Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254841 6.8 警告 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの node_process_command 関数における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2009-4498 2010-11-15 15:40 2009-09-10 Show GitHub Exploit DB Packet Storm
254842 6.9 警告 Mozilla Foundation - Windows 上で稼働する複数の Mozilla 製品における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3181 2010-11-11 15:07 2010-10-19 Show GitHub Exploit DB Packet Storm
254843 9.3 危険 アドビシステムズ - 複数の Adobe 製品における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-3153 2010-11-10 15:34 2010-10-18 Show GitHub Exploit DB Packet Storm
254844 4.3 警告 アドビシステムズ - Adobe RoboHelp および RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2886 2010-11-10 15:34 2010-10-18 Show GitHub Exploit DB Packet Storm
254845 4.3 警告 アドビシステムズ - Adobe RoboHelp および RoboHelp Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2885 2010-11-10 15:33 2010-10-18 Show GitHub Exploit DB Packet Storm
254846 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の browser-plugin 実装における任意のプログラムを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3749 2010-11-10 15:33 2010-10-15 Show GitHub Exploit DB Packet Storm
254847 10 危険 リアルネットワークス - RealNetworks RealPlayer の RichFX コンポーネントにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3748 2010-11-10 15:32 2010-10-15 Show GitHub Exploit DB Packet Storm
254848 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の ActiveX コントロールにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3751 2010-11-10 15:32 2010-10-15 Show GitHub Exploit DB Packet Storm
254849 10 危険 SAP - SAP BusinessObjects Axis2 におけるデフォルトパスワードの問題 CWE-255
証明書・パスワード管理 		CVE-2010-0219 2010-11-10 15:32 2010-10-14 Show GitHub Exploit DB Packet Storm
254850 4 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0781 2010-11-9 15:30 2010-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248291 8.8 HIGH
Network 		apache openmeetings Apache OpenMeetings 1.0.0 is vulnerable to SQL injection. This allows authenticated users to modify the structure of the existing query and leak the structure of other queries being made by the appli… CWE-89
SQL Injection 		CVE-2017-7681 2024-11-21 12:32 2017-07-17 Show GitHub Exploit DB Packet Storm
248292 7.5 HIGH
Network 		apache openmeetings Apache OpenMeetings 1.0.0 has an overly permissive crossdomain.xml file. This allows for flash content to be loaded from untrusted domains. NVD-CWE-noinfo
CVE-2017-7680 2024-11-21 12:32 2017-07-17 Show GitHub Exploit DB Packet Storm
248293 9.8 CRITICAL
Network 		apache openmeetings Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection. CWE-326
CWE-307
Inadequate Encryption Strength
mproper Restriction of Excessive Authentication Attempts 		CVE-2017-7673 2024-11-21 12:32 2017-07-17 Show GitHub Exploit DB Packet Storm
248294 8.8 HIGH
Network 		apache openmeetings Apache OpenMeetings 1.0.0 is vulnerable to Cross-Site Request Forgery (CSRF) attacks, XSS attacks, click-jacking, and MIME based attacks. CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2017-7666 2024-11-21 12:32 2017-07-17 Show GitHub Exploit DB Packet Storm
248295 10.0 CRITICAL
Network 		apache openmeetings Uploaded XML documents were not correctly validated in Apache OpenMeetings 3.1.0. CWE-611
XXE 		CVE-2017-7664 2024-11-21 12:32 2017-07-17 Show GitHub Exploit DB Packet Storm
248296 6.1 MEDIUM
Network 		apache openmeetings Both global and Room chat are vulnerable to XSS attack in Apache OpenMeetings 3.2.0. CWE-79
Cross-site Scripting 		CVE-2017-7663 2024-11-21 12:32 2017-07-17 Show GitHub Exploit DB Packet Storm
248297 5.9 MEDIUM
Network 		apache struts If an application allows enter an URL in a form field and built-in URLValidator is used, it is possible to prepare a special URL which will be used to overload server process when performing validati… CWE-20
 Improper Input Validation  		CVE-2017-7672 2024-11-21 12:32 2017-07-14 Show GitHub Exploit DB Packet Storm
248298 7.5 HIGH
Network 		f5
puppet
apple 		nginx
puppet_enterprise
xcode 		Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered … - CVE-2017-7529 2024-11-21 12:32 2017-07-13 Show GitHub Exploit DB Packet Storm
248299 6.1 MEDIUM
Network 		apache spark In Apache Spark before 2.2.0, it is possible for an attacker to take advantage of a user's trust in the server to trick them into visiting a link that points to a shared Spark cluster and submits dat… CWE-79
Cross-site Scripting 		CVE-2017-7678 2024-11-21 12:32 2017-07-12 Show GitHub Exploit DB Packet Storm
248300 7.5 HIGH
Network 		ismartalarm cubeone_firmware iSmartAlarm cube devices allow Denial of Service. Sending a SYN flood on port 12345 will freeze the "cube" and it will stop responding. CWE-20
 Improper Input Validation  		CVE-2017-7730 2024-11-21 12:32 2017-07-12 Show GitHub Exploit DB Packet Storm