Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256341 6.8 警告 Lomtec - Lomtec ActiveWeb Professional 3.0 CMS における任意のファイルをアップロードおよび実行可能な脆弱性 CWE-Other
その他 		CVE-2011-0678 2011-02-28 16:25 2011-01-26 Show GitHub Exploit DB Packet Storm
256342 4.9 警告 サイバートラスト株式会社
VMware
Xen プロジェクト
レッドハット		 - Xen の arch/ia64/xen/faults.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2070 2011-02-28 14:55 2010-06-16 Show GitHub Exploit DB Packet Storm
256343 7.1 危険 サイバートラスト株式会社
VMware
Linux
レッドハット		 - Linux kernel の Bluetooth ソケットにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-1084 2011-02-28 14:54 2010-04-6 Show GitHub Exploit DB Packet Storm
256344 5 警告 Eyrie
VMware
レッドハット		 - pam_krb5 における有効なユーザ名を列挙される脆弱性 CWE-287
不適切な認証 		CVE-2009-1384 2011-02-28 14:51 2009-05-28 Show GitHub Exploit DB Packet Storm
256345 4.4 警告 サイバートラスト株式会社
VMware
レッドハット		 - Red Hat Enterprise Linux の pam_krb5 における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3825 2011-02-28 14:48 2008-10-2 Show GitHub Exploit DB Packet Storm
256346 6.8 警告 Haxx
アップル
VMware
サイバートラスト株式会社
レッドハット		 - libcurl の content_encoding.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0734 2011-02-28 14:41 2010-02-9 Show GitHub Exploit DB Packet Storm
256347 4.3 警告 VMware
OpenSSL Project		 - OpenSSL クライアントの ssl3_get_key_exchange 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2939 2011-02-28 14:39 2010-08-17 Show GitHub Exploit DB Packet Storm
256348 10 危険 アップル
サイバートラスト株式会社
VMware
サン・マイクロシステムズ
レッドハット		 - 複数の Oracle 製品 の Java Deployment Toolkit コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0886 2011-02-28 14:16 2010-04-15 Show GitHub Exploit DB Packet Storm
256349 8.3 危険 インターネットイニシアティブ - SEIL シリーズにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0454 2011-02-28 12:08 2011-02-28 Show GitHub Exploit DB Packet Storm
256350 6.8 警告 Google - OpenCORE の Huffman デコーディング機能における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0475 2011-02-25 14:13 2009-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294191 - apache santuario_xml_security_for_java Apache Santuario XML Security for Java before 1.5.6, when applying Transforms, allows remote attackers to cause a denial of service (memory consumption) via crafted Document Type Definitions (DTDs), … CWE-399
 Resource Management Errors 		CVE-2013-4517 2024-11-21 10:55 2014-01-11 Show GitHub Exploit DB Packet Storm
294192 - mantisbt mantisbt Cross-site scripting (XSS) vulnerability in account_sponsor_page.php in MantisBT 1.0.0 through 1.2.15 allows remote authenticated users to inject arbitrary web script or HTML via a project name. CWE-79
Cross-site Scripting 		CVE-2013-4460 2024-11-21 10:55 2014-01-11 Show GitHub Exploit DB Packet Storm
294193 - openssl openssl The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Next P… CWE-20
 Improper Input Validation  		CVE-2013-4353 2024-11-21 10:55 2014-01-9 Show GitHub Exploit DB Packet Storm
294194 - libreswan libreswan Libreswan 3.6 allows remote attackers to cause a denial of service (crash) via a small length value and (1) no version or (2) an invalid major number in an IKE packet. CWE-189
Numeric Errors 		CVE-2013-4564 2024-11-21 10:55 2014-01-8 Show GitHub Exploit DB Packet Storm
294195 - xen xen Xen 3.0.3 through 4.1.x (possibly 4.1.6.1), 4.2.x (possibly 4.2.3), and 4.3.x (possibly 4.3.1) does not properly prevent access to hypercalls, which allows local guest users to gain privileges via a … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4554 2024-11-21 10:55 2013-12-25 Show GitHub Exploit DB Packet Storm
294196 - xen xen The XEN_DOMCTL_getmemlist hypercall in Xen 3.4.x through 4.3.x (possibly 4.3.1) does not always obtain the page_alloc_lock and mm_rwlock in the same order, which allows local guest administrators to … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4553 2024-11-21 10:55 2013-12-25 Show GitHub Exploit DB Packet Storm
294197 - redhat jboss_operations_network Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other un… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4452 2024-11-21 10:55 2013-12-25 Show GitHub Exploit DB Packet Storm
294198 - ffmpeg ffmpeg libavcodec/h264.c in FFmpeg before 0.11.4 allows remote attackers to cause a denial of service (crash) via vectors related to alternating bit depths in H.264 data. NVD-CWE-noinfo
CVE-2013-4358 2024-11-21 10:55 2013-12-25 Show GitHub Exploit DB Packet Storm
294199 - fedoraproject
duckcorp 		fedora
bip 		Bip before 0.8.9, when running as a daemon, writes SSL handshake errors to an unexpected file descriptor that was previously associated with stderr before stderr has been closed, which allows remote … CWE-310
Cryptographic Issues 		CVE-2013-4550 2024-11-21 10:55 2013-12-25 Show GitHub Exploit DB Packet Storm
294200 - redhat jboss_enterprise_portal_platform Multiple cross-site scripting (XSS) vulnerabilities in the GateIn Portal component in Red Hat JBoss Portal 6.1.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-4424 2024-11-21 10:55 2013-12-24 Show GitHub Exploit DB Packet Storm