-01-21	Show	GitHub Exploit DB Packet Storm

252956	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0246	2010-02-22 12:14	2010-01-21	Show	GitHub Exploit DB Packet Storm

252957	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0245	2010-02-22 12:13	2010-01-21	Show	GitHub Exploit DB Packet Storm

252958	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性	CWE-DesignError	CVE-2009-4074	2010-02-22 12:13	2009-11-25	Show	GitHub Exploit DB Packet Storm

252959	6.6	警告	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0232	2010-02-22 12:12	2010-01-20	Show	GitHub Exploit DB Packet Storm

252960	10	危険	Rockwell Automation	-	Rockwell Automation Allen-Bradley MicroLogix PLC に複数の脆弱性	CWE-noinfo 情報不足	CVE-2009-3739	2010-02-19 14:22	2010-01-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294111	-	parallels	parallels_plesk_panel	The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by …	CWE-200 Information Exposure	CVE-2011-4849	2024-11-21 10:33	2011-12-16	Show	GitHub Exploit DB Packet Storm

294112	-	parallels	parallels_plesk_panel	The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 includes a submitted password within an HTTP response body, which allows remote attackers to obtain sensitive information by sniffin…	CWE-200 Information Exposure	CVE-2011-4848	2024-11-21 10:33	2011-12-16	Show	GitHub Exploit DB Packet Storm

294113	-	parallels	parallels_plesk_panel	SQL injection vulnerability in the Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 allows remote attackers to execute arbitrary SQL commands via a certificateslist cookie to notificati…	CWE-89 SQL Injection	CVE-2011-4847	2024-11-21 10:33	2011-12-16	Show	GitHub Exploit DB Packet Storm

294114	-	homeseer	homeseer_hs2	Cross-site request forgery (CSRF) vulnerability in /ctrl in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to hijack the authentication of admins for requests that execute arbitra…	CWE-352 Origin Validation Error	CVE-2011-4837	2024-11-21 10:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

294115	-	homeseer	homeseer_hs2	Cross-site scripting (XSS) vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to inject arbitrary web script or HTML via a request for a crafted URI.	CWE-79 Cross-site Scripting	CVE-2011-4836	2024-11-21 10:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

294116	-	homeseer	homeseer_hs2	Directory traversal vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to access arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2011-4835	2024-11-21 10:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

294117	-	hp	application_lifestyle_management	The GetInstalledPackages function in the configuration tool in HP Application Lifestyle Management (ALM) 11 on AIX, HP-UX, and Solaris allows local users to gain privileges via (1) a Trojan horse /tm…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-4834	2024-11-21 10:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

294118	-	sugarcrm	sugarcrm	Multiple SQL injection vulnerabilities in the Leads module in SugarCRM 6.1 before 6.1.7, 6.2 before 6.2.4, 6.3 before 6.3.0RC3, and 6.4 before 6.4.0beta1 allow remote attackers to execute arbitrary S…	CWE-89 SQL Injection	CVE-2011-4833	2024-11-21 10:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

294119	-	caupo	cauposhop_pro cauposhop_classic	Directory traversal vulnerability in CaupoShop Pro 2.x, CaupoShop Classic 3.01, and CaupoShop Pro 3.70 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the template p…	CWE-22 Path Traversal	CVE-2011-4832	2024-11-21 10:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

294120	-	david_azoulay	web_file_browser	Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f (encoded dot dot) in the file parameter in a d…	CWE-22 Path Traversal	CVE-2011-4831	2024-11-21 10:33	2011-12-15	Show	GitHub Exploit DB Packet Storm