Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256941	5	警告	オラクル	-	Oracle Application Server の J2EE コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0067	2010-02-15 19:31	2010-01-12	Show	GitHub Exploit DB Packet Storm

256942	5	警告	オラクル	-	Oracle Application Server の Access Manager Identity Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0066	2010-02-15 19:31	2010-01-12	Show	GitHub Exploit DB Packet Storm

256943	7.8	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の e1000_clean_rx_irq 関数における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1385	2010-02-15 11:03	2009-06-4	Show	GitHub Exploit DB Packet Storm

256944	4.6	警告	サイバートラスト株式会社 Todd C. Miller	-	sudo の Perl スクリプト実行時における権限昇格の脆弱性	-	CVE-2005-4158	2010-02-15 11:03	2005-11-8	Show	GitHub Exploit DB Packet Storm

256945	1	注意	オラクル	-	Oracle Database および Oracle Application Server の Unzip コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3412	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

256946	3.2	注意	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3413	2010-02-12 12:22	2010-01-12	Show	GitHub Exploit DB Packet Storm

256947	3.6	注意	オラクル	-	Oracle Database の RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3410	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256948	4	警告	オラクル	-	Oracle Database の Logical Standby コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-1996	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256949	4.9	警告	オラクル	-	Oracle Database の Oracle Spatial コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3414	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

256950	4.9	警告	オラクル	-	Oracle Database の Oracle Data Pump コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-3411	2010-02-12 12:21	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256521	7.5	HIGH Network	serverwg_project	serverwg	serverwg is a simple http server. serverwg is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.	CWE-22 Path Traversal	CVE-2017-16101	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256522	9.8	CRITICAL Network	dns-sync_project	dns-sync	dns-sync is a sync/blocking dns resolver. If untrusted user input is allowed into the resolve() method then command injection is possible.	CWE-77 Command Injection	CVE-2017-16100	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256523	7.5	HIGH Network	no-case_project	no-case	The no-case module is vulnerable to regular expression denial of service. When malicious untrusted user input is passed into no-case it can block the event loop causing a denial of service condition.	CWE-400 Uncontrolled Resource Consumption	CVE-2017-16099	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256524	7.5	HIGH Network	charset_project	charset	charset 1.0.0 and below are vulnerable to regular expression denial of service. Input of around 50k characters is required for a slow down of around 2 seconds. Unless node was compiled using the -DHT…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-16098	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256525	7.5	HIGH Network	tiny-http_project	tiny-http	tiny-http is a simple http server. tiny-http is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.	CWE-22 Path Traversal	CVE-2017-16097	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256526	7.5	HIGH Network	serveryaozeyan_project	serveryaozeyan	serveryaozeyan is a simple HTTP server. serveryaozeyan is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.	CWE-22 Path Traversal	CVE-2017-16096	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256527	7.5	HIGH Network	serverliujiayi1_project	serverliujiayi1	serverliujiayi1 is a simple http server. serverliujiayi1 is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.	CWE-22 Path Traversal	CVE-2017-16095	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256528	7.5	HIGH Network	iter-http_project	iter-http	iter-http is a server for static files. iter-http is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.	CWE-22 Path Traversal	CVE-2017-16094	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256529	7.5	HIGH Network	cyber-js_project	cyber-js	cyber-js is a simple http server. A cyberjs server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.	CWE-22 Path Traversal	CVE-2017-16093	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

256530	7.5	HIGH Network	sencisho_project	sencisho	Sencisho is a simple http server for local development. Sencisho is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the URL.	CWE-22 Path Traversal	CVE-2017-16092	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm