Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254001 6.8 警告 IBM - IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2746 2010-01-12 14:48 2009-11-13 Show GitHub Exploit DB Packet Storm
254002 5 警告 アップル - Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2009-2842 2010-01-7 12:09 2009-11-11 Show GitHub Exploit DB Packet Storm
254003 5.5 警告 シックス・アパート株式会社 - Movable Type におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-01-6 15:01 2010-01-6 Show GitHub Exploit DB Packet Storm
254004 9.3 危険 マイクロソフト - Microsoft Office Word および Open XML File Format Converter における、任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3135 2010-01-6 14:44 2009-11-10 Show GitHub Exploit DB Packet Storm
254005 5 警告 トレンドマイクロ
日本電気
Apache Software Foundation
富士通
サイバートラスト株式会社
サン・マイクロシステムズ
ヒューレット・パッカード
レッドハット		 - Apache Tomcat の Apache HTTP Server との組合せによるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-0450 2010-01-6 14:43 2007-03-16 Show GitHub Exploit DB Packet Storm
254006 9.3 危険 マイクロソフト - Microsoft Office Excel および Open XML File Format Converter におけるオブジェクトを含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3133 2010-01-5 16:18 2009-11-10 Show GitHub Exploit DB Packet Storm
254007 9.3 危険 マイクロソフト - Microsoft Office Excel および Open XML File Format Converter における BIFF レコードの処理に関する任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3130 2010-01-5 16:18 2009-11-10 Show GitHub Exploit DB Packet Storm
254008 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるエクセルファイルのフォーマットの処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3134 2010-01-5 16:18 2009-11-10 Show GitHub Exploit DB Packet Storm
254009 9.3 危険 マイクロソフト - 複数の Microsoft 製品における計算式を含むスプレッドシートの処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3132 2010-01-5 16:18 2009-11-10 Show GitHub Exploit DB Packet Storm
254010 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるセルに含まれる計算式の処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3131 2010-01-5 16:17 2009-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272891 6.1 MEDIUM
Network 		flame.js_project flame.js A vulnerability classified as problematic has been found in flame.js. This affects an unknown part. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Thi… - CVE-2015-10089 2024-11-21 11:24 2023-03-5 Show GitHub Exploit DB Packet Storm
272892 8.1 HIGH
Network 		ayttm_project ayttm A vulnerability, which was classified as critical, was found in ayttm up to 0.5.0.89. This affects the function http_connect in the library libproxy/proxy.c. The manipulation leads to format string. … - CVE-2015-10088 2024-11-21 11:24 2023-03-5 Show GitHub Exploit DB Packet Storm
272893 9.8 CRITICAL
Network 		server-php_project server-php A vulnerability, which was classified as critical, was found in OpenCycleCompass server-php. Affected is an unknown function of the file api1/login.php. The manipulation of the argument user leads to… - CVE-2015-10086 2024-11-21 11:24 2023-02-28 Show GitHub Exploit DB Packet Storm
272894 7.5 HIGH
Network 		gopistolet_project gopistolet A vulnerability was found in GoPistolet. It has been declared as problematic. This vulnerability affects unknown code of the component MTA. The manipulation leads to denial of service. Continious del… NVD-CWE-noinfo
CVE-2015-10085 2024-11-21 11:24 2023-02-22 Show GitHub Exploit DB Packet Storm
272895 9.8 CRITICAL
Network 		irontec klear-library A vulnerability was found in irontec klear-library chloe and classified as critical. Affected by this issue is the function _prepareWhere of the file Controller/Rest/BaseController.php. The manipulat… - CVE-2015-10084 2024-11-21 11:24 2023-02-22 Show GitHub Exploit DB Packet Storm
272896 9.8 CRITICAL
Network 		harrys dynosaur-rails A vulnerability has been found in harrystech Dynosaur-Rails and classified as critical. Affected by this vulnerability is the function basic_auth of the file app/controllers/application_controller.rb… - CVE-2015-10083 2024-11-21 11:24 2023-02-22 Show GitHub Exploit DB Packet Storm
272897 9.8 CRITICAL
Network 		libimobiledevice libplist A vulnerability classified as problematic has been found in UIKit0 libplist 1.12. This affects the function plist_from_xml of the file src/xplist.c of the component XML Handler. The manipulation lead… - CVE-2015-10082 2024-11-21 11:24 2023-02-21 Show GitHub Exploit DB Packet Storm
272898 8.8 HIGH
Network 		submitbymailplugin_project submitbymailplugin A vulnerability was found in arnoldle submitByMailPlugin 1.0b2.9 and classified as problematic. This issue affects some unknown processing of the file edit_list.php. The manipulation leads to cross-s… - CVE-2015-10081 2024-11-21 11:24 2023-02-21 Show GitHub Exploit DB Packet Storm
272899 6.1 MEDIUM
Network 		nrel api_umbrella A vulnerability was found in NREL api-umbrella-web 0.7.1. It has been classified as problematic. This affects an unknown part of the component Admin Data Table Handler. The manipulation leads to cros… - CVE-2015-10080 2024-11-21 11:24 2023-02-20 Show GitHub Exploit DB Packet Storm
272900 6.1 MEDIUM
Network 		walrusirc_project walrusirc A vulnerability was found in juju2143 WalrusIRC 0.0.2. It has been rated as problematic. This issue affects the function parseLinks of the file public/parser.js. The manipulation of the argument text… - CVE-2015-10079 2024-11-21 11:24 2023-02-14 Show GitHub Exploit DB Packet Storm