Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253001 4.3 警告 オラクル - Oracle Application Server の J2EE コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0070 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
253002 5 警告 オラクル - Oracle Application Server の J2EE コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0067 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
253003 5 警告 オラクル - Oracle Application Server の Access Manager Identity Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0066 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
253004 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1385 2010-02-15 11:03 2009-06-4 Show GitHub Exploit DB Packet Storm
253005 4.6 警告 サイバートラスト株式会社
Todd C. Miller		 - sudo の Perl スクリプト実行時における権限昇格の脆弱性 - CVE-2005-4158 2010-02-15 11:03 2005-11-8 Show GitHub Exploit DB Packet Storm
253006 1 注意 オラクル - Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3412 2010-02-12 12:22 2010-01-12 Show GitHub Exploit DB Packet Storm
253007 3.2 注意 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3413 2010-02-12 12:22 2010-01-12 Show GitHub Exploit DB Packet Storm
253008 3.6 注意 オラクル - Oracle Database の RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3410 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
253009 4 警告 オラクル - Oracle Database の Logical Standby コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1996 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
253010 4.9 警告 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3414 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288141 7.2 HIGH
Network 		dlink dsr-250n_firmware D-Link DSR-250N devices before 1.08B31 allow remote authenticated users to obtain "persistent root access" via the BusyBox CLI, as demonstrated by overwriting the super user password. CWE-862
 Missing Authorization 		CVE-2012-6614 2024-11-21 10:46 2020-02-20 Show GitHub Exploit DB Packet Storm
288142 6.3 MEDIUM
Network 		socialengine socialengine Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) Forum, (2) Event, and (3) Classifieds plugins in SocialEngine before 4.2.4. CWE-352
 Origin Validation Error 		CVE-2012-6721 2024-11-21 10:46 2020-02-12 Show GitHub Exploit DB Packet Storm
288143 6.1 MEDIUM
Network 		socialengine socialengine Multiple cross-site scripting (XSS) vulnerabilities in SocialEngine before 4.2.4 allow remote attackers to inject arbitrary web script or HTML via the (1) title parameter to music/create, (2) locatio… CWE-79
Cross-site Scripting 		CVE-2012-6720 2024-11-21 10:46 2020-02-12 Show GitHub Exploit DB Packet Storm
288144 9.8 CRITICAL
Network 		polycom hdx_system_software An issue was discovered in Polycom Web Management Interface G3/HDX 8000 HD with Durango 2.6.0 4740 software and embedded Polycom Linux Development Platform 2.14.g3. It has a blank administrative pass… CWE-798
 Use of Hard-coded Credentials 		CVE-2012-6611 2024-11-21 10:46 2020-02-11 Show GitHub Exploit DB Packet Storm
288145 5.4 MEDIUM
Network 		cpanel whm
cpanel 		The clientconf.html and detailbw.html pages in x3 in cPanel & WHM 11.34.0 (build 8) have a XSS vulnerability. CWE-79
Cross-site Scripting 		CVE-2012-6449 2024-11-21 10:46 2020-02-11 Show GitHub Exploit DB Packet Storm
288146 6.1 MEDIUM
Network 		vbseo vbseo vBSeo before 3.6.0PL2 allows XSS via the member.php u parameter. CWE-79
Cross-site Scripting 		CVE-2012-6666 2024-11-21 10:46 2020-02-10 Show GitHub Exploit DB Packet Storm
288147 6.5 MEDIUM
Network 		netgear wgr614v9_firmware
wgr614v7_firmware 		An Information Disclosure vulnerability exists in the my config file in NEtGEAR WGR614 v7 and v9, which could let a malicious user recover all previously used passwords on the device, for both the co… CWE-200
Information Exposure 		CVE-2012-6341 2024-11-21 10:46 2020-02-7 Show GitHub Exploit DB Packet Storm
288148 4.6 MEDIUM
Physics 		netgear wgr614v9_firmware
wgr614v7_firmware 		An Authentication vulnerability exists in NETGEAR WGR614 v7 and v9 due to a hardcoded credential used for serial programming, a related issue to CVE-2006-1002. CWE-287
Improper Authentication 		CVE-2012-6340 2024-11-21 10:46 2020-02-7 Show GitHub Exploit DB Packet Storm
288149 5.4 MEDIUM
Network 		havalite havalite Havalite CMS 1.1.7 has a stored XSS vulnerability CWE-79
Cross-site Scripting 		CVE-2013-0161 2024-11-21 10:46 2020-01-30 Show GitHub Exploit DB Packet Storm
288150 8.8 HIGH
Network 		polycom hdx_video_end_points
uc_apl 		Polycom HDX Video End Points before 3.0.4 and UC APL before 2.7.1.J allows remote authenticated users to execute arbitrary commands as demonstrated by a ; (semicolon) to the ping command feature. CWE-78
OS Command  		CVE-2012-6610 2024-11-21 10:46 2020-01-29 Show GitHub Exploit DB Packet Storm