Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256201	10	危険	VMware	-	VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2009-3732	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256202	7.2	危険	VMware	-	複数の VMware 製品の vmrun における権限昇格の脆弱性	CWE-134 書式文字列の問題	CVE-2010-1139	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256203	5	警告	VMware	-	複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1138	2010-05-7 17:25	2010-04-9	Show	GitHub Exploit DB Packet Storm

256204	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1142	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

256205	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1141	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

256206	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0949	2010-05-7 16:55	2009-06-3	Show	GitHub Exploit DB Packet Storm

256207	6.8	警告	レッドハットサイバートラスト株式会社ターボリナックス CUPS	-	CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0163	2010-05-7 16:51	2009-04-16	Show	GitHub Exploit DB Packet Storm

256208	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2005-4268	2010-05-7 16:51	2005-12-15	Show	GitHub Exploit DB Packet Storm

256209	4.3	警告	日本電気 Apache Software Foundation	-	Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-1885	2010-05-6 13:47	2009-08-6	Show	GitHub Exploit DB Packet Storm

256210	6.4	警告	アップルターボリナックス CUPS	-	CUPS における DNS リバインド攻撃を誘導される脆弱性	CWE-20 不適切な入力確認	CVE-2009-0164	2010-05-6 13:46	2009-04-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285281	-	adrotateplugin	adrotate	SQL injection vulnerability in library/clicktracker.php in the AdRotate Pro plugin 3.9 through 3.9.5 and AdRotate Free plugin 3.9 through 3.9.4 for WordPress allows remote attackers to execute arbitr…	CWE-89 SQL Injection	CVE-2014-1854	2024-11-21 11:05	2014-02-28	Show	GitHub Exploit DB Packet Storm

285282	-	tibco	enterprise_administrator_sdk enterprise_administrator	TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK 1.0.0 do not properly enforce administrative authentication requirements, which allows remote attackers to execute arbitrary comm…	CWE-287 Improper Authentication	CVE-2014-2075	2024-11-21 11:05	2014-02-27	Show	GitHub Exploit DB Packet Storm

285283	-	cisco	unified_contact_center_express_editor_software	Cisco Unified Contact Center Express (Unified CCX) does not properly restrict the content of the CCMConfig page, which allows remote authenticated users to obtain sensitive information by examining t…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-2102	2024-11-21 11:05	2014-02-27	Show	GitHub Exploit DB Packet Storm

285284	-	riken	xoonips	Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2014-1968	2024-11-21 11:05	2014-02-27	Show	GitHub Exploit DB Packet Storm

285285	-	7andi-fs.co	denny\'s	The Denny's application before 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a …	CWE-310 Cryptographic Issues	CVE-2014-1967	2024-11-21 11:05	2014-02-27	Show	GitHub Exploit DB Packet Storm

285286	-	mcafee	epolicy_orchestrator	The Import and Export Framework in McAfee ePolicy Orchestrator (ePO) before 4.6.7 Hotfix 940148 allows remote authenticated users with permissions to add dashboards to read arbitrary files by importi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-2205	2024-11-21 11:05	2014-02-27	Show	GitHub Exploit DB Packet Storm

285287	-	catfish_project	catfish	Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0 allows local users to gain privileges via a Trojan horse bin/catfish.py under the current working directory.	NVD-CWE-Other	CVE-2014-2096	2024-11-21 11:05	2014-02-26	Show	GitHub Exploit DB Packet Storm

285288	-	catfish_project	catfish	Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0, when a Fedora package such as 0.8.2-1 is not used, allows local users to gain privileges via a Trojan horse bin/catfish.pyc under t…	NVD-CWE-Other	CVE-2014-2095	2024-11-21 11:05	2014-02-26	Show	GitHub Exploit DB Packet Storm

285289	-	catfish_project	catfish	Untrusted search path vulnerability in Catfish through 0.4.0.3, when a Fedora package such as 0.4.0.2-2 is not used, allows local users to gain privileges via a Trojan horse catfish.pyc in the curren…	NVD-CWE-Other	CVE-2014-2094	2024-11-21 11:05	2014-02-26	Show	GitHub Exploit DB Packet Storm

285290	-	catfish_project	catfish	Untrusted search path vulnerability in Catfish through 0.4.0.3 allows local users to gain privileges via a Trojan horse catfish.py in the current working directory.	NVD-CWE-Other	CVE-2014-2093	2024-11-21 11:05	2014-02-26	Show	GitHub Exploit DB Packet Storm