Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255401 7.8 危険 アップル - Apple Mac OS X の Mail における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2010-0525 2010-04-15 18:36 2010-03-29 Show GitHub Exploit DB Packet Storm
255402 4 警告 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL の mysqld におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2009-4019 2010-04-15 18:16 2009-11-30 Show GitHub Exploit DB Packet Storm
255403 6.8 警告 The PHP Group
アップル		 - PHP の posix_mkfifo 関数における open_basedir の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3558 2010-04-15 18:16 2009-11-23 Show GitHub Exploit DB Packet Storm
255404 4.4 警告 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL における権限チェックを回避される脆弱性 CWE-59
リンク解釈の問題 		CVE-2009-4030 2010-04-15 18:16 2009-11-5 Show GitHub Exploit DB Packet Storm
255405 2.6 注意 アップル
サイバートラスト株式会社
MySQL AB
レッドハット		 - MySQL のコマンドラインクライアントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4456 2010-04-15 18:15 2008-10-6 Show GitHub Exploit DB Packet Storm
255406 10 危険 アップル - Apple Mac OS X の Mail における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0508 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
255407 6.8 警告 アップル - Apple Mac OS X の画像 RAW におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0507 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
255408 6.8 警告 アップル - Apple Mac OS X の画像 RAW におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0506 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
255409 6.8 警告 アップル - Apple Mac OS X の ImageIO における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0505 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
255410 7.5 危険 アップル - Apple Mac OS X の iChat サーバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0504 2010-04-14 17:11 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287561 - cisco unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971 		The image-upgrade functionality on Cisco 9900 Unified IP phones allows local users to gain privileges by placing shell commands in an unspecified parameter, aka Bug ID CSCuh10334. CWE-20
 Improper Input Validation  		CVE-2013-5533 2024-11-21 10:57 2013-10-11 Show GitHub Exploit DB Packet Storm
287562 - cisco unified_ip_phones_9900_series_firmware
unified_ip_phone_9951
unified_ip_phone_9971 		Buffer overflow in the web-application interface on Cisco 9900 IP phones allows remote attackers to cause a denial of service (webapp interface outage) via long values in unspecified fields, aka Bug … CWE-20
 Improper Input Validation  		CVE-2013-5532 2024-11-21 10:57 2013-10-11 Show GitHub Exploit DB Packet Storm
287563 - cisco unified_communications_manager Directory traversal vulnerability in the Tomcat administrative web interface in Cisco Unified Communications Manager allows remote authenticated users to read arbitrary files via directory traversal … CWE-22
Path Traversal 		CVE-2013-5528 2024-11-21 10:57 2013-10-11 Show GitHub Exploit DB Packet Storm
287564 - cisco ios
ios_xe 		The OSPF functionality in Cisco IOS and IOS XE allows remote attackers to cause a denial of service (device reload) via crafted options in an LSA type 11 packet, aka Bug ID CSCui21030. CWE-20
 Improper Input Validation  		CVE-2013-5527 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
287565 - cisco unified_ip_phone_9951
unified_ip_phone_9971 		Cisco 9900 fourth-generation IP phones do not properly perform SDP negotiation, which allows remote attackers to cause a denial of service (device reboot) via crafted SDP packets, aka Bug ID CSCuf066… CWE-20
 Improper Input Validation  		CVE-2013-5526 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
287566 - cisco identity_services_engine_software SQL injection vulnerability in the web framework in Cisco Identity Services Engine (ISE) 1.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, a… CWE-89
SQL Injection 		CVE-2013-5525 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
287567 - cisco identity_services_engine_software Cross-site scripting (XSS) vulnerability in the troubleshooting page in Cisco Identity Services Engine (ISE) 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an unsp… CWE-79
Cross-site Scripting 		CVE-2013-5524 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
287568 - cisco identity_services_engine_software The Sponsor Portal in Cisco Identity Services Engine (ISE) 1.2 and earlier does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attack… CWE-20
 Improper Input Validation  		CVE-2013-5523 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
287569 - cisco ios The remember feature in the DHCP server in Cisco IOS allows remote attackers to cause a denial of service (device reload) by acquiring a lease and then sending a DHCPRELEASE message, aka Bug ID CSCuh… NVD-CWE-noinfo
CVE-2013-5499 2024-11-21 10:57 2013-10-10 Show GitHub Exploit DB Packet Storm
287570 - joomla joomla\! administrator/components/com_media/helpers/media.php in the media manager in Joomla! 2.5.x before 2.5.14 and 3.x before 3.1.5 allows remote authenticated users or remote attackers to bypass intended … CWE-20
 Improper Input Validation  		CVE-2013-5576 2024-11-21 10:57 2013-10-9 Show GitHub Exploit DB Packet Storm