Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254081	6.5	警告	PostgreSQL.org サイバートラスト株式会社レッドハット	-	PostgreSQL の bitsubstr 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0442	2010-06-9 16:54	2010-02-2	Show	GitHub Exploit DB Packet Storm

254082	6.8	警告	アップル	-	Java の window drawing 実装における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0539	2010-06-7 17:58	2010-05-18	Show	GitHub Exploit DB Packet Storm

254083	6.8	警告	アップル	-	Apple Mac OS X 上で稼働する Java における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0538	2010-06-7 17:58	2010-05-18	Show	GitHub Exploit DB Packet Storm

254084	6.5	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	PostgreSQL におけるインデックスの処理に関する権限を取得される脆弱性	CWE-Other その他	CVE-2009-4136	2010-06-7 16:48	2009-12-15	Show	GitHub Exploit DB Packet Storm

254085	-	-	コンソナ	-	Consona (旧 SupportSoft) Intelligent Assistance Suite (IAS) に複数の脆弱性	-	-	2010-06-4 17:58	2010-05-13	Show	GitHub Exploit DB Packet Storm

254086	7.5	危険	アップル VMware サン・マイクロシステムズヒューレット・パッカードレッドハット	-	JDK および JRE の Java プラグインにおける古い JRE バージョンで動作可能な脆弱性	CWE-DesignError	CVE-2009-1105	2010-06-4 15:54	2009-03-24	Show	GitHub Exploit DB Packet Storm

254087	10	危険	日立	-	Collaboration - Common Utility におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	-	2010-06-3 15:19	2010-05-12	Show	GitHub Exploit DB Packet Storm

254088	10	危険	日立 CA Technologies	-	CA ARCserve Backup および BrightStor ARCserve Backup における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	-	2010-06-3 15:19	2010-03-18	Show	GitHub Exploit DB Packet Storm

254089	6.4	警告	サイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	MySQL における SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2009-4028	2010-06-3 14:57	2009-11-4	Show	GitHub Exploit DB Packet Storm

254090	4	警告	富士通九州システムズ	-	e-Pares におけるセッション固定の脆弱性	CWE-Other その他	CVE-2010-2149	2010-06-2 15:05	2010-06-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268921	9.8	CRITICAL Network	php	php	Format string vulnerability in the zend_throw_or_error function in Zend/zend_execute_API.c in PHP 7.x before 7.0.1 allows remote attackers to execute arbitrary code via format string specifiers in a …	CWE-134 Use of Externally-Controlled Format String	CVE-2015-8617	2024-11-21 11:38	2016-01-19	Show	GitHub Exploit DB Packet Storm

268922	8.6	HIGH Network	php	php	Use-after-free vulnerability in the Collator::sortWithSortKeys function in ext/intl/collator/collator_sort.c in PHP 7.x before 7.0.1 allows remote attackers to cause a denial of service (application …	NVD-CWE-Other	CVE-2015-8616	2024-11-21 11:38	2016-01-19	Show	GitHub Exploit DB Packet Storm

268923	5.4	MEDIUM Network	gajim	gajim	Gajim before 0.16.5 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza.	CWE-20 Improper Input Validation	CVE-2015-8688	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

268924	6.1	MEDIUM Network	dolibarr	dolibarr	Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) external calendar url or (2) the ba…	CWE-79 Cross-site Scripting	CVE-2015-8685	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

268925	6.2	MEDIUM Local	huawei	s5300_firmware	Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password when uploading files, which allows physically proximate attackers to obtain sensitive password informa…	CWE-255 Credentials Management	CVE-2015-8675	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

268926	7.5	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations.	CWE-310 Cryptographic Issues	CVE-2015-8281	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

268927	7.5	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages.	CWE-200 Information Exposure	CVE-2015-8280	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

268928	8.6	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8279	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

268929	6.5	MEDIUM Adjacent	sophos isc debian canonical	unified_threat_management_up2date dhcp debian_linux ubuntu_linux	ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.	CWE-20 Improper Input Validation	CVE-2015-8605	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

268930	7.3	HIGH Network	canonical perl debian	ubuntu_linux pathtools debian_linux	The canonpath function in the File::Spec module in PathTools before 3.62, as used in Perl, does not properly preserve the taint attribute of data, which might allow context-dependent attackers to byp…	CWE-20 Improper Input Validation	CVE-2015-8607	2024-11-21 11:38	2016-01-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed