Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253521	4.3	警告	有限会社のれんずプロ	-	AD-EDIT2 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2367	2010-10-5 11:02	2010-10-5	Show	GitHub Exploit DB Packet Storm

253522	9.3	危険	アップル	-	iPhone および iPod touch 上で稼動する Apple iOS の ImageIO におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1817	2010-10-4 17:59	2010-09-8	Show	GitHub Exploit DB Packet Storm

253523	5.8	警告	アップル	-	iPhone および iPod touch 上で稼動する Apple iOS の FaceTime における通話をリダイレクトされる脆弱性	CWE-Other その他	CVE-2010-1810	2010-10-4 17:55	2010-09-8	Show	GitHub Exploit DB Packet Storm

253524	10	危険	アップル	-	iPhone および iPod touch 上で稼動する Apple iOS の Accessibility コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-1809	2010-10-4 17:55	2010-09-8	Show	GitHub Exploit DB Packet Storm

253525	4	警告	ISC, Inc. IBM サイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカードレッドハット	-	BIND 9 の DNSSEC 検証処理における脆弱性	CWE-noinfo 情報不足	CVE-2009-4022	2010-10-1 17:39	2009-12-2	Show	GitHub Exploit DB Packet Storm

253526	4	警告	ISC, Inc. サイバートラスト株式会社ターボリナックスヒューレット・パッカードレッドハット	-	ISC BIND における DNS キャッシュ汚染の脆弱性	CWE-noinfo 情報不足	CVE-2010-0290	2010-10-1 17:39	2010-01-22	Show	GitHub Exploit DB Packet Storm

253527	7.6	危険	ISC, Inc. ヒューレット・パッカード	-	ISC BIND における処理範囲外のデータ処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0382	2010-10-1 17:38	2010-01-22	Show	GitHub Exploit DB Packet Storm

253528	9	危険	日立	-	Groupmax Scheduler Server における複数の脆弱性	CWE-noinfo 情報不足	-	2010-10-1 17:37	2010-09-6	Show	GitHub Exploit DB Packet Storm

253529	5.8	警告	富士通アクセラテクノロジ	-	Accela BizSearch の文書参照画面におけるフィッシング脅威の脆弱性	CWE-noinfo 情報不足	-	2010-10-1 17:37	2010-09-2	Show	GitHub Exploit DB Packet Storm

253530	9.3	危険	Mozilla Foundation	-	Windows 上で稼働する複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-3131	2010-10-1 17:31	2010-09-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296391	5.3	MEDIUM Network	lexmark	x860_firmware x862_firmware x864_firmware x734_firmware x736_firmware x738_firmware x651_firmware x652_firmware x654_firmware x656_firmware x658_firmware x543_firmwar…	Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.	CWE-200 Information Exposure	CVE-2011-4538	2024-11-21 10:32	2020-03-10	Show	GitHub Exploit DB Packet Storm

296392	7.8	HIGH Local	shaman_project	shaman	Shaman 1.0.9: Users can add the line askforpwd=false to his shaman.conf file, without entering the root password in shaman. The next time shaman is run, root privileges are granted despite the fact t…	CWE-287 Improper Authentication	CVE-2011-4338	2024-11-21 10:32	2020-02-13	Show	GitHub Exploit DB Packet Storm

296393	7.5	HIGH Network	cisco	ios	A memory leak vulnerability exists in Cisco IOS before 15.2(1)T due to a memory leak in the HTTP PROXY Server process (aka CSCtu52820), when configured with Cisco ISR Web Security with Cisco ScanSafe…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2011-4661	2024-11-21 10:32	2020-02-13	Show	GitHub Exploit DB Packet Storm

296394	7.2	HIGH Network	tiki	tiki	Tiki 8.2 and earlier allows remote administrators to execute arbitrary PHP code via crafted input to the regexres and regex parameters.	CWE-74 Injection	CVE-2011-4558	2024-11-21 10:32	2020-01-28	Show	GitHub Exploit DB Packet Storm

296395	7.5	HIGH Network	websitebaker	websitebaker	websitebaker prior to and including 2.8.1 has an authentication error in backup module.	CWE-306 Missing Authentication for Critical Function	CVE-2011-4322	2024-11-21 10:32	2020-01-22	Show	GitHub Exploit DB Packet Storm

296396	6.1	MEDIUM Network	tiki	tikiwiki_cms\/groupware	Tiki Wiki CMS Groupware 7.0 has XSS via the GET "ajax" parameter to snarf_ajax.php.	CWE-79 Cross-site Scripting	CVE-2011-4336	2024-11-21 10:32	2020-01-15	Show	GitHub Exploit DB Packet Storm

296397	6.1	MEDIUM Network	caseproof	pretty_link	Pretty-Link WordPress plugin 1.5.2 has XSS	CWE-79 Cross-site Scripting	CVE-2011-4595	2024-11-21 10:32	2020-01-10	Show	GitHub Exploit DB Packet Storm

296398	7.5	HIGH Network	cmsmadesimple	cms_made_simple	The news module in CMSMS before 1.9.4.3 allows remote attackers to corrupt new articles.	CWE-20 Improper Input Validation	CVE-2011-4310	2024-11-21 10:32	2019-11-27	Show	GitHub Exploit DB Packet Storm

296399	6.5	MEDIUM Network	yaws debian	yaws debian_linux	Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-craft…	CWE-22 Path Traversal	CVE-2011-4350	2024-11-21 10:32	2019-11-26	Show	GitHub Exploit DB Packet Storm

296400	6.1	MEDIUM Network	tiki	tiki	Multiple cross-site scripting vulnerabilities in Tiki 7.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the path info to (1) tiki-admin_system.php, (2) tiki-pagehistor…	CWE-79 Cross-site Scripting	CVE-2011-4455	2024-11-21 10:32	2019-11-21	Show	GitHub Exploit DB Packet Storm