Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255431	3.5	注意	オラクル	-	Oracle Fusion Middleware の Application Server Control コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2381	2010-07-30 17:43	2010-07-13	Show	GitHub Exploit DB Packet Storm

255432	3.5	注意	オラクル	-	Oracle Fusion Middleware の Application Server Control コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0081	2010-07-30 17:42	2010-07-13	Show	GitHub Exploit DB Packet Storm

255433	4.3	警告	オラクル	-	Oracle Fusion Middleware の Wireless コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0835	2010-07-30 17:42	2010-07-13	Show	GitHub Exploit DB Packet Storm

255434	6.4	警告	オラクル	-	Oracle Fusion Middleware の WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2375	2010-07-30 17:42	2010-07-13	Show	GitHub Exploit DB Packet Storm

255435	9.3	危険	マイクロソフト	-	Microsoft Office Outlook における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0266	2010-07-30 17:42	2010-07-13	Show	GitHub Exploit DB Packet Storm

255436	9.3	危険	マイクロソフト	-	Microsoft Office Access の FieldList の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1881	2010-07-30 17:41	2010-07-13	Show	GitHub Exploit DB Packet Storm

255437	9.3	危険	マイクロソフト	-	Microsoft Office Access の Microsoft Access Wizard Controls における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0814	2010-07-30 17:41	2010-07-13	Show	GitHub Exploit DB Packet Storm

255438	2.1	注意	日立 CA Technologies	-	Windows 上で稼働する CA ARCserve Backup における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-2157	2010-07-29 18:57	2010-06-3	Show	GitHub Exploit DB Packet Storm

255439	3.5	注意	ターボリナックス Samba Project	-	Samba の smbd におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0926	2010-07-29 18:57	2010-02-24	Show	GitHub Exploit DB Packet Storm

255440	4.3	警告	サイバートラスト株式会社 LibTIFF レッドハット	-	LibTIFF の TIFFVStripSize 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2597	2010-07-28 19:31	2010-07-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278291	5.9	MEDIUM Network	mapsplugin	googlemaps	The Googlemaps plugin 3.2 and earlier for Joomla! allows remote attackers with control of a sub-domain belonging to a victim domain to cause a denial of service via the 'url' parameter to plugin_goog…	CWE-399 Resource Management Errors	CVE-2014-9686	2024-11-21 11:21	2017-09-28	Show	GitHub Exploit DB Packet Storm

278292	6.1	MEDIUM Network	magento	magento	Cross-site scripting (XSS) vulnerability in Magento E-Commerce Platform 1.9.0.1.	CWE-79 Cross-site Scripting	CVE-2014-9758	2024-11-21 11:21	2017-09-21	Show	GitHub Exploit DB Packet Storm

278293	7.2	HIGH Network	netsweeper	netsweeper	Unrestricted file upload vulnerability in webadmin/ajaxfilemanager/ajaxfilemanager.php in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote authenticated users with a…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2014-9619	2024-11-21 11:21	2017-09-20	Show	GitHub Exploit DB Packet Storm

278294	9.8	CRITICAL Network	netsweeper	netsweeper	The Client Filter Admin portal in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to bypass authentication and subsequently create arbitrary profiles via …	CWE-287 Improper Authentication	CVE-2014-9618	2024-11-21 11:21	2017-09-20	Show	GitHub Exploit DB Packet Storm

278295	7.5	HIGH Network	netsweeper	netsweeper	Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to obtain sensitive information by making a request that redirects to the deny page.	CWE-200 Information Exposure	CVE-2014-9616	2024-11-21 11:21	2017-09-20	Show	GitHub Exploit DB Packet Storm

278296	9.8	CRITICAL Network	netsweeper	netsweeper	Netsweeper before 4.0.5 allows remote attackers to bypass authentication and create arbitrary accounts and policies via a request to webadmin/nslam/index.php.	CWE-287 Improper Authentication	CVE-2014-9611	2024-11-21 11:21	2017-09-20	Show	GitHub Exploit DB Packet Storm

278297	5.3	MEDIUM Network	netsweeper	netsweeper	Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x before 4.1.2 allows remote attackers to bypass authentication and remove IP addresses from the quarantine via the ip parameter to webadmin/user…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9610	2024-11-21 11:21	2017-09-20	Show	GitHub Exploit DB Packet Storm

278298	5.3	MEDIUM Network	jenkins	jenkins	Jenkins before 1.586 does not set the HttpOnly flag in a Set-Cookie header for session cookies when run on Tomcat 7.0.41 or later, which makes it easier for remote attackers to obtain potentially sen…	CWE-254 7PK - Security Features	CVE-2014-9635	2024-11-21 11:21	2017-09-12	Show	GitHub Exploit DB Packet Storm

278299	5.3	MEDIUM Network	jenkins	jenkins	Jenkins before 1.586 does not set the secure flag on session cookies when run on Tomcat 7.0.41 or later, which makes it easier for remote attackers to capture cookies by intercepting their transmissi…	CWE-254 7PK - Security Features	CVE-2014-9634	2024-11-21 11:21	2017-09-12	Show	GitHub Exploit DB Packet Storm

278300	7.5	HIGH Network	mantisbt	mantisbt	CAPTCHA bypass vulnerability in MantisBT before 1.2.19.	CWE-287 Improper Authentication	CVE-2014-9624	2024-11-21 11:21	2017-09-12	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed