Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253251	4.4	警告	アップル	-	Apple Mac OS X の DesktopServices におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0545	2010-07-8 18:26	2010-06-15	Show	GitHub Exploit DB Packet Storm

253252	10	危険	ヒューレット・パッカード SGI IBM	-	rpc.pcnfsd の _msgout 関数における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-1039	2010-07-8 18:03	2010-05-18	Show	GitHub Exploit DB Packet Storm

253253	1.2	注意	IBM OpenBSD	-	OpenSSH における X11 転送ポートをハイジャックされる脆弱性	CWE-200 情報漏えい	CVE-2008-3259	2010-07-7 16:40	2008-07-22	Show	GitHub Exploit DB Packet Storm

253254	4.3	警告	アップルサイバートラスト株式会社レッドハット SquirrelMail Project	-	SquirrelMail におけるユーザインターフェースを偽装される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1581	2010-07-6 19:19	2009-05-12	Show	GitHub Exploit DB Packet Storm

253255	6.8	警告	アップル SquirrelMail Project	-	SquirrelMail におけるセッション固定の脆弱性	CWE-287 不適切な認証	CVE-2009-1580	2010-07-6 19:18	2009-05-11	Show	GitHub Exploit DB Packet Storm

253256	6.8	警告	アップルサイバートラスト株式会社レッドハット SquirrelMail Project	-	SquirrelMail における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1579	2010-07-6 19:18	2009-05-10	Show	GitHub Exploit DB Packet Storm

253257	4.3	警告	アップルサイバートラスト株式会社レッドハット SquirrelMail Project	-	SquirrelMail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1578	2010-07-6 19:18	2009-05-8	Show	GitHub Exploit DB Packet Storm

253258	8.5	危険	マイクロソフト	-	Microsoft IIS における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1256	2010-07-5 17:52	2010-06-8	Show	GitHub Exploit DB Packet Storm

253259	4	警告	マイクロソフト	-	Microsoft Windows SharePoint Services におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-1264	2010-07-5 17:52	2010-06-8	Show	GitHub Exploit DB Packet Storm

253260	6.9	警告	マイクロソフト	-	Open XML File Format Converter のインストールにおける任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1254	2010-07-5 17:52	2010-06-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
271461	-	owncloud debian	owncloud debian_linux	Multiple cross-site scripting (XSS) vulnerabilities in the contacts application in ownCloud Server Community Edition before 5.0.19, 6.x before 6.0.7, and 7.x before 7.0.5 allow remote authenticated u…	CWE-79 Cross-site Scripting	CVE-2015-3011	2024-11-21 11:28	2015-05-8	Show	GitHub Exploit DB Packet Storm

271462	-	oracle haxx canonical apple debian	enterprise_manager_ops_center libcurl curl ubuntu_linux mac_os_x debian_linux	The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information…	CWE-200 Information Exposure	CVE-2015-3153	2024-11-21 11:28	2015-05-2	Show	GitHub Exploit DB Packet Storm

271463	-	xiph debian opensuse	icecast debian_linux opensuse	Icecast before 2.4.2, when a stream_auth handler is defined for URL authentication, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a request without log…	NVD-CWE-Other	CVE-2015-3026	2024-11-21 11:28	2015-04-30	Show	GitHub Exploit DB Packet Storm

271464	-	fedoraproject canonical debian apple haxx hp opensuse	fedora ubuntu_linux debian_linux mac_os_x libcurl system_management_homepage curl opensuse	cURL and libcurl 7.10.6 through 7.41.0 do not properly re-use authenticated Negotiate connections, which allows remote attackers to connect as other users via a request.	CWE-284 Improper Access Control	CVE-2015-3148	2024-11-21 11:28	2015-04-24	Show	GitHub Exploit DB Packet Storm

271465	-	fedoraproject canonical debian haxx apple oracle hp opensuse	fedora ubuntu_linux debian_linux curl mac_os_x solaris libcurl system_management_homepage opensuse	The sanitize_cookie_path function in cURL and libcurl 7.31.0 through 7.41.0 does not properly calculate an index, which allows remote attackers to cause a denial of service (out-of-bounds write and c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-3145	2024-11-21 11:28	2015-04-24	Show	GitHub Exploit DB Packet Storm

271466	-	oracle haxx canonical debian	mysql_enterprise_monitor curl libcurl ubuntu_linux debian_linux	The fix_hostname function in cURL and libcurl 7.37.0 through 7.41.0 does not properly calculate an index, which allows remote attackers to cause a denial of service (out-of-bounds read or write and c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-3144	2024-11-21 11:28	2015-04-24	Show	GitHub Exploit DB Packet Storm

271467	-	haxx canonical debian hp apple	curl ubuntu_linux debian_linux libcurl system_management_homepage mac_os_x	cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3143	2024-11-21 11:28	2015-04-24	Show	GitHub Exploit DB Packet Storm

271468	-	simple_ads_manager_project	simple_ads_manager	Unrestricted file upload vulnerability in sam-ajax-admin.php in the Simple Ads Manager plugin before 2.5.96 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an…	NVD-CWE-Other	CVE-2015-2825	2024-11-21 11:28	2015-04-22	Show	GitHub Exploit DB Packet Storm

271469	-	redhat novell opensuse adobe	enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_workstation_supplementary enterprise_linux_server_supplementary_eus enterprise_linux_suppleme…	Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to bypass intended access restrictions and obtain se…	CWE-200 Information Exposure	CVE-2015-3044	2024-11-21 11:28	2015-04-15	Show	GitHub Exploit DB Packet Storm

271470	-	adobe suse opensuse redhat	flash_player suse_linux_enterprise_desktop suse_linux_workstation_extension opensuse enterprise_linux_desktop_supplementary enterprise_linux_server_supplementary enterprise_linux_wo…	Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of servi…	NVD-CWE-noinfo	CVE-2015-3042	2024-11-21 11:28	2015-04-15	Show	GitHub Exploit DB Packet Storm