Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252981 6.9 警告 CVS
レッドハット		 - CVS の rcs.c 内にある apply_rcs_change 関数における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2010-3846 2010-12-21 15:30 2010-11-5 Show GitHub Exploit DB Packet Storm
252982 10 危険 RealFlex Technologies - RealFlex RealWin HMI サービスにバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4142 2010-12-21 15:25 2010-11-22 Show GitHub Exploit DB Packet Storm
252983 4.3 警告 Webmin Project
オラクル		 - Webmin および Usermin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4568 2010-12-21 15:14 2010-01-5 Show GitHub Exploit DB Packet Storm
252984 6.8 警告 富士通 - Interstage Application Server における許可されていない IP アドレスからのリクエストのアクセスを許可する脆弱性 CWE-noinfo
情報不足 		- 2010-12-21 14:14 2010-11-19 Show GitHub Exploit DB Packet Storm
252985 8.3 危険 日立 - 日立の Groupmax 関連製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		- 2010-12-21 14:06 2010-11-17 Show GitHub Exploit DB Packet Storm
252986 4.3 警告 The PHP Group
アップル
サイバートラスト株式会社
レッドハット		 - PHP の var_export 関数における、重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2531 2010-12-20 16:08 2010-07-22 Show GitHub Exploit DB Packet Storm
252987 4.6 警告 サイバートラスト株式会社
Linux
レッドハット		 - Hypervisor の命令のエミュレーションにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-0435 2010-12-20 16:01 2010-08-19 Show GitHub Exploit DB Packet Storm
252988 5 警告 レッドハット
Pidgin
オラクル		 - Pidgin の MSN プロトコルプラグインの msn_emoticon_msg 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1624 2010-12-20 16:00 2010-05-12 Show GitHub Exploit DB Packet Storm
252989 4.3 警告 IBM
Apache Software Foundation
アップル
サイバートラスト株式会社
富士通
ヒューレット・パッカード
ターボリナックス
日立		 - Apache HTTP Server の 413 エラーメッセージにおける HTTP メソッドを適切に検査しない問題 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6203 2010-12-20 15:38 2007-12-3 Show GitHub Exploit DB Packet Storm
252990 4.3 警告 シマンテック - PGP Desktop にデータインジェクションの脆弱性 CWE-310
暗号の問題 		CVE-2010-3618 2010-12-20 14:44 2010-11-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265861 9.8 CRITICAL
Network 		projectsend projectsend ProjectSend (formerly cFTP) r582 allows SQL injection via manage-files.php with the request parameter status, manage-files.php with the request parameter files, clients.php with the request parameter… CWE-89
SQL Injection 		CVE-2016-10731 2024-11-21 11:44 2018-10-29 Show GitHub Exploit DB Packet Storm
265862 7.8 HIGH
Local 		zmanda
redhat 		amanda
enterprise_linux 		An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. Amstar is an Amanda Application API script. It should not be run by users direct… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-10730 2024-11-21 11:44 2018-10-25 Show GitHub Exploit DB Packet Storm
265863 7.8 HIGH
Local 		zmanda
redhat
debian 		amanda
enterprise_linux
debian_linux 		An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. The "runtar" setuid root binary does not check for additional arguments supplied… CWE-77
Command Injection 		CVE-2016-10729 2024-11-21 11:44 2018-10-25 Show GitHub Exploit DB Packet Storm
265864 5.3 MEDIUM
Network 		suricata-ids suricata An issue was discovered in Suricata before 3.1.2. If an ICMPv4 error packet is received as the first packet on a flow in the to_client direction, it confuses the rule grouping lookup logic. The tocli… CWE-20
 Improper Input Validation  		CVE-2016-10728 2024-11-21 11:44 2018-07-24 Show GitHub Exploit DB Packet Storm
265865 9.8 CRITICAL
Network 		canonical
gnome 		ubuntu_linux
evolution 		camel/providers/imapx/camel-imapx-server.c in the IMAPx component in GNOME evolution-data-server before 3.21.2 proceeds with cleartext data containing a password if the client wishes to use STARTTLS … CWE-200
Information Exposure 		CVE-2016-10727 2024-11-21 11:44 2018-07-20 Show GitHub Exploit DB Packet Storm
265866 7.5 HIGH
Network 		duraspace dspace The XMLUI feature in DSpace before 3.6, 4.x before 4.5, and 5.x before 5.5 allows directory traversal via the themes/ path in an attack with two or more arbitrary characters and a colon before a path… CWE-22
Path Traversal 		CVE-2016-10726 2024-11-21 11:44 2018-07-10 Show GitHub Exploit DB Packet Storm
265867 7.5 HIGH
Network 		bitcoin bitcoin_core
bitcoin-qt
bitcoind 		In Bitcoin Core before v0.13.0, a non-final alert is able to block the special "final alert" (which is supposed to override all other alerts) because operations occur in the wrong order. This behavio… CWE-310
Cryptographic Issues 		CVE-2016-10725 2024-11-21 11:44 2018-07-6 Show GitHub Exploit DB Packet Storm
265868 7.5 HIGH
Network 		bitcoin bitcoin_core
bitcoin-qt
bitcoind 		Bitcoin Core before v0.13.0 allows denial of service (memory exhaustion) triggered by the remote network alert system (deprecated since Q1 2016) if an attacker can sign a message with a certain priva… CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-10724 2024-11-21 11:44 2018-07-6 Show GitHub Exploit DB Packet Storm
265869 8.8 HIGH
Network 		rails_admin_project rails_admin rails_admin ruby gem <v1.1.1 is vulnerable to cross-site request forgery (CSRF) attacks. Non-GET methods were not validating CSRF tokens and, as a result, an attacker could hypothetically gain access… CWE-352
 Origin Validation Error 		CVE-2016-10522 2024-11-21 11:44 2018-07-6 Show GitHub Exploit DB Packet Storm
265870 5.5 MEDIUM
Local 		linux linux_kernel An issue was discovered in the Linux kernel through 4.17.2. Since the page allocator does not yield CPU resources to the owner of the oom_lock mutex, a local unprivileged user can trivially lock up t… CWE-399
 Resource Management Errors 		CVE-2016-10723 2024-11-21 11:44 2018-06-21 Show GitHub Exploit DB Packet Storm