Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255321 6.8 警告 アップル - Apple Mac OS X の Apple Type Services における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1831 2010-11-25 15:17 2010-11-15 Show GitHub Exploit DB Packet Storm
255322 5 警告 アップル - Apple Mac OS X の AFP Server における共有名を列挙される脆弱性 CWE-DesignError
CVE-2010-1830 2010-11-25 15:17 2010-11-15 Show GitHub Exploit DB Packet Storm
255323 6 警告 アップル - Apple Mac OS X の AFP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1829 2010-11-25 15:17 2010-11-15 Show GitHub Exploit DB Packet Storm
255324 5 警告 アップル - Apple Mac OS X の AFP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1828 2010-11-25 15:17 2010-11-15 Show GitHub Exploit DB Packet Storm
255325 4.3 警告 アップル - Apple Mac OS X の Time Machine における重要な情報を取得される脆弱性 CWE-DesignError
CVE-2010-1803 2010-11-25 15:16 2010-11-15 Show GitHub Exploit DB Packet Storm
255326 7.5 危険 アップル - Apple Mac OS X の OpenSSL における X.509 証明書の認証を回避される脆弱性 CWE-310
暗号の問題 		CVE-2010-1378 2010-11-25 15:15 2010-11-12 Show GitHub Exploit DB Packet Storm
255327 4.9 警告 アップル - Apple Mac OS X の hfs 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-0105 2010-11-25 15:15 2010-04-27 Show GitHub Exploit DB Packet Storm
255328 9.3 危険 アップル
アドビシステムズ
レッドハット		 - Adobe Flash の ActionScript の処理に脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0209 2010-11-25 15:14 2010-08-11 Show GitHub Exploit DB Packet Storm
255329 9.3 危険 アップル
アドビシステムズ
ターボリナックス
レッドハット		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-399
CWE-noinfo
CVE-2009-3793 2010-11-25 15:13 2010-06-10 Show GitHub Exploit DB Packet Storm
255330 6.8 警告 アップル
GNU Project
ターボリナックス
サイバートラスト株式会社
レッドハット		 - GNU gzip における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2010-0001 2010-11-25 15:12 2010-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275501 8.8 HIGH
Network 		genexia drgos The Parental Control panel in Genexis devices with DRGOS before 1.14.1 allows remote authenticated users to execute arbitrary CLI commands via the (1) start_hour, (2) start_minute, (3) end_hour, (4) … CWE-77
Command Injection 		CVE-2015-3441 2024-11-21 11:29 2017-01-6 Show GitHub Exploit DB Packet Storm
275502 5.3 MEDIUM
Network 		apache tika Apache Tika server (aka tika-server) in Apache Tika 1.9 might allow remote attackers to read arbitrary files via the HTTP fileUrl header. CWE-200
Information Exposure 		CVE-2015-3271 2024-11-21 11:29 2016-12-16 Show GitHub Exploit DB Packet Storm
275503 7.5 HIGH
Network 		x.org xorg-server The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutI… CWE-369
 Divide By Zero 		CVE-2015-3418 2024-11-21 11:29 2016-12-14 Show GitHub Exploit DB Packet Storm
275504 7.8 HIGH
Local 		linux linux_kernel mm/memory.c in the Linux kernel before 4.1.4 mishandles anonymous pages, which allows local users to gain privileges or cause a denial of service (page tainting) via a crafted application that trigge… CWE-20
 Improper Input Validation  		CVE-2015-3288 2024-11-21 11:29 2016-10-17 Show GitHub Exploit DB Packet Storm
275505 7.5 HIGH
Network 		google android packages/SystemUI/src/com/android/systemui/power/PowerNotificationWarnings.java in Android 5.x allows attackers to bypass a DEVICE_POWER permission requirement via a broadcast intent with the PNW.sto… CWE-284
Improper Access Control 		CVE-2015-3854 2024-11-21 11:29 2016-08-8 Show GitHub Exploit DB Packet Storm
275506 5.3 MEDIUM
Network 		php
redhat 		php
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux_server_eus
enterprise_linux_hpc_node_eus
enterprise_l… 		PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read arbitrary files via crafted input to an ap… CWE-200
CWE-254
Information Exposure
 7PK - Security Features 		CVE-2015-3412 2024-11-21 11:29 2016-05-16 Show GitHub Exploit DB Packet Storm
275507 6.5 MEDIUM
Network 		redhat
php 		enterprise_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux_server_eus
enterprise_linux_hpc_node_eus 		PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to read or write to arbitrary files via crafted in… CWE-20
 Improper Input Validation  		CVE-2015-3411 2024-11-21 11:29 2016-05-16 Show GitHub Exploit DB Packet Storm
275508 6.1 MEDIUM
Network 		apache ofbiz Cross-site scripting (XSS) vulnerability in the DisplayEntityField.getDescription method in ModelFormField.java in Apache OFBiz before 12.04.06 and 13.07.x before 13.07.03 allows remote attackers to … CWE-79
Cross-site Scripting 		CVE-2015-3268 2024-11-21 11:29 2016-04-12 Show GitHub Exploit DB Packet Storm
275509 6.1 MEDIUM
Network 		moodle moodle Multiple cross-site scripting (XSS) vulnerabilities in the SCORM module in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allow remote attackers to inject arbit… CWE-79
Cross-site Scripting 		CVE-2015-3275 2024-11-21 11:29 2016-02-22 Show GitHub Exploit DB Packet Storm
275510 6.1 MEDIUM
Network 		moodle moodle Cross-site scripting (XSS) vulnerability in the user_get_user_details function in user/lib.php in Moodle through 2.6.11, 2.7.x before 2.7.9, 2.8.x before 2.8.7, and 2.9.x before 2.9.1 allows remote a… CWE-79
Cross-site Scripting 		CVE-2015-3274 2024-11-21 11:29 2016-02-22 Show GitHub Exploit DB Packet Storm