Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256661 7.8 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0242 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
256662 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0241 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
256663 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0240 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
256664 10 危険 マイクロソフト - Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0239 2010-03-1 11:36 2010-02-9 Show GitHub Exploit DB Packet Storm
256665 9.3 危険 マイクロソフト - Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2010-0017 2010-03-1 11:35 2010-02-9 Show GitHub Exploit DB Packet Storm
256666 9.3 危険 マイクロソフト - Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0016 2010-03-1 11:35 2010-02-9 Show GitHub Exploit DB Packet Storm
256667 5 警告 日立 - uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-02-26 11:36 2010-01-29 Show GitHub Exploit DB Packet Storm
256668 2.6 注意 tDiary開発プロジェクト - tDiary 付属のプラグイン tb-send.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0726 2010-02-25 15:03 2010-02-25 Show GitHub Exploit DB Packet Storm
256669 4.3 警告 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server における HTTP リクエストを非表示にされる脆弱性 CWE-Other
その他 		CVE-2003-1578 2010-02-25 12:36 2003-11-14 Show GitHub Exploit DB Packet Storm
256670 2.6 注意 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server におけるログファイルに任意のテキストを挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2003-1577 2010-02-25 12:36 2003-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249501 8.8 HIGH
Network 		citrix netscaler_gateway_firmware A heap overflow vulnerability in Citrix NetScaler Gateway versions 10.1 before 135.8/135.12, 10.5 before 65.11, 11.0 before 70.12, and 11.1 before 52.13 allows a remote authenticated attacker to run … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7219 2024-11-21 12:31 2017-04-13 Show GitHub Exploit DB Packet Storm
249502 8.8 HIGH
Network 		unitrends enterprise_backup An attacker that has hijacked a Unitrends Enterprise Backup (before 9.1.2) web server session can leverage api/includes/users.php to change the password of the logged in account without knowing the c… CWE-287
Improper Authentication 		CVE-2017-7284 2024-11-21 12:31 2017-04-13 Show GitHub Exploit DB Packet Storm
249503 8.8 HIGH
Network 		unitrends enterprise_backup An issue was discovered in Unitrends Enterprise Backup before 9.1.2. A lack of sanitization of user input in the createReportName and saveReport functions in recoveryconsole/bpl/reports.php allows fo… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-7281 2024-11-21 12:31 2017-04-13 Show GitHub Exploit DB Packet Storm
249504 9.8 CRITICAL
Network 		unitrends enterprise_backup An issue was discovered in api/includes/systems.php in Unitrends Enterprise Backup before 9.0.0. User input is not properly filtered before being sent to a popen function. This allows for remote code… CWE-20
 Improper Input Validation  		CVE-2017-7280 2024-11-21 12:31 2017-04-13 Show GitHub Exploit DB Packet Storm
249505 9.8 CRITICAL
Network 		unitrends enterprise_backup An unprivileged user of the Unitrends Enterprise Backup before 9.0.0 web server can escalate to root privileges by modifying the "token" cookie issued at login. CWE-565
 Reliance on Cookies without Validation and Integrity Checking 		CVE-2017-7279 2024-11-21 12:31 2017-04-13 Show GitHub Exploit DB Packet Storm
249506 9.8 CRITICAL
Network 		intellinet-network nfc-30ir_firmware Intellinet NFC-30ir IP Camera has a vendor backdoor that can allow a remote attacker access to a vendor-supplied CGI script in the web directory. CWE-22
CWE-798
Path Traversal
 Use of Hard-coded Credentials 		CVE-2017-7462 2024-11-21 12:31 2017-04-12 Show GitHub Exploit DB Packet Storm
249507 4.9 MEDIUM
Network 		intellinet-network nfc-30ir_firmware Directory traversal vulnerability in the web-based management site on the Intellinet NFC-30ir IP Camera with firmware LM.1.6.16.05 allows remote attackers to read arbitrary files via a request to a v… CWE-22
Path Traversal 		CVE-2017-7461 2024-11-21 12:31 2017-04-12 Show GitHub Exploit DB Packet Storm
249508 6.0 MEDIUM
Local 		qemu
debian 		qemu
debian_linux 		The (1) v9fs_create and (2) v9fs_lcreate functions in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allow local guest OS privileged users to cause a denial of service (file descriptor or memory consumpti… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-7377 2024-11-21 12:31 2017-04-11 Show GitHub Exploit DB Packet Storm
249509 5.3 MEDIUM
Network 		netapp clustered_data_ontap NetApp OnCommand Performance Manager and OnCommand Unified Manager for Clustered Data ONTAP before 7.1P1 improperly bind the Java Management Extension Remote Method Invocation (aka JMX RMI) service t… CWE-200
Information Exposure 		CVE-2017-7345 2024-11-21 12:31 2017-04-11 Show GitHub Exploit DB Packet Storm
249510 9.8 CRITICAL
Network 		ninka_project ninka Ninka before 1.3.2 might allow remote attackers to obtain sensitive information, manipulate license compliance scan results, or cause a denial of service (process hang) via a crafted filename. CWE-74
Injection 		CVE-2017-7239 2024-11-21 12:31 2017-04-11 Show GitHub Exploit DB Packet Storm