Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 6, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257651 | 10 | 危険 | マイクロソフト | - | Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0239 | 2010-03-1 11:36 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 257652 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性 |
CWE-362
競合状態 |
CVE-2010-0017 | 2010-03-1 11:35 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 257653 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0016 | 2010-03-1 11:35 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 257654 | 5 | 警告 | 日立 | - | uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-02-26 11:36 | 2010-01-29 | Show | GitHub Exploit DB Packet Storm |
| 257655 | 2.6 | 注意 | tDiary開発プロジェクト | - | tDiary 付属のプラグイン tb-send.rb におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0726 | 2010-02-25 15:03 | 2010-02-25 | Show | GitHub Exploit DB Packet Storm |
| 257656 | 4.3 | 警告 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server における HTTP リクエストを非表示にされる脆弱性 |
CWE-Other
その他 |
CVE-2003-1578 | 2010-02-25 12:36 | 2003-11-14 | Show | GitHub Exploit DB Packet Storm |
| 257657 | 2.6 | 注意 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server におけるログファイルに任意のテキストを挿入される脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2003-1577 | 2010-02-25 12:36 | 2003-11-14 | Show | GitHub Exploit DB Packet Storm |
| 257658 | 5 | 警告 | IBM | - | IBM WebSphere Application Server の Single Sign-on 機能における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0563 | 2010-02-25 12:35 | 2010-02-5 | Show | GitHub Exploit DB Packet Storm |
| 257659 | 5 | 警告 | アップル | - | Apple Safari の WebKit における任意の Web サイトにリクエストされる脆弱性 |
CWE-Other
その他 |
CVE-2009-2841 | 2010-02-25 12:33 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 257660 | 10 | 危険 | アップル | - | Apple Safari の WebKit における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3384 | 2010-02-25 12:33 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 6, 2026, 4:18 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 282761 | 5.3 |
MEDIUM
Network |
jenkins | jenkins | Jenkins before 1.586 does not set the secure flag on session cookies when run on Tomcat 7.0.41 or later, which makes it easier for remote attackers to capture cookies by intercepting their transmissi… |
CWE-254
7PK - Security Features |
CVE-2014-9634 | 2024-11-21 11:21 | 2017-09-12 | Show | GitHub Exploit DB Packet Storm |
| 282762 | 7.5 |
HIGH
Network |
mantisbt | mantisbt | CAPTCHA bypass vulnerability in MantisBT before 1.2.19. |
CWE-287
Improper Authentication |
CVE-2014-9624 | 2024-11-21 11:21 | 2017-09-12 | Show | GitHub Exploit DB Packet Storm |
| 282763 | 8.8 |
HIGH
Network |
ibm |
ib6131_firmware en6131_firmware |
Cross-site request forgery (CSRF) vulnerability in IBM Flex System EN6131 40Gb Ethernet and IB6131 40Gb Infiniband Switch firmware 3.4.0000 and earlier. |
CWE-352
Origin Validation Error |
CVE-2014-9565 | 2024-11-21 11:21 | 2017-09-8 | Show | GitHub Exploit DB Packet Storm |
| 282764 | 7.5 |
HIGH
Network |
mpg123 | mpg123 | Buffer overflow in mpg123 before 1.18.0. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2014-9497 | 2024-11-21 11:21 | 2017-08-30 | Show | GitHub Exploit DB Packet Storm |
| 282765 | 9.8 |
CRITICAL
Network |
smartcms | smartcms | Multiple SQL injection vulnerabilities in SmartCMS v.2. |
CWE-89
SQL Injection |
CVE-2014-9558 | 2024-11-21 11:21 | 2017-08-29 | Show | GitHub Exploit DB Packet Storm |
| 282766 | 6.1 |
MEDIUM
Network |
smartwebsites | smartcms | Multiple cross-site scripting (XSS) vulnerabilities in SmartCMS v.2. |
CWE-79
Cross-site Scripting |
CVE-2014-9557 | 2024-11-21 11:21 | 2017-08-29 | Show | GitHub Exploit DB Packet Storm |
| 282767 | 6.1 |
MEDIUM
Network |
bmc | footprints_service_core | Cross-site scripting (XSS) vulnerability in BMC Footprints Service Core 11.5. |
CWE-79
Cross-site Scripting |
CVE-2014-9514 | 2024-11-21 11:21 | 2017-08-29 | Show | GitHub Exploit DB Packet Storm |
| 282768 | 9.8 |
CRITICAL
Network |
debian | xbindkeys-config | Insecure use of temporary files in xbindkeys-config 0.1.3-2 allows remote attackers to execute arbitrary code. |
CWE-284
Improper Access Control |
CVE-2014-9513 | 2024-11-21 11:21 | 2017-08-29 | Show | GitHub Exploit DB Packet Storm |
| 282769 | 5.5 |
MEDIUM
Local |
fedoraproject mageia canonical gnu |
fedora mageia ubuntu_linux patch |
GNU patch 2.7.2 and earlier allows remote attackers to cause a denial of service (memory consumption and segmentation fault) via a crafted diff file. |
CWE-399
Resource Management Errors |
CVE-2014-9637 | 2024-11-21 11:21 | 2017-08-26 | Show | GitHub Exploit DB Packet Storm |
| 282770 | 6.1 |
MEDIUM
Network |
ibm |
ib6131_firmware en6131_firmware |
CRLF injection vulnerability in IBM Flex System EN6131 40Gb Ethernet and IB6131 40Gb Infiniband Switch firmware before 3.4.1110 allows remote attackers to inject arbitrary HTTP headers and conduct HT… |
CWE-93
CRLF Injection |
CVE-2014-9564 | 2024-11-21 11:21 | 2017-08-26 | Show | GitHub Exploit DB Packet Storm |