Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253171	5.8	警告	サイバートラスト株式会社 FastJar レッドハット	-	FastJar の jartool.c 内にある extract_jar 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0831	2011-02-3 14:52	2010-06-18	Show	GitHub Exploit DB Packet Storm

253172	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3652	2011-02-2 15:07	2010-11-4	Show	GitHub Exploit DB Packet Storm

253173	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3650	2011-02-2 15:06	2010-11-4	Show	GitHub Exploit DB Packet Storm

253174	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3649	2011-02-2 15:06	2010-11-4	Show	GitHub Exploit DB Packet Storm

253175	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3648	2011-02-2 15:06	2010-11-4	Show	GitHub Exploit DB Packet Storm

253176	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3647	2011-02-2 15:05	2010-11-4	Show	GitHub Exploit DB Packet Storm

253177	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3646	2011-02-2 15:05	2010-11-4	Show	GitHub Exploit DB Packet Storm

253178	9.3	危険	アップルアドビシステムズレッドハットオラクル	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-3645	2011-02-2 15:05	2010-11-4	Show	GitHub Exploit DB Packet Storm

253179	10	危険	アドバンテック株式会社	-	Advantech Studio Test Web Server にバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0488	2011-02-2 15:00	2011-01-13	Show	GitHub Exploit DB Packet Storm

253180	10	危険	WellinTech	-	WellinTech KingView 6.53 にヒープオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0406	2011-02-2 14:59	2011-01-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258661	4.3	MEDIUM Network	mahara	mahara	Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to users receiving watchlist notifications about pages they do not have access to anymore.	CWE-200 Information Exposure	CVE-2017-1000143	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258662	6.5	MEDIUM Network	mahara	mahara	Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to users being able to delete their submitted page through URL manipulation.	NVD-CWE-noinfo	CVE-2017-1000142	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258663	5.4	MEDIUM Network	mahara	mahara	Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to a maliciously created .xml file that can have its code executed when user tries to downl…	CWE-79 Cross-site Scripting	CVE-2017-1000140	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258664	8.0	HIGH Network	mahara	mahara	Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable to server-side request forgery attacks as not all processes of curl redirects are checked a…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-1000139	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258665	5.4	MEDIUM Network	mahara	mahara	Mahara 1.10 before 1.10.0 and 15.04 before 15.04.0 are vulnerable to possible cross site scripting when dragging/dropping files into a collection if the file has Javascript code in its title.	CWE-79 Cross-site Scripting	CVE-2017-1000138	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258666	5.4	MEDIUM Network	mahara	mahara	Mahara 1.10 before 1.10.0 and 15.04 before 15.04.0 are vulnerable to possible cross site scripting when adding a text block to a page via the keyboard (rather than drag and drop).	CWE-79 Cross-site Scripting	CVE-2017-1000137	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258667	6.5	MEDIUM Network	mahara	mahara	Mahara 1.8 before 1.8.6 and 1.9 before 1.9.4 and 1.10 before 1.10.1 and 15.04 before 15.04.0 are vulnerable to old sessions not being invalidated after a password change.	CWE-613 Insufficient Session Expiration	CVE-2017-1000136	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258668	6.5	MEDIUM Network	mahara	mahara	Mahara 1.8 before 1.8.7 and 1.9 before 1.9.5 and 1.10 before 1.10.3 and 15.04 before 15.04.0 are vulnerable as logged-in users can stay logged in after the institution they belong to is suspended.	CWE-613 Insufficient Session Expiration	CVE-2017-1000135	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258669	8.1	HIGH Network	mahara	mahara	Mahara 1.8 before 1.8.6 and 1.9 before 1.9.4 and 1.10 before 1.10.1 and 15.04 before 15.04.0 are vulnerable because group members can lose access to the group files they uploaded if another group mem…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2017-1000134	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

258670	7.5	HIGH Network	mahara	mahara	Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to a user - in some circumstances causing another user's artefacts to be included in a Leap2a export of th…	CWE-200 Information Exposure	CVE-2017-1000133	2024-11-21 12:04	2017-11-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed