Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254131	6.6	警告	マイクロソフト	-	Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1895	2010-09-2 14:04	2010-08-10	Show	GitHub Exploit DB Packet Storm

254132	6.6	警告	マイクロソフト	-	Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1894	2010-09-2 14:04	2010-08-10	Show	GitHub Exploit DB Packet Storm

254133	4.4	警告	マイクロソフト	-	Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1887	2010-09-2 14:04	2010-08-10	Show	GitHub Exploit DB Packet Storm

254134	4.6	警告	マイクロソフト	-	Microsoft Windows のカーネルにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1890	2010-09-1 15:19	2010-08-10	Show	GitHub Exploit DB Packet Storm

254135	9.3	危険	マイクロソフト	-	Microsoft Windows の Cinepak コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2553	2010-09-1 15:19	2010-08-10	Show	GitHub Exploit DB Packet Storm

254136	7.8	危険	マイクロソフト	-	Microsoft Windows の SMB サーバーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2552	2010-09-1 15:19	2010-08-10	Show	GitHub Exploit DB Packet Storm

254137	7.8	危険	マイクロソフト	-	Microsoft Windows の SMB サーバーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2551	2010-09-1 15:19	2010-08-10	Show	GitHub Exploit DB Packet Storm

254138	10	危険	マイクロソフト	-	Microsoft Windows の SMB サーバーにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2550	2010-09-1 15:17	2010-08-10	Show	GitHub Exploit DB Packet Storm

254139	9.3	危険	マイクロソフト	-	Microsoft Office Word および Office Word Viewe における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1903	2010-09-1 15:17	2010-08-10	Show	GitHub Exploit DB Packet Storm

254140	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1902	2010-09-1 15:17	2010-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313971	-	ovbb	ovbb	Multiple SQL injection vulnerabilities in OvBB 0.08a allow remote attackers to execute arbitrary SQL commands via the (1) threadid parameter to thread.php and (2) userid parameter to profile.php. NOT…	NVD-CWE-Other	CVE-2005-3918	2024-08-8 09:15	2005-11-30	Show	GitHub Exploit DB Packet Storm

313972	-	phphandicapper	php_handicapper	SQL injection vulnerability in process_signup.php in PHP Handicapper allows remote attackers to execute arbitrary SQL commands via the serviceid parameter. NOTE: on 20060210, the vendor disputed thi…	CWE-89 SQL Injection	CVE-2005-3497	2024-08-8 09:15	2005-11-4	Show	GitHub Exploit DB Packet Storm

313973	-	jelsoft	vbulletin	NOTE: this issue has been disputed by the vendor. Cross-site scripting (XSS) vulnerability in register.php for unknown versions of vBulletin allows remote attackers to inject arbitrary HTML or web s…	NVD-CWE-Other	CVE-2004-0091	2024-08-8 09:15	2004-02-17	Show	GitHub Exploit DB Packet Storm

313974	-	filezilla	filezilla	NOTE: this issue has been disputed by the vendor. FileZilla 2.2.14b and 2.2.15, and possibly earlier versions, when "Use secure mode" is disabled, uses a weak encryption scheme to store the user's p…	NVD-CWE-Other	CVE-2005-2898	2024-08-8 08:15	2005-09-15	Show	GitHub Exploit DB Packet Storm

313975	-	neocrome	land_down_under	Note: the vendor has disputed this issue. Multiple cross-site scripting (XSS) vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to inject arbitrary web script or HTML via the (1) c …	NVD-CWE-Other	CVE-2005-2674	2024-08-8 08:15	2005-08-23	Show	GitHub Exploit DB Packet Storm

313976	-	neocrome	land_down_under	Note: the vendor has disputed this issue. Multiple SQL injection vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to execute arbitrary SQL commands via the (1) s or (2) m parameter…	NVD-CWE-Other	CVE-2005-2675	2024-08-8 08:15	2005-08-23	Show	GitHub Exploit DB Packet Storm

313977	-	incredible_interactive	dragonfly_commerce	Dragonfly Commerce allows remote attackers to change a product price by modifying the x_DragonflyCartProductPrice hidden field to (1) dc_Categorieslist.asp, (2) dc_Categoriesview.asp, (3) dc_products…	NVD-CWE-Other	CVE-2005-2220	2024-08-8 08:15	2005-07-12	Show	GitHub Exploit DB Packet Storm

313978	-	incredible_interactive	dragonfly_commerce	Multiple SQL injection vulnerabilities in Dragonfly Commerce allows remote attackers to modify SQL statements and possibly execute arbitrary SQL commands via the (1) key parameter to dc_Categoriesvie…	NVD-CWE-Other	CVE-2005-2221	2024-08-8 08:15	2005-07-12	Show	GitHub Exploit DB Packet Storm

313979	-	sun	javamail	ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, allows remote attackers to view other users' e-mail attachments via a direct request to /mailboxesdir/username@doma…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-1753	2024-08-8 07:15	2005-12-31	Show	GitHub Exploit DB Packet Storm

313980	-	sun apache_tomcat	javamail apache_tomcat	JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, allows remote attackers to read arbitrary files via a full pathname in the argument to the Download parameter. NOTE: Sun and Apache d…	CWE-200 Information Exposure	CVE-2005-1754	2024-08-8 07:15	2005-12-31	Show	GitHub Exploit DB Packet Storm