Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254091 2.6 注意 富士通九州システムズ - e-Pares におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2151 2010-06-2 15:04 2010-06-2 Show GitHub Exploit DB Packet Storm
254092 4.3 警告 富士通九州システムズ - e-Pares におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2150 2010-06-2 15:02 2010-06-2 Show GitHub Exploit DB Packet Storm
254093 2.1 注意 アドビシステムズ - Adobe ColdFusion における重要な情報を取得される脆弱性 CWE-200
CWE-noinfo
CVE-2010-1294 2010-06-2 12:14 2010-05-11 Show GitHub Exploit DB Packet Storm
254094 4.3 警告 アドビシステムズ - Adobe ColdFusion の Administrator ページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1293 2010-06-2 12:14 2010-05-11 Show GitHub Exploit DB Packet Storm
254095 4.3 警告 アドビシステムズ - Adobe ColdFusion におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3467 2010-06-2 12:13 2010-05-11 Show GitHub Exploit DB Packet Storm
254096 9.3 危険 アドビシステムズ - Adobe Shockwave Player の pami RIFF chunk 構文解析における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1292 2010-06-2 12:13 2010-05-11 Show GitHub Exploit DB Packet Storm
254097 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1291 2010-06-2 12:13 2010-05-11 Show GitHub Exploit DB Packet Storm
254098 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1290 2010-06-2 12:13 2010-05-11 Show GitHub Exploit DB Packet Storm
254099 9.3 危険 ジャストシステム - 一太郎シリーズにおける任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-2152 2010-06-1 16:01 2010-06-1 Show GitHub Exploit DB Packet Storm
254100 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1289 2010-06-1 15:45 2010-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290761 - opera opera_browser The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by caus… CWE-20
 Improper Input Validation  		CVE-2012-6461 2024-11-21 10:46 2013-01-2 Show GitHub Exploit DB Packet Storm
290762 - opera opera_browser Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, and possibly trigger downloading and execution of arbitrary programs, via a crafted web site. NVD-CWE-Other
CVE-2012-6460 2024-11-21 10:46 2013-01-2 Show GitHub Exploit DB Packet Storm
290763 - intel connman ConnMan 1.3 on Tizen continues to list the bluetooth service after offline mode has been enabled, which might allow remote attackers to obtain sensitive information via Bluetooth packets. CWE-200
Information Exposure 		CVE-2012-6459 2024-11-21 10:46 2013-01-2 Show GitHub Exploit DB Packet Storm
290764 - lemonldap-ng lemonldap\ LemonLDAP::NG before 1.2.3 does not use the signature-verification capability of the Lasso library, which allows remote attackers to bypass intended access-control restrictions via crafted SAML data. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-6426 2024-11-21 10:46 2013-01-2 Show GitHub Exploit DB Packet Storm
290765 - belkin n900_wireless_router The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits of the LAN/WLAN MAC address, which makes it easier for remote attackers to obtain access to a Wi-Fi… CWE-310
Cryptographic Issues 		CVE-2012-6371 2024-11-21 10:46 2013-01-1 Show GitHub Exploit DB Packet Storm
290766 - mediawiki rssreader Cross-site scripting (XSS) vulnerability in the RSS Reader extension before 0.2.6 for MediaWiki allows remote attackers to inject arbitrary web script or HTML via a crafted feed. CWE-79
Cross-site Scripting 		CVE-2012-6453 2024-11-21 10:46 2012-12-31 Show GitHub Exploit DB Packet Storm
290767 - cerberusftp ftp_server Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cerberus FTP Server before 5.0.6.0 allow (1) remote attackers to inject arbitrary web script or HTML via a l… CWE-79
Cross-site Scripting 		CVE-2012-6339 2024-11-21 10:46 2012-12-31 Show GitHub Exploit DB Packet Storm
290768 - samsung samsungdive The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows the activation of remote tracking, which might allow physically proximate attackers to defeat a pr… CWE-200
Information Exposure 		CVE-2012-6337 2024-11-21 10:46 2012-12-31 Show GitHub Exploit DB Packet Storm
290769 - lookout lookout The Missing Device feature in Lookout allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer." NVD-CWE-noinfo
CVE-2012-6336 2024-11-21 10:46 2012-12-31 Show GitHub Exploit DB Packet Storm
290770 - avg avg_antivirus The Anti-theft service in AVG AntiVirus for Android allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer." NVD-CWE-noinfo
CVE-2012-6335 2024-11-21 10:46 2012-12-31 Show GitHub Exploit DB Packet Storm