Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255081 4.3 警告 オラクル - Oracle Application Server の J2EE コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0070 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
255082 5 警告 オラクル - Oracle Application Server の J2EE コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0067 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
255083 5 警告 オラクル - Oracle Application Server の Access Manager Identity Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0066 2010-02-15 19:31 2010-01-12 Show GitHub Exploit DB Packet Storm
255084 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1385 2010-02-15 11:03 2009-06-4 Show GitHub Exploit DB Packet Storm
255085 4.6 警告 サイバートラスト株式会社
Todd C. Miller		 - sudo の Perl スクリプト実行時における権限昇格の脆弱性 - CVE-2005-4158 2010-02-15 11:03 2005-11-8 Show GitHub Exploit DB Packet Storm
255086 1 注意 オラクル - Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3412 2010-02-12 12:22 2010-01-12 Show GitHub Exploit DB Packet Storm
255087 3.2 注意 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3413 2010-02-12 12:22 2010-01-12 Show GitHub Exploit DB Packet Storm
255088 3.6 注意 オラクル - Oracle Database の RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3410 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
255089 4 警告 オラクル - Oracle Database の Logical Standby コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-1996 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
255090 4.9 警告 オラクル - Oracle Database の Oracle Spatial コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3414 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258231 6.1 MEDIUM
Network 		mapbox mapbox.js Mapbox.js versions 1.x prior to 1.6.6 and 2.x prior to 2.2.4 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON name and map share control CWE-79
Cross-site Scripting 		CVE-2017-1000043 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258232 6.1 MEDIUM
Network 		mapbox_project mapbox Mapbox.js versions 1.x prior to 1.6.5 and 2.x prior to 2.1.7 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON Name. CWE-79
Cross-site Scripting 		CVE-2017-1000042 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258233 9.8 CRITICAL
Network 		framasoft framadate Framadate version 1.0 is vulnerable to Formula Injection in the CSV Export resulting possible Information Disclosure and Code Execution CWE-20
 Improper Input Validation  		CVE-2017-1000039 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258234 6.1 MEDIUM
Network 		relevanssi relevanssi WordPress plugin Relevanssi version 3.5.7.1 is vulnerable to stored XSS resulting in attacker being able to execute JavaScript on the affected site CWE-79
Cross-site Scripting 		CVE-2017-1000038 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258235 9.8 CRITICAL
Network 		rvm_project rvm RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD… NVD-CWE-noinfo
CVE-2017-1000037 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258236 6.1 MEDIUM
Network 		tt-rss tiny_tiny_rss Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack CWE-79
Cross-site Scripting 		CVE-2017-1000035 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258237 8.1 HIGH
Network 		akka akka Akka versions <=2.4.16 and 2.5-M1 are vulnerable to a java deserialization attack in its Remoting component resulting in remote code execution in the context of the ActorSystem. CWE-502
 Deserialization of Untrusted Data 		CVE-2017-1000034 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258238 6.1 MEDIUM
Network 		vospari_forms_project vospari_forms Wordpress Plugin Vospari Forms version < 1.4 is vulnerable to a reflected cross site scripting in the form submission resulting in javascript code execution in the context on the current user. CWE-79
Cross-site Scripting 		CVE-2017-1000033 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258239 6.1 MEDIUM
Network 		cacti cacti Cross-Site scripting (XSS) vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parent_id parameter to tree.php and drp_action parameter to data_sourc… CWE-79
Cross-site Scripting 		CVE-2017-1000032 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
258240 8.8 HIGH
Network 		cacti cacti SQL injection vulnerability in graph_templates_inputs.php in Cacti 0.8.8b allows remote attackers to execute arbitrary SQL commands via the graph_template_input_id and graph_template_id parameters. CWE-89
SQL Injection 		CVE-2017-1000031 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm