Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253271	9.3	危険	Foxit Software Inc	-	Foxit Reader に任意のコード実行が可能な脆弱性	CWE-94 コード・インジェクション	CVE-2010-1239	2010-04-27 16:10	2010-04-6	Show	GitHub Exploit DB Packet Storm

253272	10	危険	ヒューレット・パッカード	-	Broadcom NetXtreme 管理用ファームウェアにバッファオーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2010-0104	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

253273	6.8	警告	アップル	-	AirPort Utility におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2822	2010-04-27 16:09	2010-03-31	Show	GitHub Exploit DB Packet Storm

253274	9.3	危険	アップル	-	Apple Safari の ColorSync における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0040	2010-04-27 15:20	2010-03-15	Show	GitHub Exploit DB Packet Storm

253275	4	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の lib/rfc1035.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0308	2010-04-27 15:20	2010-01-28	Show	GitHub Exploit DB Packet Storm

253276	6.8	警告	アップル	-	Apple Mac OS X の QuickDraw Manager におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2837	2010-04-27 15:20	2009-11-9	Show	GitHub Exploit DB Packet Storm

253277	5	警告	Squid-cache.org サイバートラスト株式会社ターボリナックスレッドハット	-	Squid の strListGetItem 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-2855	2010-04-27 15:19	2009-08-18	Show	GitHub Exploit DB Packet Storm

253278	4.3	警告	アップルサイバートラスト株式会社 LibTIFF サン・マイクロシステムズレッドハット	-	libtiff の LZWDecodeCompat 関数におけるバッファアンダーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2285	2010-04-27 15:19	2009-07-1	Show	GitHub Exploit DB Packet Storm

253279	4.3	警告	サイバートラスト株式会社レッドハット	-	Red Hat および MIRACLE LINUX の sendmail におけるメール送信元を偽装される脆弱性	-	CVE-2006-7176	2010-04-27 15:18	2007-03-27	Show	GitHub Exploit DB Packet Storm

253280	6.9	警告	アップル	-	Windows 上で稼働する Apple iTunes のインストールパッケージにおける権限昇格の脆弱性	CWE-362 競合状態	CVE-2010-0532	2010-04-26 16:59	2010-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251031	8.0	HIGH Network	grandstream	ht802_firmware	Cross-Site Request Forgery (CSRF) in the Basic Settings screen on Vonage (Grandstream) HT802 devices allows attackers to modify settings, related to cgi-bin/update.	CWE-352 Origin Validation Error	CVE-2017-16563	2024-11-21 12:16	2017-11-6	Show	GitHub Exploit DB Packet Storm

251032	8.8	HIGH Network	hanwhasecurity	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'network_ssl_upload.php' allows remote authenticated attackers to upload and execute arbitrar…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-16524	2024-11-21 12:16	2017-11-6	Show	GitHub Exploit DB Packet Storm

251033	9.8	CRITICAL Network	samba debian canonical	rsync debian_linux ubuntu_linux	The receive_xattr function in xattrs.c in rsync 3.1.2 and 3.1.3-development does not check for a trailing '\0' character in an xattr name, which allows remote attackers to cause a denial of service (…	CWE-125 Out-of-bounds Read	CVE-2017-16548	2024-11-21 12:16	2017-11-6	Show	GitHub Exploit DB Packet Storm

251034	8.8	HIGH Network	graphicsmagick	graphicsmagick	The DrawImage function in magick/render.c in GraphicsMagick 1.3.26 does not properly look for pop keywords that are associated with push keywords, which allows remote attackers to cause a denial of s…	CWE-20 Improper Input Validation	CVE-2017-16547	2024-11-21 12:16	2017-11-6	Show	GitHub Exploit DB Packet Storm

251035	8.8	HIGH Network	imagemagick debian canonical	imagemagick debian_linux ubuntu_linux	The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uni…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-16546	2024-11-21 12:16	2017-11-6	Show	GitHub Exploit DB Packet Storm

251036	8.8	HIGH Network	graphicsmagick	graphicsmagick	The ReadWPGImage function in coders/wpg.c in GraphicsMagick 1.3.26 does not properly validate colormapped images, which allows remote attackers to cause a denial of service (ImportIndexQuantumType in…	CWE-476 NULL Pointer Dereference	CVE-2017-16545	2024-11-21 12:16	2017-11-6	Show	GitHub Exploit DB Packet Storm

251037	9.8	CRITICAL Network	zohocorp	manageengine_applications_manager	Zoho ManageEngine Applications Manager 13 before build 13500 allows SQL injection via GraphicalView.do, as demonstrated by a crafted viewProps yCanvas field or viewid parameter.	CWE-89 SQL Injection	CVE-2017-16543	2024-11-21 12:16	2017-11-6	Show	GitHub Exploit DB Packet Storm

251038	8.8	HIGH Network	zohocorp	manageengine_applications_manager	Zoho ManageEngine Applications Manager 13 before build 13500 allows Post-authentication SQL injection via the name parameter in a manageApplications.do?method=insert request.	CWE-89 SQL Injection	CVE-2017-16542	2024-11-21 12:16	2017-11-6	Show	GitHub Exploit DB Packet Storm

251039	7.5	HIGH Network	open-emr	openemr	OpenEMR before 5.0.0 Patch 5 allows unauthenticated remote database copying because setup.php exposes functionality for cloning an existing OpenEMR site to an arbitrary attacker-controlled MySQL serv…	CWE-200 Information Exposure	CVE-2017-16540	2024-11-21 12:16	2017-11-5	Show	GitHub Exploit DB Packet Storm

251040	6.5	MEDIUM Network	torproject redhat debian	tor enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus debian_linux	Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to bypass the intended anonymity feature and discover a client IP address via vectors involving a crafted web site that leverages f…	CWE-200 Information Exposure	CVE-2017-16541	2024-11-21 12:16	2017-11-5	Show	GitHub Exploit DB Packet Storm