Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253971	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3671	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

253972	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性	CWE-255 CWE-94	CVE-2009-3677	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253973	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-2505	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

253974	6.9	警告	acpid	-	acpid の umask におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4235	2010-01-21 11:44	2009-12-7	Show	GitHub Exploit DB Packet Storm

253975	6.9	警告	サイバートラスト株式会社レッドハット acpid	-	acpid のレッドハットパッチにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4033	2010-01-21 11:43	2009-12-7	Show	GitHub Exploit DB Packet Storm

253976	10	危険	アドビシステムズ	-	Adobe Illustrator における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-3952	2010-01-21 11:43	2010-01-7	Show	GitHub Exploit DB Packet Storm

253977	9.3	危険	アドビシステムズ	-	Adobe Illustrator における Encapsulated PostScript ファイルの処理に関する任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4195	2010-01-21 11:43	2009-12-4	Show	GitHub Exploit DB Packet Storm

253978	4.4	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux Kernel の exit_notify 関数における任意のシグナルをプロセスに送信可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1337	2010-01-21 11:23	2009-04-22	Show	GitHub Exploit DB Packet Storm

253979	4.9	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux Kernel における sendmsg 関数の呼び出しに関するサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-5300	2010-01-21 11:22	2008-12-1	Show	GitHub Exploit DB Packet Storm

253980	6.8	警告	シスコシステムズ	-	複数の SSL VPN (Web VPN) 製品においてウェブブラウザのセキュリティが迂回される問題	CWE-264 認可・権限・アクセス制御	CVE-2009-2631	2010-01-20 14:15	2009-12-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313521	-		hostingcontroller	hosting_controller	Hosting Controller 6.1 Hotfix 1.9 and earlier allows remote attackers to register arbitrary users via a direct request to addsubsite.asp with the loginname and password parameters set.	CWE-425 Direct Request ('Forced Browsing')	CVE-2005-1654	2024-01-26 06:03	2005-05-18	Show	GitHub Exploit DB Packet Storm

313522	-		yusasp	web_asset_manager	YusASP Web Asset Manager 1.0 allows remote attackers to gain privileges via a direct request to assetmanager.asp.	CWE-425 Direct Request ('Forced Browsing')	CVE-2005-1668	2024-01-26 06:03	2005-05-18	Show	GitHub Exploit DB Packet Storm

313523	7.5	HIGH Network	iomega	nas_a300u_firmware	The Network Attached Storage (NAS) Administration Web Page for Iomega NAS A300U transmits passwords in cleartext, which allows remote attackers to sniff the administrative password.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2002-1949	2024-01-26 06:00	2002-12-31	Show	GitHub Exploit DB Packet Storm

313524	7.5	HIGH Network	procom	netforce_800_firmware	Procom NetFORCE 800 4.02 M10 Build 20 and possibly other versions sends the NIS password map (passwd.nis) as a file attachment in diagnostic e-mail messages, which allows remote attackers to obtain t…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2005-3140	2024-01-26 05:58	2005-10-6	Show	GitHub Exploit DB Packet Storm

313525	-		solarwinds	dameware_mini_remote_control	DameWare Mini Remote Control 3.x before 3.74 and 4.x before 4.2 transmits the Blowfish encryption key in plaintext, which allows remote attackers to gain sensitive information.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2004-1852	2024-01-26 05:57	2004-03-23	Show	GitHub Exploit DB Packet Storm

313526	5.5	MEDIUM Local	macromedia	coldfusion	ColdFusion MX 6.1 and 6.1 J2EE allows local users to bypass sandbox security restrictions and obtain sensitive information by using Java reflection methods to access trusted Java objects without usin…	CWE-470 Unsafe Reflection	CVE-2004-2331	2024-01-25 11:16	2004-12-31	Show	GitHub Exploit DB Packet Storm

313527	9.8	CRITICAL Network	mozilla sco	mozilla openserver	The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as input to the script.thaw JavaScript function, whic…	CWE-502 Deserialization of Untrusted Data	CVE-2003-0791	2024-01-25 11:14	2003-10-7	Show	GitHub Exploit DB Packet Storm

313528	-		-	-	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-5533. Reason: This record is a reservation duplicate of CVE-2023-5533. Notes: All CVE users should reference CVE-2023-55…	-	CVE-2023-5656	2024-01-24 08:15	2023-10-20	Show	GitHub Exploit DB Packet Storm

313529	-		-	-	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-5534. Reason: This record is a reservation duplicate of CVE-2023-5534. Notes: All CVE users should reference CVE-2023-55…	-	CVE-2023-5655	2024-01-24 08:15	2023-10-20	Show	GitHub Exploit DB Packet Storm

313530	-		-	-	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-5212. Reason: This record is a reservation duplicate of CVE-2023-5212. Notes: All CVE users should reference CVE-2023-52…	-	CVE-2023-5647	2024-01-24 08:15	2023-10-20	Show	GitHub Exploit DB Packet Storm