Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254211	10	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-3384	2010-02-25 12:33	2009-11-11	Show	GitHub Exploit DB Packet Storm

254212	7.1	危険	Linux レッドハット	-	Linux kernel の icmp_send 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-0778	2010-02-25 12:33	2009-03-12	Show	GitHub Exploit DB Packet Storm

254213	7.2	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux Kernel の audit_syscall_entry 関数におけるシステムコール監査設定を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-0834	2010-02-25 12:33	2009-03-6	Show	GitHub Exploit DB Packet Storm

254214	7.2	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の hrtimer_start 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2007-5966	2010-02-25 12:31	2007-12-20	Show	GitHub Exploit DB Packet Storm

254215	4.3	警告	シスコシステムズ	-	Cisco Secure Desktop の +CSCOT+/translation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0440	2010-02-24 12:27	2010-02-1	Show	GitHub Exploit DB Packet Storm

254216	6.2	警告	ヒューレット・パッカード	-	HP ECMT におけるデータベースにアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2009-4184	2010-02-24 12:27	2009-10-5	Show	GitHub Exploit DB Packet Storm

254217	4.6	警告	アップル	-	Apple iPhone OS のリカバリモードにおける任意のデータを読まれる脆弱性	CWE-399 リソース管理の問題	CVE-2010-0038	2010-02-24 12:26	2010-02-2	Show	GitHub Exploit DB Packet Storm

254218	5	警告	サン・マイクロシステムズ VMware	-	Sun Java SE におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-3885	2010-02-24 12:26	2009-11-9	Show	GitHub Exploit DB Packet Storm

254219	7.5	危険	サン・マイクロシステムズ VMware	-	JDK および JRE の Java Update 機能における古いバージョンの脆弱性を利用される脆弱性	CWE-Other その他	CVE-2009-3864	2010-02-24 12:26	2009-11-3	Show	GitHub Exploit DB Packet Storm

254220	5	警告	アドビシステムズ	-	Adobe ColdFusion のデフォルト設定におけるコレクションのメタデータを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0185	2010-02-24 12:25	2010-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
300191	6.5	MEDIUM Network	freedesktop debian	poppler debian_linux	An integer overflow condition in poppler before 0.16.3 can occur when parsing CharCodes for fonts.	CWE-190 Integer Overflow or Wraparound	CVE-2010-4653	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

300192	9.8	CRITICAL Network	debian offlineimap	debian_linux offlineimap	offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies.	CWE-295 Improper Certificate Validation	CVE-2010-4533	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

300193	5.9	MEDIUM Network	debian offlineimap	debian_linux offlineimap	offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks.	CWE-295 Improper Certificate Validation	CVE-2010-4532	2024-11-21 10:21	2019-11-14	Show	GitHub Exploit DB Packet Storm

300194	-		ghostscript	ghostscript	Untrusted search path vulnerability in Ghostscript 8.62 allows local users to execute arbitrary PostScript code via a Trojan horse Postscript library file in Encoding/ under the current working direc…	CWE-94 Code Injection	CVE-2010-4820	2024-11-21 10:21	2014-10-27	Show	GitHub Exploit DB Packet Storm

300195	-		google	android	Android OS before 2.2 does not display the correct SSL certificate in certain cases, which might allow remote attackers to spoof trusted web sites via a web page containing references to external sou…	CWE-310 Cryptographic Issues	CVE-2010-4832	2024-11-21 10:21	2014-05-14	Show	GitHub Exploit DB Packet Storm

300196	-		perl	perl	The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0, 5.14.0, and other versions, when running with debugging enabled, allows context-dependent attackers to cause a denial of service (ass…	CWE-20 Improper Input Validation	CVE-2010-4777	2024-11-21 10:21	2014-02-11	Show	GitHub Exploit DB Packet Storm

300197	-		phpmyfaq	phpmyfaq	Cross-site scripting (XSS) vulnerability in phpMyFAQ before 2.6.9 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to index.php.	CWE-79 Cross-site Scripting	CVE-2010-4821	2024-11-21 10:21	2012-10-23	Show	GitHub Exploit DB Packet Storm

300198	-		silverstripe	silverstripe	SQL injection vulnerability in the augmentSQL method in core/model/Translatable.php in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4, when the Translatable extension is enabled, allows remo…	CWE-89 SQL Injection	CVE-2010-4824	2024-11-21 10:21	2012-09-18	Show	GitHub Exploit DB Packet Storm

300199	-		silverstripe	silverstripe	Cross-site scripting (XSS) vulnerability in the httpError method in sapphire/core/control/RequestHandler.php in SilverStripe 2.3.x before 2.3.10 and 2.4.x before 2.4.4, when custom error handling is …	CWE-79 Cross-site Scripting	CVE-2010-4823	2024-11-21 10:21	2012-09-18	Show	GitHub Exploit DB Packet Storm

300200	-		silverstripe	silverstripe	core/model/MySQLDatabase.php in SilverStripe 2.4.x before 2.4.4, when the site is running in "live mode," allows remote attackers to obtain the SQL queries for a page via the showqueries and ajax par…	CWE-200 Information Exposure	CVE-2010-4822	2024-11-21 10:21	2012-09-18	Show	GitHub Exploit DB Packet Storm