Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257161 2.1 注意 オラクル - Oracle Database の Audit コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0854 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
257162 3.6 注意 オラクル - Oracle Database の Change Data Capture コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0870 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
257163 4 警告 オラクル - Oracle Database の XML DB コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0851 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
257164 4 警告 オラクル - Oracle Database の JavaVM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0867 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
257165 5.5 警告 オラクル - Oracle Database の XML DB コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0852 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
257166 6.5 警告 オラクル - Oracle Database の JavaVM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0866 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
257167 7.1 危険 オラクル - Oracle Database の Core RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0860 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
257168 7.5 危険 オラクル - 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0853 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
257169 2.6 注意 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1985 2010-05-12 12:01 2010-05-12 Show GitHub Exploit DB Packet Storm
257170 10 危険 日立 - 複数の EUR Form 製品 および EUR 製品における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-11 15:16 2010-03-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254151 5.3 MEDIUM
Network 		getsymphony symphony Directory traversal vulnerability in template/usererror.missing_extension.php in Symphony CMS before 2.6.10 allows remote attackers to rename arbitrary files via a .. (dot dot) in the existing-folder… CWE-22
Path Traversal 		CVE-2017-5541 2024-11-21 12:27 2017-01-20 Show GitHub Exploit DB Packet Storm
254152 6.1 MEDIUM
Network 		eclinicalworks patient_portal An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. This is a reflected Cross Site Scripting vulnerability which affects the raceMasterList.jsp page within the Patient Portal. Inse… CWE-79
Cross-site Scripting 		CVE-2017-5599 2024-11-21 12:27 2017-01-27 Show GitHub Exploit DB Packet Storm
254153 7.5 HIGH
Network 		quagga quagga All versions of Quagga, 0.93 through 1.1.0, are vulnerable to an unbounded memory allocation in the telnet 'vty' CLI, leading to a Denial-of-Service of Quagga daemons, or even the entire host. When Q… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-5495 2024-11-21 12:27 2017-01-24 Show GitHub Exploit DB Packet Storm
254154 5.9 MEDIUM
Network 		fiberhome fengine_s5800_firmware An issue was discovered on FiberHome Fengine S5800 switches V210R240. An unauthorized attacker can access the device's SSH service, using a password cracking tool to establish SSH connections quickly… CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-5544 2024-11-21 12:27 2017-01-23 Show GitHub Exploit DB Packet Storm
254155 8.8 HIGH
Network 		metalgenix genixcms The media rename feature in GeniXCMS through 0.0.8 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a user to rename and execute files wit… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-5520 2024-11-21 12:27 2017-01-17 Show GitHub Exploit DB Packet Storm
254156 9.8 CRITICAL
Network 		metalgenix genixcms SQL injection vulnerability in Posts.class.php in GeniXCMS through 0.0.8 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2017-5519 2024-11-21 12:27 2017-01-17 Show GitHub Exploit DB Packet Storm
254157 7.4 HIGH
Network 		metalgenix genixcms The media-file upload feature in GeniXCMS through 0.0.8 allows remote attackers to conduct SSRF attacks via a URL, as demonstrated by a URL with an intranet IP address. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2017-5518 2024-11-21 12:27 2017-01-17 Show GitHub Exploit DB Packet Storm
254158 9.8 CRITICAL
Network 		metalgenix genixcms SQL injection vulnerability in author.control.php in GeniXCMS through 0.0.8 allows remote attackers to execute arbitrary SQL commands via the type parameter. CWE-89
SQL Injection 		CVE-2017-5517 2024-11-21 12:27 2017-01-17 Show GitHub Exploit DB Packet Storm
254159 6.1 MEDIUM
Network 		metalgenix genixcms Multiple cross-site scripting (XSS) vulnerabilities in the user forms in GeniXCMS through 0.0.8 allow remote attackers to inject arbitrary web script or HTML via crafted parameters. CWE-79
Cross-site Scripting 		CVE-2017-5516 2024-11-21 12:27 2017-01-17 Show GitHub Exploit DB Packet Storm
254160 5.4 MEDIUM
Network 		metalgenix genixcms Cross-site scripting (XSS) vulnerability in the user prompt function in GeniXCMS through 0.0.8 allows remote authenticated users to inject arbitrary web script or HTML via tag names. CWE-79
Cross-site Scripting 		CVE-2017-5515 2024-11-21 12:27 2017-01-17 Show GitHub Exploit DB Packet Storm