Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253451	5.8	警告	オラクル	-	Oracle E-Business Suite の Oracle iStore コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0868	2010-05-12 15:19	2010-04-13	Show	GitHub Exploit DB Packet Storm

253452	6.4	警告	オラクル	-	Oracle E-Business Suite の Oracle Application Object Library コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0859	2010-05-12 15:19	2010-04-13	Show	GitHub Exploit DB Packet Storm

253453	4.3	警告	オラクル	-	Oracle Collaboration Suite の User Interface コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0881	2010-05-12 15:19	2010-04-13	Show	GitHub Exploit DB Packet Storm

253454	4.3	警告	オラクル	-	Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0855	2010-05-12 15:19	2010-04-13	Show	GitHub Exploit DB Packet Storm

253455	4.3	警告	オラクル	-	Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0086	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253456	5	警告	オラクル	-	Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0856	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253457	5	警告	オラクル	-	Oracle Fusion Middleware の Oracle Internet Directory コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0872	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253458	2.1	注意	オラクル	-	Oracle Database の Audit コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0854	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253459	3.6	注意	オラクル	-	Oracle Database の Change Data Capture コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0870	2010-05-12 15:18	2010-04-13	Show	GitHub Exploit DB Packet Storm

253460	4	警告	オラクル	-	Oracle Database の XML DB コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0851	2010-05-12 15:17	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292831	-	ps_project_management_team	unity-firefox-extension	content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtai…	NVD-CWE-Other	CVE-2012-0958	2024-11-21 10:36	2012-12-27	Show	GitHub Exploit DB Packet Storm

292832	-	linux	linux_kernel	The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with…	CWE-16 Configuration	CVE-2012-0957	2024-11-21 10:36	2012-12-21	Show	GitHub Exploit DB Packet Storm

292833	-	ps_project_management_team	unity-firefox-extension	Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possi…	CWE-20 Improper Input Validation	CVE-2012-0960	2024-11-21 10:36	2012-11-25	Show	GitHub Exploit DB Packet Storm

292834	-	remote_login_service_hackers	remote_login_service	Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials.	CWE-200 Information Exposure	CVE-2012-0959	2024-11-21 10:36	2012-11-25	Show	GitHub Exploit DB Packet Storm

292835	-	redhat	jboss_enterprise_application_platform jboss_enterprise_soa_platform jboss_enterprise_web_platform jboss_enterprise_brms_platform	The JBoss Server in JBoss Enterprise Application Platform 5.1.x before 5.1.2 and 5.2.x before 5.2.2, Web Platform before 5.1.2, BRMS Platform before 5.3.0, and SOA Platform before 5.3.0, when the ser…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1167	2024-11-21 10:36	2012-11-24	Show	GitHub Exploit DB Packet Storm

292836	-	redhat	mod_cluster jboss_enterprise_application_platform	mod_cluster 1.0.10 before 1.0.10 CP03 and 1.1.x before 1.1.4, as used in JBoss Enterprise Application Platform 5.1.2, when "ROOT" is set to excludedContexts, exposes the root context of the server, w…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-1154	2024-11-21 10:36	2012-10-23	Show	GitHub Exploit DB Packet Storm

292837	-	socialcms	socialcms	Multiple cross-site request forgery (CSRF) vulnerabilities in SocialCMS 1.0.2 allow remote attackers to hijack the authentication of administrators for requests that (1) add administrator accounts vi…	CWE-352 Origin Validation Error	CVE-2012-1416	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

292838	-	dlink	dsl-2640b_firmware dsl-2640b	Cross-site request forgery (CSRF) vulnerability in redpass.cgi in D-Link DSL-2640B Firmware EU_4.00 allows remote attackers to hijack the authentication of administrators for requests that change the…	CWE-352 Origin Validation Error	CVE-2012-1308	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

292839	-	bernhard_wymann speed-dreams	torcs speed_dreams	Stack-based buffer overflow in modules/graphic/ssgraph/grsound.cpp in The Open Racing Car Simulator (TORCS) before 1.3.3 and Speed Dreams allows user-assisted remote attackers to execute arbitrary co…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-1189	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm

292840	-	kishore_asokan	kish_guest_posting_plugin	Unrestricted file upload vulnerability in uploadify/scripts/uploadify.php in the Kish Guest Posting plugin before 1.2 for WordPress allows remote attackers to execute arbitrary code by uploading a fi…	NVD-CWE-Other	CVE-2012-1125	2024-11-21 10:36	2012-10-9	Show	GitHub Exploit DB Packet Storm