Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252981	6.9	警告	CVS レッドハット	-	CVS の rcs.c 内にある apply_rcs_change 関数における権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2010-3846	2010-12-21 15:30	2010-11-5	Show	GitHub Exploit DB Packet Storm

252982	10	危険	RealFlex Technologies	-	RealFlex RealWin HMI サービスにバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-4142	2010-12-21 15:25	2010-11-22	Show	GitHub Exploit DB Packet Storm

252983	4.3	警告	Webmin Project オラクル	-	Webmin および Usermin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4568	2010-12-21 15:14	2010-01-5	Show	GitHub Exploit DB Packet Storm

252984	6.8	警告	富士通	-	Interstage Application Server における許可されていない IP アドレスからのリクエストのアクセスを許可する脆弱性	CWE-noinfo 情報不足	-	2010-12-21 14:14	2010-11-19	Show	GitHub Exploit DB Packet Storm

252985	8.3	危険	日立	-	日立の Groupmax 関連製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	-	2010-12-21 14:06	2010-11-17	Show	GitHub Exploit DB Packet Storm

252986	4.3	警告	The PHP Group アップルサイバートラスト株式会社レッドハット	-	PHP の var_export 関数における、重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2531	2010-12-20 16:08	2010-07-22	Show	GitHub Exploit DB Packet Storm

252987	4.6	警告	サイバートラスト株式会社 Linux レッドハット	-	Hypervisor の命令のエミュレーションにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0435	2010-12-20 16:01	2010-08-19	Show	GitHub Exploit DB Packet Storm

252988	5	警告	レッドハット Pidgin オラクル	-	Pidgin の MSN プロトコルプラグインの msn_emoticon_msg 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1624	2010-12-20 16:00	2010-05-12	Show	GitHub Exploit DB Packet Storm

252989	4.3	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社富士通ヒューレット・パッカードターボリナックス日立	-	Apache HTTP Server の 413 エラーメッセージにおける HTTP メソッドを適切に検査しない問題	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6203	2010-12-20 15:38	2007-12-3	Show	GitHub Exploit DB Packet Storm

252990	4.3	警告	シマンテック	-	PGP Desktop にデータインジェクションの脆弱性	CWE-310 暗号の問題	CVE-2010-3618	2010-12-20 14:44	2010-11-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247561	6.1	MEDIUM Network	anyvar_project	anyvar	Persistent XSS Vulnerability in Wordpress plugin AnyVar v0.1.1.	CWE-79 Cross-site Scripting	CVE-2017-6103	2024-11-21 12:29	2017-03-3	Show	GitHub Exploit DB Packet Storm

247562	6.1	MEDIUM Network	rockhoist_badges_project	rockhoist_badges_plugin	Persistent XSS in wordpress plugin rockhoist-badges v1.2.2.	CWE-79 Cross-site Scripting	CVE-2017-6102	2024-11-21 12:29	2017-03-3	Show	GitHub Exploit DB Packet Storm

247563	8.6	HIGH Network	openidc	mod_auth_openidc	The "OpenID Connect Relying Party and OAuth 2.0 Resource Server" (aka mod_auth_openidc) module before 2.1.6 for the Apache HTTP Server does not skip OIDC_CLAIM_ and OIDCAuthNHeader headers in an "Aut…	CWE-287 Improper Authentication	CVE-2017-6413	2024-11-21 12:29	2017-03-2	Show	GitHub Exploit DB Packet Storm

247564	5.5	MEDIUM Local	kde	kdelibs kio	kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL function with a full https URL (potentially including Basic Authentication credentials, a query string,…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2017-6410	2024-11-21 12:29	2017-03-2	Show	GitHub Exploit DB Packet Storm

247565	9.8	CRITICAL Network	veritas	netbackup_appliance netbackup	An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Unauthenticated CORBA interfaces permit inappropriate access.	CWE-306 Missing Authentication for Critical Function	CVE-2017-6409	2024-11-21 12:29	2017-03-2	Show	GitHub Exploit DB Packet Storm

247566	7.0	HIGH Local	veritas	netbackup_appliance netbackup	An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. A local-privilege-escalation race condition in pbx_exchange can occur when a local user connects …	CWE-362 Race Condition	CVE-2017-6408	2024-11-21 12:29	2017-03-2	Show	GitHub Exploit DB Packet Storm

247567	8.8	HIGH Local	veritas	netbackup_appliance netbackup	An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Privileged remote command execution on NetBackup Server and Client (on the server or a connected client…	NVD-CWE-noinfo	CVE-2017-6407	2024-11-21 12:29	2017-03-2	Show	GitHub Exploit DB Packet Storm

247568	8.8	HIGH Local	veritas	netbackup_appliance netbackup access	An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Arbitrary privileged command execution, using whitelist directory escape with "../" substrings, can occ…	NVD-CWE-noinfo	CVE-2017-6406	2024-11-21 12:29	2017-03-2	Show	GitHub Exploit DB Packet Storm

247569	7.5	HIGH Network	veritas	netbackup_appliance netbackup	An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Hostname-based security is open to DNS spoofing.	CWE-290 Authentication Bypass by Spoofing	CVE-2017-6405	2024-11-21 12:29	2017-03-2	Show	GitHub Exploit DB Packet Storm

247570	5.5	MEDIUM Local	veritas	netbackup netbackup_appliance	An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There are world-writable log files, allowing destruction or spoofing of log data.	CWE-276 Incorrect Default Permissions	CVE-2017-6404	2024-11-21 12:29	2017-03-2	Show	GitHub Exploit DB Packet Storm