Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257071	9.3	危険	マイクロソフト	-	Microsoft Office および Open XML File Format Converter における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3127	2010-01-5 16:16	2009-11-10	Show	GitHub Exploit DB Packet Storm

257072	6.8	警告	アップルサイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカード OpenSSL Project レッドハット	-	OpenSSL の SSL_get_shared_ciphers() 関数における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2007-5135	2010-01-5 13:31	2007-10-12	Show	GitHub Exploit DB Packet Storm

257073	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257074	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257075	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257076	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257077	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257078	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

257079	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257080	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258301	8.8	HIGH Network	rtsindia	rwr-3g-100_firmware	The RealTime RWR-3G-100 Router Firmware Version : Ver1.0.56 is affected by CSRF an attack that forces an end user to execute unwanted actions on a web application in which they're currently authentic…	CWE-352 Origin Validation Error	CVE-2017-12853	2024-11-21 12:10	2017-08-15	Show	GitHub Exploit DB Packet Storm

258302	8.8	HIGH Network	kanboard	kanboard	An authenticated standard user could reset the password of the admin by altering form data. Affects kanboard before 1.0.46.	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2017-12851	2024-11-21 12:10	2017-08-15	Show	GitHub Exploit DB Packet Storm

258303	8.8	HIGH Network	kanboard	kanboard	An authenticated standard user could reset the password of other users (including the admin) by altering form data. Affects kanboard before 1.0.46.	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2017-12850	2024-11-21 12:10	2017-08-15	Show	GitHub Exploit DB Packet Storm

258304	7.8	HIGH Local	gnu	binutils	The elf_read_notesfunction in bfd/elf.c in GNU Binutils 2.29 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-12799	2024-11-21 12:10	2017-08-11	Show	GitHub Exploit DB Packet Storm

258305	6.1	MEDIUM Network	nexusphp_project	nexusphp	Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the q parameter to searchsuggest.php.	CWE-79 Cross-site Scripting	CVE-2017-12798	2024-11-21 12:10	2017-08-11	Show	GitHub Exploit DB Packet Storm

258306	6.1	MEDIUM Network	nexusphp_project	nexusphp	Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via some parameter to usersearch.php.	CWE-79 Cross-site Scripting	CVE-2017-12777	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

258307	9.8	CRITICAL Network	finecms_project	finecms	finecms in 1.9.5\controllers\member\ContentController.php allows remote attackers to operate website database	CWE-89 SQL Injection	CVE-2017-12774	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

258308	9.8	CRITICAL Network	linux canonical	linux_kernel ubuntu_linux	In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is copied into a local buffer of constant size using strcpy without a length check which can cause a buffer overflow. This affects the Linux …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-12762	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

258309	7.2	HIGH Network	extplorer	extplorer	Command inject in transfer from another server in extplorer 2.1.9 and prior allows attacker to inject command via the userfile[0] parameter.	CWE-77 Command Injection	CVE-2017-12756	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

258310	8.8	HIGH Network	asuswrt-merlin	asuswrt-merlin	Stack buffer overflow in httpd in Asuswrt-Merlin firmware 380.67_0RT-AC5300 and earlier for ASUS devices and ASUS firmware for ASUS RT-AC5300, RT_AC1900P, RT-AC68U, RT-AC68P, RT-AC88U, RT-AC66U, RT-A…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-12754	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm