Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255941	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の Consent User Interface における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3961	2011-01-17 15:06	2010-12-14	Show	GitHub Exploit DB Packet Storm

255942	7.2	危険	マイクロソフト	-	Microsoft Windows 製品の Routing and Remote Access NDProxy コンポーネントにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3963	2011-01-17 15:03	2010-12-14	Show	GitHub Exploit DB Packet Storm

255943	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3944	2011-01-17 14:45	2010-12-14	Show	GitHub Exploit DB Packet Storm

255944	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3943	2011-01-17 14:38	2010-12-14	Show	GitHub Exploit DB Packet Storm

255945	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2010-3942	2011-01-17 14:35	2010-12-14	Show	GitHub Exploit DB Packet Storm

255946	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3941	2011-01-17 14:29	2010-12-14	Show	GitHub Exploit DB Packet Storm

255947	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3940	2011-01-14 15:55	2010-12-14	Show	GitHub Exploit DB Packet Storm

255948	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3939	2011-01-14 15:53	2010-12-14	Show	GitHub Exploit DB Packet Storm

255949	9.3	危険	マイクロソフト	-	Microsoft Windows の Internet Connection Signup Wizard における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3144	2011-01-14 15:49	2010-12-14	Show	GitHub Exploit DB Packet Storm

255950	9.3	危険	マイクロソフト	-	Windows Address Book の wab.exe における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3147	2011-01-14 15:47	2010-12-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
264231	7.5	HIGH Network	samlify_project	samlify	An XML Signature Wrapping vulnerability exists in Samlify 2.2.0 and earlier, and in predecessor Express-saml2 which could allow attackers to impersonate arbitrary users.	CWE-91 Blind XPath Injection	CVE-2017-1000452	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

264232	7.8	HIGH Local	fs-git_project	fs-git	fs-git is a file system like api for git repository. The fs-git version 1.0.1 module relies on child_process.exec, however, the buildCommand method used to construct exec strings does not properly sa…	NVD-CWE-noinfo	CVE-2017-1000451	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

264233	8.8	HIGH Network	opencv debian	opencv debian_linux	In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote co…	CWE-190 Integer Overflow or Wraparound	CVE-2017-1000450	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

264234	7.5	HIGH Network	structured-data	structured_data_linter	Structured Data Linter versions 2.4.1 and older are vulnerable to a directory traversal attack in the URL input field resulting in the possibility of disclosing information about the remote host.	CWE-22 Path Traversal	CVE-2017-1000448	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

264235	5.9	MEDIUM Network	linaro	op-tee	Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable a timing attack in the Montgomery parts of libMPA in OP-TEE resulting in a compromised private RSA key.	CWE-200 Information Exposure	CVE-2017-1000413	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

264236	7.5	HIGH Network	linaro	op-tee	Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key.	CWE-200 Information Exposure	CVE-2017-1000412	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

264237	6.5	MEDIUM Network	imagemagick debian canonical	imagemagick debian_linux ubuntu_linux	ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service	CWE-476 NULL Pointer Dereference	CVE-2017-1000445	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

264238	9.8	CRITICAL Network	openhacker_project	openhacker	Eleix Openhacker version 0.1.47 is vulnerable to an SQL injection in the account registration and login component resulting in information disclosure and remote code execution	CWE-89 SQL Injection	CVE-2017-1000444	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

264239	6.1	MEDIUM Network	openhacker_project	openhacker	Eleix Openhacker version 0.1.47 is vulnerable to a XSS vulnerability in the bank transactions component resulting in arbitrary code execution in the browser.	CWE-79 Cross-site Scripting	CVE-2017-1000443	2024-11-21 12:04	2018-01-2	Show	GitHub Exploit DB Packet Storm

264240	5.4	MEDIUM Network	passbolt	passbolt_api	Passbolt API version 1.6.4 and older are vulnerable to a XSS in the url field on the password workspace	CWE-79 Cross-site Scripting	CVE-2017-1000442	2024-11-21 12:04	2018-01-2	Show	GitHub Exploit DB Packet Storm