Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257591	6.8	警告	pon software	-	Explzh におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2434	2010-06-22 14:01	2010-06-22	Show	GitHub Exploit DB Packet Storm

257592	4.3	警告	アップル	-	Apple Safari の WebKit における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2010-1388	2010-06-21 16:56	2010-06-10	Show	GitHub Exploit DB Packet Storm

257593	9.3	危険	アップル	-	Apple Safari における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1750	2010-06-18 18:21	2010-06-10	Show	GitHub Exploit DB Packet Storm

257594	9.3	危険	アップル	-	Apple Safari における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1385	2010-06-18 18:20	2010-06-10	Show	GitHub Exploit DB Packet Storm

257595	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org における任意の Python コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0395	2010-06-17 18:34	2010-06-10	Show	GitHub Exploit DB Packet Storm

257596	-	-	Accoria Networks	-	Accoria Rock Web Server に複数の脆弱性	-	-	2010-06-17 18:33	2010-06-3	Show	GitHub Exploit DB Packet Storm

257597	5	警告	富士通	-	Interstage Portalworks および Interstage Interaction Manager のポータル機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-06-17 18:33	2010-05-28	Show	GitHub Exploit DB Packet Storm

257598	10	危険	シスコシステムズ	-	Cisco Mediator Framework におけるパスワードおよびアカウントの詳細を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0600	2010-06-16 18:32	2010-05-26	Show	GitHub Exploit DB Packet Storm

257599	9.3	危険	シスコシステムズ	-	Cisco Mediator Framework における Administrator の認証情報を見破られる脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0599	2010-06-16 18:32	2010-05-26	Show	GitHub Exploit DB Packet Storm

257600	9.3	危険	シスコシステムズ	-	Cisco Mediator Framework における Administrator の認証情報を見破られる脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0598	2010-06-16 18:31	2010-05-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
265901	5.3	MEDIUM Network	nextcloud owncloud	nextcloud owncloud	Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a content-spoofing attack in the files app. The location bar in the files app was not verifying the passed parameters. …	CWE-284 Improper Access Control	CVE-2016-9460	2024-11-21 12:01	2017-03-28	Show	GitHub Exploit DB Packet Storm

265902	6.1	MEDIUM Network	owncloud nextcloud	owncloud nextcloud_server	Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a log pollution vulnerability potentially leading to a local XSS. The download log functionality in the admin screen is…	CWE-79 Cross-site Scripting	CVE-2016-9459	2024-11-21 12:01	2017-03-28	Show	GitHub Exploit DB Packet Storm

265903	5.4	MEDIUM Network	revive-adserver	revive_adserver	Revive Adserver before 3.2.3 suffers from Reflected XSS. `www/admin/stats.php` is vulnerable to reflected XSS attacks via multiple parameters that are not properly sanitised or escaped when displayed…	CWE-79 Cross-site Scripting	CVE-2016-9457	2024-11-21 12:01	2017-03-28	Show	GitHub Exploit DB Packet Storm

265904	8.8	HIGH Network	revive-adserver	revive_adserver	Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). The Revive Adserver team conducted a security audit of the admin interface scripts in order to identify and fix other pote…	CWE-352 Origin Validation Error	CVE-2016-9456	2024-11-21 12:01	2017-03-28	Show	GitHub Exploit DB Packet Storm

265905	8.8	HIGH Network	revive-adserver	revive_adserver	Revive Adserver before 3.2.3 suffers from Cross-Site Request Forgery (CSRF). A number of scripts in Revive Adserver's user interface are vulnerable to CSRF attacks: `www/admin/banner-acl.php`, `www/a…	CWE-352 Origin Validation Error	CVE-2016-9455	2024-11-21 12:01	2017-03-28	Show	GitHub Exploit DB Packet Storm

265906	5.4	MEDIUM Network	revive-adserver	revive_adserver	Revive Adserver before 3.2.3 suffers from Persistent XSS. A vector for persistent XSS attacks via the Revive Adserver user interface exists, requiring a trusted (non-admin) account. The banner image …	CWE-79 Cross-site Scripting	CVE-2016-9454	2024-11-21 12:01	2017-03-28	Show	GitHub Exploit DB Packet Storm

265907	5.4	MEDIUM Network	ibm	tririga_application_platform	IBM TRIRIGA 3.3, 3.4, and 3.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia…	CWE-79 Cross-site Scripting	CVE-2016-9737	2024-11-21 12:01	2017-03-28	Show	GitHub Exploit DB Packet Storm

265908	5.5	MEDIUM Local	jasper_project	jasper	Integer overflow in jas_image.c in JasPer before 1.900.25 allows remote attackers to cause a denial of service (application crash) via a crafted file.	CWE-190 Integer Overflow or Wraparound	CVE-2016-9557	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

265909	5.5	MEDIUM Local	imagemagick opensuse_project debian	imagemagick leap debian_linux	The IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3-8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted image file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-9556	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm

265910	7.5	HIGH Network	jasper_project fedoraproject opensuse	jasper fedora leap	The calcstepsizes function in jpc_dec.c in JasPer 1.900.22 allows remote attackers to cause a denial of service (assertion failure) via unspecified vectors.	CWE-617 Reachable Assertion	CVE-2016-9399	2024-11-21 12:01	2017-03-24	Show	GitHub Exploit DB Packet Storm