Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253331 - - コンソナ - Consona (旧 SupportSoft) Intelligent Assistance Suite (IAS) に複数の脆弱性 - - 2010-06-4 17:58 2010-05-13 Show GitHub Exploit DB Packet Storm
253332 7.5 危険 アップル
VMware
サン・マイクロシステムズ
ヒューレット・パッカード
レッドハット		 - JDK および JRE の Java プラグインにおける古い JRE バージョンで動作可能な脆弱性 CWE-DesignError
CVE-2009-1105 2010-06-4 15:54 2009-03-24 Show GitHub Exploit DB Packet Storm
253333 10 危険 日立 - Collaboration - Common Utility におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		- 2010-06-3 15:19 2010-05-12 Show GitHub Exploit DB Packet Storm
253334 10 危険 日立
CA Technologies		 - CA ARCserve Backup および BrightStor ARCserve Backup における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		- 2010-06-3 15:19 2010-03-18 Show GitHub Exploit DB Packet Storm
253335 6.4 警告 サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - MySQL における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4028 2010-06-3 14:57 2009-11-4 Show GitHub Exploit DB Packet Storm
253336 4 警告 富士通九州システムズ - e-Pares におけるセッション固定の脆弱性 CWE-Other
その他 		CVE-2010-2149 2010-06-2 15:05 2010-06-2 Show GitHub Exploit DB Packet Storm
253337 2.6 注意 富士通九州システムズ - e-Pares におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2151 2010-06-2 15:04 2010-06-2 Show GitHub Exploit DB Packet Storm
253338 4.3 警告 富士通九州システムズ - e-Pares におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2150 2010-06-2 15:02 2010-06-2 Show GitHub Exploit DB Packet Storm
253339 2.1 注意 アドビシステムズ - Adobe ColdFusion における重要な情報を取得される脆弱性 CWE-200
CWE-noinfo
CVE-2010-1294 2010-06-2 12:14 2010-05-11 Show GitHub Exploit DB Packet Storm
253340 4.3 警告 アドビシステムズ - Adobe ColdFusion の Administrator ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1293 2010-06-2 12:14 2010-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257661 8.8 HIGH
Network 		tats w3m An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in w3m allows remote attackers to cause a denial of service (crash) and possibly execute arbitrar… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9423 2024-11-21 12:01 2016-12-12 Show GitHub Exploit DB Packet Storm
257662 8.8 HIGH
Network 		tats w3m An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the value of table span, which allows remote attackers to cause… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9422 2024-11-21 12:01 2016-12-12 Show GitHub Exploit DB Packet Storm
257663 9.8 CRITICAL
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. When the arg_separator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All … CWE-352
 Origin Validation Error 		CVE-2016-9866 2024-11-21 12:01 2016-12-11 Show GitHub Exploit DB Packet Storm
257664 9.8 CRITICAL
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. Due to a bug in serialized string parsing, it was possible to bypass the protection offered by PMA_safeUnserialize() function. All 4.6.x versions (prior to 4.6.… CWE-254
CWE-502
 7PK - Security Features
 Deserialization of Untrusted Data 		CVE-2016-9865 2024-11-21 12:01 2016-12-11 Show GitHub Exploit DB Packet Storm
257665 7.5 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. With a very large request to table partitioning function, it is possible to invoke a Denial of Service (DoS) attack. All 4.6.x versions (prior to 4.6.5) are aff… CWE-20
 Improper Input Validation  		CVE-2016-9863 2024-11-21 12:01 2016-12-11 Show GitHub Exploit DB Packet Storm
257666 7.5 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. With a crafted login request it is possible to inject BBCode in the login page. All 4.6.x versions (prior to 4.6.5) are affected. CWE-94
Code Injection 		CVE-2016-9862 2024-11-21 12:01 2016-12-11 Show GitHub Exploit DB Packet Storm
257667 7.5 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. Due to the limitation in URL matching, it was possible to bypass the URL white-list protection. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.… CWE-254
 7PK - Security Features 		CVE-2016-9861 2024-11-21 12:01 2016-12-11 Show GitHub Exploit DB Packet Storm
257668 5.9 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. An unauthenticated user can execute a denial of service attack when phpMyAdmin is running with $cfg['AllowArbitraryServer']=true. All 4.6.x versions (prior to 4… CWE-20
 Improper Input Validation  		CVE-2016-9860 2024-11-21 12:01 2016-12-11 Show GitHub Exploit DB Packet Storm
257669 7.5 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. With a crafted username or a table name, it was possible to inject SQL statements in the tracking functionality that would run with the privileges of the contro… CWE-89
SQL Injection 		CVE-2016-9864 2024-11-21 12:01 2016-12-11 Show GitHub Exploit DB Packet Storm
257670 5.3 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. With a crafted request parameter value it is possible to initiate a denial of service attack in import feature. All 4.6.x versions (prior to 4.6.5), 4.4.x versi… CWE-20
 Improper Input Validation  		CVE-2016-9859 2024-11-21 12:01 2016-12-11 Show GitHub Exploit DB Packet Storm