Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257461 6.8 警告 Google - Google Chrome における任意の https サイトになりすまされる脆弱性 CWE-287
不適切な認証 		CVE-2009-2071 2010-10-19 14:49 2009-03-23 Show GitHub Exploit DB Packet Storm
257462 6.4 警告 The PHP Group - PHP の zend_ini.c 内にある zend_restore_ini_entry_cb 関数における重要な情報を取得される脆弱性 CWE-Other
その他 		CVE-2009-2626 2010-10-18 15:22 2009-12-1 Show GitHub Exploit DB Packet Storm
257463 4 警告 オラクル - Oracle iPlanet Web Server におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3544 2010-10-18 12:03 2010-10-18 Show GitHub Exploit DB Packet Storm
257464 5 警告 ISC, Inc. - BIND の ACL の処理に問題 CWE-264
認可・権限・アクセス制御 		CVE-2010-0218 2010-10-15 13:24 2010-10-1 Show GitHub Exploit DB Packet Storm
257465 5.1 警告 K2 Software - K2Editor における実行ファイル読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-3156 2010-10-15 11:22 2010-10-15 Show GitHub Exploit DB Packet Storm
257466 6.8 警告 kMonos.NET - XacRett における実行ファイル読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-3157 2010-10-15 11:22 2010-10-15 Show GitHub Exploit DB Packet Storm
257467 5 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-2101 2010-10-14 16:20 2010-05-26 Show GitHub Exploit DB Packet Storm
257468 9.3 危険 レッドハット - Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3996 2010-10-14 16:19 2009-12-18 Show GitHub Exploit DB Packet Storm
257469 9.3 危険 レッドハット - Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-3995 2010-10-14 16:19 2009-12-18 Show GitHub Exploit DB Packet Storm
257470 4.3 警告 レッドハット - libmikmod におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-6720 2010-10-14 16:19 2009-01-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285241 7.5 HIGH
Network 		aircrack-ng aircrack-ng buddy-ng.c in Aircrack-ng before 1.2 Beta 3 allows remote attackers to cause a denial of service (segmentation fault) via a response with a crafted length parameter. CWE-20
 Improper Input Validation  		CVE-2014-8323 2024-11-21 11:18 2017-10-17 Show GitHub Exploit DB Packet Storm
285242 6.1 MEDIUM
Network 		post_highlights_projects post_highlights Cross-site scripting (XSS) vulnerability in the post highlights plugin before 2.6.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the txt parameter in a headline ac… CWE-79
Cross-site Scripting 		CVE-2014-8087 2024-11-21 11:18 2017-10-17 Show GitHub Exploit DB Packet Storm
285243 7.5 HIGH
Network 		ovirt
redhat 		ovirt
ovirt-engine 		oVirt 3.2.2 through 3.5.0 does not invalidate the restapi session after logout from the webadmin, which allows remote authenticated users with knowledge of another user's session data to gain that us… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-7851 2024-11-21 11:18 2017-10-17 Show GitHub Exploit DB Packet Storm
285244 8.8 HIGH
Network 		ovirt ovirt-node ovirt_safe_delete_config in ovirtfunctions.py and other unspecified locations in ovirt-node 3.0.0-474-gb852fd7 as packaged in Red Hat Enterprise Virtualization 3 do not properly quote input strings, … CWE-134
Use of Externally-Controlled Format String 		CVE-2014-8170 2024-11-21 11:18 2017-09-26 Show GitHub Exploit DB Packet Storm
285245 7.8 HIGH
Local 		fso-frameworkd_project
fso-gsmd_project
fso-usaged_project
phonefsod_project 		fso-frameworkd
fso-gsmd
fso-usaged
phonefsod 		The D-Bus security policy files in /etc/dbus-1/system.d/*.conf in fso-gsmd 0.12.0-3, fso-frameworkd 0.9.5.9+git20110512-4, and fso-usaged 0.12.0-2 as packaged in Debian, the upstream cornucopia.git (… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-8156 2024-11-21 11:18 2017-09-26 Show GitHub Exploit DB Packet Storm
285246 9.8 CRITICAL
Network 		redhat edeploy eDeploy makes it easier for remote attackers to execute arbitrary code by leveraging use of HTTP to download files. CWE-200
Information Exposure 		CVE-2014-8174 2024-11-21 11:18 2017-09-20 Show GitHub Exploit DB Packet Storm
285247 7.5 HIGH
Network 		apache wicket Apache Wicket before 1.5.13, 6.x before 6.19.0, and 7.x before 7.0.0-M5 make it easier for attackers to defeat a cryptographic protection mechanism and predict encrypted URLs by leveraging use of Cry… CWE-310
Cryptographic Issues 		CVE-2014-7808 2024-11-21 11:18 2017-09-16 Show GitHub Exploit DB Packet Storm
285248 6.5 MEDIUM
Network 		redhat satellite Directory traversal vulnerability in the XMLRPC interface in Red Hat Satellite 5. CWE-22
Path Traversal 		CVE-2014-8163 2024-11-21 11:18 2017-08-29 Show GitHub Exploit DB Packet Storm
285249 6.1 MEDIUM
Local 		redhat satellite Red Hat Satellite 6 allows local users to access mongod and delete pulp_database. CWE-284
Improper Access Control 		CVE-2014-8168 2024-11-21 11:18 2017-08-29 Show GitHub Exploit DB Packet Storm
285250 5.3 MEDIUM
Network 		d-link dns-327l_firmware
dns-320l_firmware 		The web/web_file/fb_publish.php script in D-Link DNS-320L before 1.04b12 and DNS-327L before 1.03b04 Build0119 does not authenticate requests, which allows remote attackers to obtain arbitrary photos… CWE-287
CWE-200
Improper Authentication
Information Exposure 		CVE-2014-7860 2024-11-21 11:18 2017-08-26 Show GitHub Exploit DB Packet Storm