Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255941	4.3	警告	xmlsoft.org アップルサイバートラスト株式会社サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	libxml2 および libxml における DTD 内の要素宣言の処理に関するサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-2414	2010-07-13 16:26	2009-08-11	Show	GitHub Exploit DB Packet Storm

255942	4.3	警告	アップル	-	Apple Mac OS の CFNetwork における任意の HTTPS Web サイトを訪問しているように偽装可能な脆弱性	CWE-Other その他	CVE-2009-1723	2010-07-13 16:25	2009-08-5	Show	GitHub Exploit DB Packet Storm

255943	3.5	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1382	2010-07-12 18:12	2010-06-15	Show	GitHub Exploit DB Packet Storm

255944	3.5	注意	アップル	-	Apple Mac OS X の SMB ファイルサーバにおける任意のファイルにアクセスされる脆弱性	CWE-16 環境設定	CVE-2010-1381	2010-07-12 18:12	2010-06-15	Show	GitHub Exploit DB Packet Storm

255945	7.5	危険	アップル	-	Apple Mac OS X の cgtexttops CUPS フィルタにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1380	2010-07-12 18:11	2010-06-15	Show	GitHub Exploit DB Packet Storm

255946	5	警告	アップル	-	Apple Mac OS X のプリンタ設定におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1379	2010-07-12 18:11	2010-06-15	Show	GitHub Exploit DB Packet Storm

255947	5	警告	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 CWE-noinfo	CVE-2010-0775	2010-07-12 16:43	2010-05-8	Show	GitHub Exploit DB Packet Storm

255948	4.3	警告	IBM	-	IBM WebSphere Application Server におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0774	2010-07-12 16:43	2010-05-8	Show	GitHub Exploit DB Packet Storm

255949	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の cupsd におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3553	2010-07-12 16:41	2009-11-20	Show	GitHub Exploit DB Packet Storm

255950	9.3	危険	アップル	-	Apple Mac OS X の Open Directory における任意のコードを実行される脆弱性	CWE-310 暗号の問題	CVE-2010-1377	2010-07-9 16:27	2010-06-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
282601	-	biblio_autocomplete_project	biblio_autocomplete	Unspecified vulnerability in the AJAX autocompletion callback in the Biblio Autocomplete module 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to access data via…	NVD-CWE-noinfo	CVE-2014-5250	2024-11-21 11:11	2014-08-15	Show	GitHub Exploit DB Packet Storm

282602	-	biblio_autocomplete_project	biblio_autocomplete	SQL injection vulnerability in the "Biblio self autocomplete" submodule in the Biblio Autocomplete module 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to execu…	CWE-89 SQL Injection	CVE-2014-5249	2024-11-21 11:11	2014-08-15	Show	GitHub Exploit DB Packet Storm

282603	-	mybb	mybb	Cross-site scripting (XSS) vulnerability in MyBB before 1.6.15 allows remote attackers to inject arbitrary web script or HTML via vectors related to video MyCode.	CWE-79 Cross-site Scripting	CVE-2014-5248	2024-11-21 11:11	2014-08-15	Show	GitHub Exploit DB Packet Storm

282604	-	microsoft	outlook.com	The Microsoft Outlook.com application before 7.8.2.12.49.7090 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sen…	CWE-310 Cryptographic Issues	CVE-2014-5239	2024-11-21 11:11	2014-08-14	Show	GitHub Exploit DB Packet Storm

282605	-	openssl	openssl	The ssl_set_client_disabled function in t1_lib.c in OpenSSL 1.0.1 before 1.0.1i allows remote SSL servers to cause a denial of service (NULL pointer dereference and client application crash) via a Se…	NVD-CWE-Other	CVE-2014-5139	2024-11-21 11:11	2014-08-14	Show	GitHub Exploit DB Packet Storm

282606	-	compfight_project	compfight	Cross-site scripting (XSS) vulnerability in compfight-search.php in the Compfight plugin 1.4 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the search-valu…	CWE-79 Cross-site Scripting	CVE-2014-5202	2024-11-21 11:11	2014-08-13	Show	GitHub Exploit DB Packet Storm

282607	-	gallery_objects_project	gallery_objects	SQL injection vulnerability in the Gallery Objects plugin 0.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the viewid parameter in a go_view_object action to wp-admin/a…	CWE-89 SQL Injection	CVE-2014-5201	2024-11-21 11:11	2014-08-13	Show	GitHub Exploit DB Packet Storm

282608	-	fb_gorilla_project	fb_gorilla	SQL injection vulnerability in game_play.php in the FB Gorilla plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2014-5200	2024-11-21 11:11	2014-08-13	Show	GitHub Exploit DB Packet Storm

282609	-	wordpress_file_upload_project	wordpress_file_upload	Cross-site request forgery (CSRF) vulnerability in the WordPress File Upload plugin (wp-file-upload) before 2.4.2 for WordPress allows remote attackers to hijack the authentication of administrators …	CWE-352 Origin Validation Error	CVE-2014-5199	2024-11-21 11:11	2014-08-13	Show	GitHub Exploit DB Packet Storm

282610	-	splunk	splunk	Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x before 6.1.3 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header.	CWE-79 Cross-site Scripting	CVE-2014-5198	2024-11-21 11:11	2014-08-13	Show	GitHub Exploit DB Packet Storm