Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255631 6.5 警告 PostgreSQL.org
サイバートラスト株式会社
ターボリナックス
サン・マイクロシステムズ
レッドハット		 - PostgreSQL におけるインデックスの処理に関する権限を取得される脆弱性 CWE-Other
その他 		CVE-2009-4136 2010-06-7 16:48 2009-12-15 Show GitHub Exploit DB Packet Storm
255632 - - コンソナ - Consona (旧 SupportSoft) Intelligent Assistance Suite (IAS) に複数の脆弱性 - - 2010-06-4 17:58 2010-05-13 Show GitHub Exploit DB Packet Storm
255633 7.5 危険 アップル
VMware
サン・マイクロシステムズ
ヒューレット・パッカード
レッドハット		 - JDK および JRE の Java プラグインにおける古い JRE バージョンで動作可能な脆弱性 CWE-DesignError
CVE-2009-1105 2010-06-4 15:54 2009-03-24 Show GitHub Exploit DB Packet Storm
255634 10 危険 日立 - Collaboration - Common Utility におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		- 2010-06-3 15:19 2010-05-12 Show GitHub Exploit DB Packet Storm
255635 10 危険 日立
CA Technologies		 - CA ARCserve Backup および BrightStor ARCserve Backup における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		- 2010-06-3 15:19 2010-03-18 Show GitHub Exploit DB Packet Storm
255636 6.4 警告 サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - MySQL における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4028 2010-06-3 14:57 2009-11-4 Show GitHub Exploit DB Packet Storm
255637 4 警告 富士通九州システムズ - e-Pares におけるセッション固定の脆弱性 CWE-Other
その他 		CVE-2010-2149 2010-06-2 15:05 2010-06-2 Show GitHub Exploit DB Packet Storm
255638 2.6 注意 富士通九州システムズ - e-Pares におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2151 2010-06-2 15:04 2010-06-2 Show GitHub Exploit DB Packet Storm
255639 4.3 警告 富士通九州システムズ - e-Pares におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2150 2010-06-2 15:02 2010-06-2 Show GitHub Exploit DB Packet Storm
255640 2.1 注意 アドビシステムズ - Adobe ColdFusion における重要な情報を取得される脆弱性 CWE-200
CWE-noinfo
CVE-2010-1294 2010-06-2 12:14 2010-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
281051 - infusionsoft_gravity_forms_project infusionsoft_gravity_forms The Infusionsoft Gravity Forms plugin 1.5.3 through 1.5.10 for WordPress does not properly restrict access, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code via … CWE-94
Code Injection 		CVE-2014-6446 2024-11-21 11:14 2014-09-27 Show GitHub Exploit DB Packet Storm
281052 - contactus contact_form_7_integrations Multiple cross-site scripting (XSS) vulnerabilities in includes/toAdmin.php in Contact Form 7 Integrations plugin 1.0 through 1.3.10 for WordPress allow remote attackers to inject arbitrary web scrip… CWE-79
Cross-site Scripting 		CVE-2014-6445 2024-11-21 11:14 2014-09-27 Show GitHub Exploit DB Packet Storm
281053 - ticketroundup ticket_round_up The Ticket Round Up (aka com.xcr.android.ticketroundupapp) application 3.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers… CWE-310
Cryptographic Issues 		CVE-2014-6677 2024-11-21 11:14 2014-09-23 Show GitHub Exploit DB Packet Storm
281054 - hdcar exercitii_pentru_abdomen The Exercitii pentru abdomen (aka com.rareartifact.exercitiipentruabdomen41E29322) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle atta… CWE-310
Cryptographic Issues 		CVE-2014-6676 2024-11-21 11:14 2014-09-23 Show GitHub Exploit DB Packet Storm
281055 - rutaexacta ruta_exacta The Ruta Exacta (aka com.rutaexacta.m) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive … CWE-310
Cryptographic Issues 		CVE-2014-6675 2024-11-21 11:14 2014-09-23 Show GitHub Exploit DB Packet Storm
281056 - amazighmusic_project amazighmusic The Amazighmusic (aka nl.appsandroo.Amazighmusic) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain… CWE-310
Cryptographic Issues 		CVE-2014-6674 2024-11-21 11:14 2014-09-23 Show GitHub Exploit DB Packet Storm
281057 - zhtiantian challengertx The ChallengerTX (aka com.zhtiantian.ChallengerTX) application 3.9.12.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and … CWE-310
Cryptographic Issues 		CVE-2014-6673 2024-11-21 11:14 2014-09-23 Show GitHub Exploit DB Packet Storm
281058 - friendcasterapp friendcaster The Friendcaster (aka uk.co.senab.blueNotifyFree) application 5.4.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obta… CWE-310
Cryptographic Issues 		CVE-2014-6672 2024-11-21 11:14 2014-09-23 Show GitHub Exploit DB Packet Storm
281059 - letshare world_cup_2014_brazil_-_xem_tv The World Cup 2014 Brazil - Xem TV (aka vn.letshare.football.worldcup) application 2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spo… CWE-310
Cryptographic Issues 		CVE-2014-6671 2024-11-21 11:14 2014-09-23 Show GitHub Exploit DB Packet Storm
281060 - singaporemotherhood singaporemotherhood_forum The SingaporeMotherhood Forum (aka com.tapatalk.singaporemotherhoodcomforum) application 3.6.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attacker… CWE-310
Cryptographic Issues 		CVE-2014-6670 2024-11-21 11:14 2014-09-23 Show GitHub Exploit DB Packet Storm