Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254741 6.8 警告 アップル
サイバートラスト株式会社
Python Software Foundation
サン・マイクロシステムズ
レッドハット		 - Python の imageop.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-1679 2010-01-19 15:48 2008-04-22 Show GitHub Exploit DB Packet Storm
254742 5.8 警告 アップル
サイバートラスト株式会社
Python Software Foundation
サン・マイクロシステムズ
レッドハット		 - Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-4965 2010-01-19 15:47 2007-09-18 Show GitHub Exploit DB Packet Storm
254743 7.5 危険 アップル - Mac OS X 用の Java における任意のコードを実行される脆弱性 CWE-310
暗号の問題 		CVE-2009-2843 2010-01-18 12:22 2009-12-3 Show GitHub Exploit DB Packet Storm
254744 6.8 警告 アップル
GNU Project
サン・マイクロシステムズ
サイバートラスト株式会社
レッドハット		 - GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4131 2010-01-18 12:21 2007-08-23 Show GitHub Exploit DB Packet Storm
254745 4.6 警告 IBM - IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4150 2010-01-15 14:10 2009-12-2 Show GitHub Exploit DB Packet Storm
254746 2.1 注意 サン・マイクロシステムズ - Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4080 2010-01-15 14:10 2009-11-24 Show GitHub Exploit DB Packet Storm
254747 5 警告 サン・マイクロシステムズ - Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4075 2010-01-15 14:09 2009-11-23 Show GitHub Exploit DB Packet Storm
254748 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
254749 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
254750 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273781 - gns3 gns3 Untrusted search path vulnerability in GNS3 1.2.3 allows local users to gain privileges via a Trojan horse uuid.dll in an unspecified directory. NVD-CWE-Other
CVE-2015-2667 2024-11-21 11:27 2015-05-19 Show GitHub Exploit DB Packet Storm
273782 - huawei seq_analyst XML external entity (XXE) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter. NVD-CWE-Other
CVE-2015-2346 2024-11-21 11:27 2015-05-19 Show GitHub Exploit DB Packet Storm
273783 - concrete5 concrete5 Multiple cross-site scripting (XSS) vulnerabilities in concrete5 before 5.7.4 allow remote attackers to inject arbitrary web script or HTML via the (1) banned_word[] parameter to index.php/dashboard/… CWE-79
Cross-site Scripting 		CVE-2015-2250 2024-11-21 11:27 2015-05-16 Show GitHub Exploit DB Packet Storm
273784 - mozilla firefox The update implementation in Mozilla Firefox before 38.0 on Windows does not ensure that the pathname for updater.exe corresponds to the application directory, which might allow local users to gain p… CWE-17
Code 		CVE-2015-2720 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273785 - opensuse
mozilla 		opensuse
firefox 		The WebChannel.jsm module in Mozilla Firefox before 38.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive webchannel-response data via a crafted web site containing an IF… CWE-200
Information Exposure 		CVE-2015-2718 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273786 - mozilla
opensuse 		firefox
opensuse 		Integer overflow in libstagefright in Mozilla Firefox before 38.0 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and out-of-bounds read) vi… CWE-189
Numeric Errors 		CVE-2015-2717 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273787 - mozilla
novell
opensuse
oracle 		firefox
suse_linux_enterprise_server
suse_linux_enterprise_desktop
opensuse
suse_linux_enterprise_software_development_kit
thunderbird
solaris
firefox_esr 		Buffer overflow in the XML parser in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code by providing a large amou… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-2716 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273788 - mozilla
opensuse 		firefox
opensuse 		Race condition in the nsThreadManager::RegisterCurrentThread function in Mozilla Firefox before 38.0 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and… CWE-362
Race Condition 		CVE-2015-2715 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273789 - mozilla firefox Mozilla Firefox before 38.0 on Android does not properly restrict writing URL data to the Android logging system, which allows attackers to obtain sensitive information via a crafted application that… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2714 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm
273790 - novell
opensuse
mozilla 		suse_linux_enterprise_server
suse_linux_enterprise_desktop
opensuse
suse_linux_enterprise_software_development_kit
firefox
thunderbird
firefox_esr 		Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or c… NVD-CWE-Other
CVE-2015-2713 2024-11-21 11:27 2015-05-14 Show GitHub Exploit DB Packet Storm