Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255341 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
255342 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
255343 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
255344 10 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の Provider クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-2721 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
255345 5 警告 有限会社シースリー - WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0348 2010-01-12 15:01 2010-01-12 Show GitHub Exploit DB Packet Storm
255346 4.3 警告 有限会社シースリー - WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0349 2010-01-12 15:00 2010-01-12 Show GitHub Exploit DB Packet Storm
255347 10 危険 サイバートラスト株式会社
XEmacs		 - XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-2688 2010-01-12 14:48 2009-08-5 Show GitHub Exploit DB Packet Storm
255348 6.8 警告 IBM - IBM WebSphere Application Server (WAS) におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-2746 2010-01-12 14:48 2009-11-13 Show GitHub Exploit DB Packet Storm
255349 5 警告 アップル - Apple Safari におけるローカル HTML ファイルを読まれる脆弱性 CWE-Other
その他 		CVE-2009-2842 2010-01-7 12:09 2009-11-11 Show GitHub Exploit DB Packet Storm
255350 5.5 警告 シックス・アパート株式会社 - Movable Type におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-01-6 15:01 2010-01-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251551 7.8 HIGH
Local 		netgear m4300-28g_firmware
m4300-52g_firmware
m4300-28g-poe\+_firmware
m4300-52g-poe\+_firmware
m4300-8x8f_firmware
m4300-12x12f_firmware
m4300-24x24f_firmware
m4300-24x_firmware
m430… 		Certain NETGEAR devices are affected by privilege escalation. This affects M4300-28G before 12.0.2.15, M4300-52G before 12.0.2.15, M4300-28G-POE+ before 12.0.2.15, M4300-52G-POE+ before 12.0.2.15, M4… CWE-269
 Improper Privilege Management 		CVE-2017-18838 2024-11-21 12:21 2020-04-21 Show GitHub Exploit DB Packet Storm
251552 8.4 HIGH
Local 		netgear d6220_firmware
d6400_firmware
d8500_firmware
r6250_firmware
r6400_firmware
r6700_firmware
r6900_firmware
r6900p_firmware
r7000_firmware
r7000p_firmware
r7100lg_firmware<… 		Certain NETGEAR devices are affected by authentication bypass. This affects D6220 before 1.0.0.26, D6400 before 1.0.0.60, D8500 before 1.0.3.29, R6250 before 1.0.4.12, R6400 before 1.01.24, R6400v2 b… CWE-287
Improper Authentication 		CVE-2017-18850 2024-11-21 12:21 2020-04-20 Show GitHub Exploit DB Packet Storm
251553 4.3 MEDIUM
Network 		ibm marketing_platform IBM Marketing Platform 9.1.0, 9.1.2, 10.0, and 10.1 exposes sensitive information in the headers that could be used by an authenticated attacker in further attacks against the system. IBM X-Force ID:… CWE-200
Information Exposure 		CVE-2017-1107 2024-11-21 12:21 2019-06-19 Show GitHub Exploit DB Packet Storm
251554 5.4 MEDIUM
Network 		ibm bigfix_compliance IBM BigFix Compliance 1.7 through 1.9.91 (TEMA SUAv1 SCA SCM) is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's… CWE-74
Injection 		CVE-2017-1202 2024-11-21 12:21 2019-02-6 Show GitHub Exploit DB Packet Storm
251555 5.9 MEDIUM
Network 		ibm bigfix_compliance IBM BigFix Compliance 1.7 through 1.9.91 (TEMA SUAv1 SCA SCM) does not validate, or incorrectly validates, a certificate.This weakness might allow an attacker to spoof a trusted entity by using a man… CWE-295
Improper Certificate Validation  		CVE-2017-1200 2024-11-21 12:21 2019-02-6 Show GitHub Exploit DB Packet Storm
251556 5.3 MEDIUM
Network 		ibm bigfix_compliance IBM BigFix Compliance 1.7 through 1.9.91 (TEMA SUAv1 SCA SCM) stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs v… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2017-1198 2024-11-21 12:21 2019-02-6 Show GitHub Exploit DB Packet Storm
251557 5.3 MEDIUM
Network 		ibm bigfix_compliance IBM BigFix Compliance 1.7 through 1.9.91 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 123429. CWE-200
Information Exposure 		CVE-2017-1177 2024-11-21 12:21 2019-02-6 Show GitHub Exploit DB Packet Storm
251558 5.3 MEDIUM
Network 		ibm security_guardium IBM Security Guardium 10.0 and 10.5 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer h… CWE-200
Information Exposure 		CVE-2017-1272 2024-11-21 12:21 2018-12-18 Show GitHub Exploit DB Packet Storm
251559 5.9 MEDIUM
Network 		ibm security_guardium IBM Security Guardium 10.0, 10.0.1, 10.1, 10.1.2, 10.1.3, 10.1.4, and 10.5 does not validate, or incorrectly validates, a certificate. This weakness might allow an attacker to spoof a trusted entity … CWE-295
Improper Certificate Validation  		CVE-2017-1265 2024-11-21 12:21 2018-12-18 Show GitHub Exploit DB Packet Storm
251560 7.5 HIGH
Network 		ibm security_guardium IBM Security Guardium 10 and 10.5 uses a one-way cryptographic hash against an input that should not be reversible, such as a password, but the software does not also use a salt as part of the input.… CWE-310
Cryptographic Issues 		CVE-2017-1268 2024-11-21 12:21 2018-12-14 Show GitHub Exploit DB Packet Storm