Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254651	7.1	危険	アップルアドビシステムズ	-	Windows 上で稼動する Adobe Flash Player および Adobe AIR の Flash Player の ActiveX コントロールにおけるローカルファイルのファイル名を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3951	2010-02-10 13:36	2009-12-8	Show	GitHub Exploit DB Packet Storm

254652	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2009-3800	2010-02-10 13:36	2009-12-8	Show	GitHub Exploit DB Packet Storm

254653	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR の Verifier::parseExceptionHandlers 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3799	2010-02-10 13:36	2009-12-8	Show	GitHub Exploit DB Packet Storm

254654	9.3	危険	アップルアドビシステムズサン・マイクロシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3798	2010-02-10 13:35	2009-12-8	Show	GitHub Exploit DB Packet Storm

254655	9.3	危険	マイクロソフト	-	Microsoft Windows XP で提供される Adobe Flash Player 6 における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2010-0378	2010-02-9 13:56	2010-01-12	Show	GitHub Exploit DB Packet Storm

254656	9.3	危険	マイクロソフト	-	Microsoft Windows の Embedded OpenType フォントエンジンにおける任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0018	2010-02-9 13:55	2010-01-12	Show	GitHub Exploit DB Packet Storm

254657	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat におけるファイル拡張子の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3461	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

254658	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-3460	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

254659	4.3	警告	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2009-2995	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

254660	9.3	危険	サン・マイクロシステムズアドビシステムズ	-	Adobe Acrobat における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-2989	2010-02-9 13:55	2009-10-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
272201	7.5	HIGH Network	google	android	packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java in Android 5.x allows attackers to bypass a DEVICE_POWER permission requirement via a broadcast intent with the PNW.sto…	CWE-284 Improper Access Control	CVE-2015-3854	2024-11-21 11:29	2016-08-8	Show	GitHub Exploit DB Packet Storm

272202	5.3	MEDIUM Network	php redhat	php enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_server_eus enterprise_linux_hpc_node_eus enterprise_l…	PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read arbitrary files via crafted input to an ap…	CWE-200 CWE-254 Information Exposure 7PK - Security Features	CVE-2015-3412	2024-11-21 11:29	2016-05-16	Show	GitHub Exploit DB Packet Storm

272203	6.5	MEDIUM Network	redhat php	enterprise_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_server_eus enterprise_linux_hpc_node_eus	PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted in…	CWE-20 Improper Input Validation	CVE-2015-3411	2024-11-21 11:29	2016-05-16	Show	GitHub Exploit DB Packet Storm

272204	6.1	MEDIUM Network	apache	ofbiz	Cross-site scripting (XSS) vulnerability in the DisplayEntityField.getDescription method in ModelFormField.java in Apache OFBiz before 12.04.06 and 13.07.x before 13.07.03 allows remote attackers to …	CWE-79 Cross-site Scripting	CVE-2015-3268	2024-11-21 11:29	2016-04-12	Show	GitHub Exploit DB Packet Storm

272205	6.1	MEDIUM Network	moodle	moodle	Multiple cross-site scripting (XSS) vulnerabilities in the SCORM module in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allow remote attackers to inject arbit…	CWE-79 Cross-site Scripting	CVE-2015-3275	2024-11-21 11:29	2016-02-22	Show	GitHub Exploit DB Packet Storm

272206	6.1	MEDIUM Network	moodle	moodle	Cross-site scripting (XSS) vulnerability in the user_get_user_details function in user/lib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote a…	CWE-79 Cross-site Scripting	CVE-2015-3274	2024-11-21 11:29	2016-02-22	Show	GitHub Exploit DB Packet Storm

272207	4.3	MEDIUM Network	moodle	moodle	mod/forum/post.php in Moodle 2.9.x before 2.9.1 does not consider the mod/forum:canposttomygroups capability before authorizing "Post a copy to all groups" actions, which allows remote authenticated …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3273	2024-11-21 11:29	2016-02-22	Show	GitHub Exploit DB Packet Storm

272208	7.4	HIGH Network	moodle	moodle	Open redirect vulnerability in the clean_param function in lib/moodlelib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote attackers to redire…	NVD-CWE-Other	CVE-2015-3272	2024-11-21 11:29	2016-02-22	Show	GitHub Exploit DB Packet Storm

272209	-		f5	big-iq_security big-ip_application_acceleration_manager big-ip_wan_optimization_manager big-iq_adc big-ip_application_security_manager big-ip_global_traffic_manager big-iq_device	The iControl API in F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.0 before 11.5.3 HF2 and 11.6.0 before 11.6.0 HF6, BIG-IP AAM 11.4.0 before 11.5.3 HF2 and 11.6.0 before 11.6…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3628	2024-11-21 11:29	2015-12-8	Show	GitHub Exploit DB Packet Storm

272210	7.5	HIGH Network	openldap oracle redhat	openldap linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_hpc_node enterprise_linux_server_tus enterprise_linux_server_aus …	The nss_parse_ciphers function in libraries/libldap/tls_m.c in OpenLDAP does not properly parse OpenSSL-style multi-keyword mode cipher strings, which might cause a weaker than intended cipher to be …	NVD-CWE-noinfo	CVE-2015-3276	2024-11-21 11:29	2015-12-8	Show	GitHub Exploit DB Packet Storm