Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256891	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性	CWE-DesignError	CVE-2009-4074	2010-02-22 12:13	2009-11-25	Show	GitHub Exploit DB Packet Storm

256892	6.6	警告	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0232	2010-02-22 12:12	2010-01-20	Show	GitHub Exploit DB Packet Storm

256893	10	危険	Rockwell Automation	-	Rockwell Automation Allen-Bradley MicroLogix PLC に複数の脆弱性	CWE-noinfo 情報不足	CVE-2009-3739	2010-02-19 14:22	2010-01-21	Show	GitHub Exploit DB Packet Storm

256894	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer において任意のコードが実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0249	2010-02-19 14:21	2010-01-15	Show	GitHub Exploit DB Packet Storm

256895	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-0227	2010-02-19 11:37	2008-01-10	Show	GitHub Exploit DB Packet Storm

256896	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL における複数のバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0226	2010-02-19 11:32	2008-01-10	Show	GitHub Exploit DB Packet Storm

256897	7.5	危険	Linux レッドハット	-	Linux kernel の do_coredump 関数における任意のファイルを改ざんされる脆弱性	-	CVE-2006-6304	2010-02-18 14:28	2006-12-14	Show	GitHub Exploit DB Packet Storm

256898	7.8	危険	Linux レッドハット	-	Linux kernel の net/ipv4/route.c 用の特定のレッドハットパッチにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4272	2010-02-18 14:28	2010-01-19	Show	GitHub Exploit DB Packet Storm

256899	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4248	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

256900	9.3	危険	リアルネットワークス	-	Realnetworks RealPlayer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4246	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275351	-	rle	nova-wind_turbine_hmi_firmware	RLE Nova-Wind Turbine HMI devices store cleartext credentials, which allows remote attackers to obtain sensitive information via unspecified vectors.	CWE-200 Information Exposure	CVE-2015-3951	2024-11-21 11:30	2015-06-14	Show	GitHub Exploit DB Packet Storm

275352	-	sinapsi	esolar_light_firmware	Sinapsi eSolar Light with firmware before 2.0.3970_schsl_2.2.85 allows attackers to discover cleartext passwords by reading the HTML source code of the mail-configuration page.	CWE-200 Information Exposure	CVE-2015-3949	2024-11-21 11:30	2015-06-14	Show	GitHub Exploit DB Packet Storm

275353	-	actian	matrix	Actian Matrix 5.1.x through 5.1.2.4 and 5.2.x through 5.2.0.1 allows remote authenticated users to bypass intended write-access restrictions and execute an UPDATE statement by referencing a table.	CWE-89 SQL Injection	CVE-2015-3993	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

275354	-	cisco	ios	The TCL interpreter in Cisco IOS 15.2 does not properly maintain the vty state, which allows local users to gain privileges by starting a session very soon after a TCL script execution, aka Bug ID CS…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-4185	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

275355	-	cisco	email_security_appliance	The anti-spam scanner on Cisco Email Security Appliance (ESA) devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote attackers to bypass intended e-mail restrictions via a malformed DNS SPF rec…	CWE-20 Improper Input Validation	CVE-2015-4184	2024-11-21 11:30	2015-06-13	Show	GitHub Exploit DB Packet Storm

275356	-	cisco	identity_services_engine_software	The administrative web interface in Cisco Identity Services Engine (ISE) before 1.3 allows remote authenticated users to bypass intended access restrictions, and obtain sensitive information or chang…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-4182	2024-11-21 11:30	2015-06-12	Show	GitHub Exploit DB Packet Storm

275357	-	strongswan debian canonical	strongswan_vpn_client debian_linux ubuntu_linux strongswan	strongSwan 4.3.0 through 5.x before 5.3.2 and strongSwan VPN Client before 1.4.6, when using EAP or pre-shared keys for authenticating an IKEv2 connection, does not enforce server authentication rest…	CWE-200 Information Exposure	CVE-2015-4171	2024-11-21 11:30	2015-06-11	Show	GitHub Exploit DB Packet Storm

275358	-	zanematthew	zm_ajax_login_\&_register	Directory traversal vulnerability in the zM Ajax Login & Register plugin before 1.1.0 for WordPress allows remote attackers to include and execute arbitrary php files via a relative path in the templ…	CWE-22 Path Traversal	CVE-2015-4153	2024-11-21 11:30	2015-06-11	Show	GitHub Exploit DB Packet Storm

275359	-	wftpserver	wing_ftp_server	Multiple cross-site request forgery (CSRF) vulnerabilities in Wing FTP Server before 4.4.7 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrar…	CWE-352 Origin Validation Error	CVE-2015-4108	2024-11-21 11:30	2015-06-11	Show	GitHub Exploit DB Packet Storm

275360	-	coppermine-gallery	coppermine_photo_gallery	Coppermine Photo Gallery before 1.5.36 allows remote attackers to enumerate directories via a full path in the folder parameter to minibrowser.php.	CWE-200 Information Exposure	CVE-2015-3923	2024-11-21 11:30	2015-06-11	Show	GitHub Exploit DB Packet Storm