Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254991	7.6	危険	Mozilla Foundation	-	Mozilla Firefox の nsDocument::MaybePreLoadImage 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0168	2010-04-6 16:49	2010-03-23	Show	GitHub Exploit DB Packet Storm

254992	9.3	危険	Mozilla Foundation	-	Mozilla Firefox の imgContainer::InternalAddFrameHelper 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0164	2010-04-6 16:49	2010-03-23	Show	GitHub Exploit DB Packet Storm

254993	4.3	警告	Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0171	2010-04-5 14:54	2010-03-23	Show	GitHub Exploit DB Packet Storm

254994	4.3	警告	Mozilla Foundation	-	Mozilla Firefox における同一生成元ポリシーを回避される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0170	2010-04-5 14:53	2010-03-23	Show	GitHub Exploit DB Packet Storm

254995	7.5	危険	Heartlogic	-	HL-SiteManager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1331	2010-04-2 15:02	2010-04-2	Show	GitHub Exploit DB Packet Storm

254996	9.3	危険	Mozilla Foundation	-	Mozilla Firefox の Web Open Fonts Format デコーダにおける整数オーバーフローの脆弱性	CWE-noinfo 情報不足	CVE-2010-1028	2010-04-2 14:05	2010-03-19	Show	GitHub Exploit DB Packet Storm

254997	5	警告	富士通アクセラテクノロジ	-	Accela BizSearch のローカル収集におけるアクセス権限に関する脆弱性	CWE-200 情報漏えい	-	2010-04-2 14:05	2010-03-10	Show	GitHub Exploit DB Packet Storm

254998	1.9	注意	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel における SCSI ホストの属性に任意の変更を加えられる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3556	2010-04-2 14:02	2010-01-19	Show	GitHub Exploit DB Packet Storm

254999	10	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の e1000e ドライバにおけるイーサネットフレームの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2009-4538	2010-04-2 14:02	2010-01-12	Show	GitHub Exploit DB Packet Storm

255000	6.6	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の poll_mode_io ファイルにおけるドライバの I/O モードを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3939	2010-04-2 14:00	2009-11-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267911	7.5	HIGH Network	php debian	php debian_linux	Integer overflow in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory consumption or applic…	CWE-190 Integer Overflow or Wraparound	CVE-2016-10159	2024-11-21 11:43	2017-01-25	Show	GitHub Exploit DB Packet Storm

267912	7.5	HIGH Network	php	php	The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via …	CWE-189 Numeric Errors	CVE-2016-10158	2024-11-21 11:43	2017-01-25	Show	GitHub Exploit DB Packet Storm

267913	9.8	CRITICAL Network	akamai	netsession	Akamai NetSession 1.9.3.1 is vulnerable to DLL Hijacking: it tries to load CSUNSAPI.dll without supplying the complete path. The issue is aggravated because the mentioned DLL is missing from the inst…	CWE-94 Code Injection	CVE-2016-10157	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

267914	7.8	HIGH Local	systemd_project	systemd	A flaw in systemd v228 in /src/basic/fs-util.c caused world writable suid files to be created when using the systemd timers features, allowing local attackers to escalate their privileges to root. Th…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-10156	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

267915	5.9	MEDIUM Network	hiteksoftware	automize	Information Disclosure can occur in sshProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. This allows an attacker to recover encrypted passwords for SSH/SFTP…	CWE-326 Inadequate Encryption Strength	CVE-2016-10104	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

267916	8.1	HIGH Network	hiteksoftware	automize	Information Disclosure can occur in encryptionProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. This allows an attacker to recover encrypted passwords for G…	CWE-255 CWE-326 Credentials Management Inadequate Encryption Strength	CVE-2016-10103	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

267917	8.1	HIGH Network	hiteksoftware	automize	hitek.jar in Hitek Software's Automize uses weak encryption when encrypting SSH/SFTP and Encryption profile passwords. This allows an attacker to retrieve the encrypted passwords from sshProfiles.jsd…	CWE-326 Inadequate Encryption Strength	CVE-2016-10102	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

267918	8.1	HIGH Network	hiteksoftware	automize	Information Disclosure can occur in Hitek Software's Automize 10.x and 11.x passManager.jsd. Users have the Read attribute, which allows an attacker to recover the encrypted password to access the Pa…	CWE-255 CWE-326 Credentials Management Inadequate Encryption Strength	CVE-2016-10101	2024-11-21 11:43	2017-01-23	Show	GitHub Exploit DB Packet Storm

267919	7.5	HIGH Network	tiki	tikiwiki_cms\/groupware	A vulnerability in Tiki Wiki CMS 15.2 could allow a remote attacker to read arbitrary files on a targeted system via a crafted pathname in a banner URL field.	CWE-200 Information Exposure	CVE-2016-10143	2024-11-21 11:43	2017-01-20	Show	GitHub Exploit DB Packet Storm

267920	7.8	HIGH Local	tqdm_project	tqdm	The tqdm._version module in tqdm versions 4.4.1 and 4.10 allows local users to execute arbitrary code via a crafted repo with a malicious git log in the current working directory.	CWE-17 Code	CVE-2016-10075	2024-11-21 11:43	2017-01-20	Show	GitHub Exploit DB Packet Storm