Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255671	7.5	危険	Plone Foundation Zope Foundation	-	Plone などの製品で使用される Zope および PloneHotfix20110720 における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-2528	2011-08-5 09:57	2011-06-28	Show	GitHub Exploit DB Packet Storm

255672	5	警告	ISC, Inc. レッドハットオラクル	-	ISC BIND にサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-2464	2011-08-5 09:55	2011-07-6	Show	GitHub Exploit DB Packet Storm

255673	5	警告	サイバートラスト株式会社 Apache Software Foundation レッドハット	-	Apache Subversion で利用される Apache HTTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1752	2011-08-5 09:52	2011-06-6	Show	GitHub Exploit DB Packet Storm

255674	6	警告	IBM アップルサイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカード OpenBSD	-	OpenSSH における X11-forwarded コネクション処理の不備によるセッションハイジャックの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1483	2011-08-5 09:50	2008-03-24	Show	GitHub Exploit DB Packet Storm

255675	7.5	危険	オラクル	-	Oracle SysFW の Sun Integrated Lights Out Manager における脆弱性	CWE-noinfo 情報不足	CVE-2011-2307	2011-08-4 10:10	2011-07-19	Show	GitHub Exploit DB Packet Storm

255676	7.5	危険	オラクル	-	Oracle SPARC Enterprise M Series における XSCF Control Package (XCP) の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-2299	2011-08-4 10:08	2011-07-19	Show	GitHub Exploit DB Packet Storm

255677	5	警告	オラクル	-	Oracle Solaris における KSSL の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-2298	2011-08-4 10:06	2011-07-19	Show	GitHub Exploit DB Packet Storm

255678	6.1	警告	オラクル	-	Oracle Solaris Cluster における Data Service for WebLogic Server の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-2297	2011-08-4 10:05	2011-07-19	Show	GitHub Exploit DB Packet Storm

255679	4.9	警告	オラクル	-	Oracle Solaris における Kernel/SCTP の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-2296	2011-08-4 10:05	2011-07-19	Show	GitHub Exploit DB Packet Storm

255680	4.7	警告	オラクル	-	Oracle Solaris における Driver/USB の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-2295	2011-08-4 10:04	2011-07-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309451	-	harmistechnology	com_jeauto	SQL injection vulnerability in the JExtensions JE Auto (com_jeauto) component 1.0 for Joomla!, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cha…	CWE-89 SQL Injection	CVE-2010-4517	2024-11-21 10:21	2010-12-10	Show	GitHub Exploit DB Packet Storm

309452	-	jxtended	jxtended_comments	Multiple cross-site scripting (XSS) vulnerabilities in the JXtended Comments component before 1.3.1 for Joomla allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2010-4516	2024-11-21 10:21	2010-12-10	Show	GitHub Exploit DB Packet Storm

309453	-	citrix	web_interface	Cross-site scripting (XSS) vulnerability in Citrix Web Interface 5.0, 5.1, and 5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability th…	CWE-79 Cross-site Scripting	CVE-2010-4515	2024-11-21 10:21	2010-12-10	Show	GitHub Exploit DB Packet Storm

309454	-	zimplit	zimplit_cms	Multiple cross-site scripting (XSS) vulnerabilities in Zimplit CMS 3.0, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) file parameter in a load action…	CWE-79 Cross-site Scripting	CVE-2010-4513	2024-11-21 10:21	2010-12-10	Show	GitHub Exploit DB Packet Storm

309455	-	michael_dehaan	cobbler	Cobbler before 2.0.4 uses an incorrect umask value, which allows local users to have an unspecified impact by leveraging world writable permissions for files and directories.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2010-4512	2024-11-21 10:21	2010-12-10	Show	GitHub Exploit DB Packet Storm

309456	-	sixapart	movabletype	Unspecified vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 has unknown impact and attack vectors related to the "dynamic publishing error message."	NVD-CWE-noinfo	CVE-2010-4511	2024-11-21 10:21	2010-12-10	Show	GitHub Exploit DB Packet Storm

309457	-	sixapart	movabletype	Multiple unspecified vulnerabilities in Movable Type 4.x before 4.35 and 5.x before 5.04 have unknown impact and attack vectors related to the (1) mt:AssetProperty and (2) mt:EntryFlag tags.	NVD-CWE-noinfo	CVE-2010-4509	2024-11-21 10:21	2010-12-10	Show	GitHub Exploit DB Packet Storm

309458	-	mozilla	firefox	The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 does not properly perform proxy upgrade negotiation, which has unspecified impact and remote attack vectors, related to an "inher…	NVD-CWE-noinfo	CVE-2010-4508	2024-11-21 10:21	2010-12-10	Show	GitHub Exploit DB Packet Storm

309459	-	injader	injader	Multiple SQL injection vulnerabilities in login.php in Injader 2.4.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) un and (2) pw parameters.	CWE-89 SQL Injection	CVE-2010-4505	2024-11-21 10:21	2010-12-9	Show	GitHub Exploit DB Packet Storm

309460	-	intelliants	esyndicat	Multiple cross-site scripting (XSS) vulnerabilities in eSyndiCat Directory 2.3 allow remote attackers to inject arbitrary web script or HTML via the title parameter to (1) suggest-category.php and (2…	CWE-79 Cross-site Scripting	CVE-2010-4504	2024-11-21 10:21	2010-12-9	Show	GitHub Exploit DB Packet Storm