Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257861 6.8 警告 アップル - Apple Mac OS X の Apple Type Services (ATS) における整数符号エラーの脆弱性 CWE-189
数値処理の問題
CVE-2011-3437 2011-10-25 16:33 2011-10-14 Show GitHub Exploit DB Packet Storm
257862 6.5 警告 アップル - Apple Mac OS の Open Directory におけるパスワード変更の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3436 2011-10-25 16:32 2011-10-14 Show GitHub Exploit DB Packet Storm
257863 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2011-3156 2011-10-25 14:34 2011-10-18 Show GitHub Exploit DB Packet Storm
257864 4.3 警告 KENT-WEB - WEB FORUM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3984 2011-10-25 13:44 2011-10-11 Show GitHub Exploit DB Packet Storm
257865 2.6 注意 KENT-WEB - WEB FORUM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3983 2011-10-25 13:43 2011-10-11 Show GitHub Exploit DB Packet Storm
257866 5 警告 KENT-WEB - WEB FORUM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3383 2011-10-25 13:43 2011-10-11 Show GitHub Exploit DB Packet Storm
257867 6.8 警告 アップル - Apple Mac OS X の MediaKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-3217 2011-10-25 11:50 2011-10-14 Show GitHub Exploit DB Packet Storm
257868 2.1 注意 アップル - Apple Mac OS X の kernel におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3216 2011-10-25 11:49 2011-10-14 Show GitHub Exploit DB Packet Storm
257869 2.1 注意 アップル - Apple Mac OS X の kernel におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3215 2011-10-25 11:48 2011-10-14 Show GitHub Exploit DB Packet Storm
257870 4.6 警告 アップル - Apple Mac OS X の IOGraphics におけるパスワード要求を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3214 2011-10-25 11:48 2011-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313901 - alex_kellner powermail SQL injection vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2010-3604 2024-11-21 10:19 2010-09-25 Show GitHub Exploit DB Packet Storm
313902 - sourcetreesolutions mojoportal Cross-site request forgery (CSRF) vulnerability in the file manager service (Services/FileService.ashx) in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to hijack the authentication of admin… CWE-352
 Origin Validation Error
CVE-2010-3603 2024-11-21 10:19 2010-09-25 Show GitHub Exploit DB Packet Storm
313903 - sourcetreesolutions mojoportal Cross-site scripting (XSS) vulnerability in ProfileView.aspx in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to inject arbitrary web script or HTML via the User ID parameter. NOTE: some of… CWE-79
Cross-site Scripting
CVE-2010-3602 2024-11-21 10:19 2010-09-25 Show GitHub Exploit DB Packet Storm
313904 - invisionpower ibphotohost SQL injection vulnerability in index.php in ibPhotohost 1.1.2 allows remote attackers to execute arbitrary SQL commands via the img parameter. CWE-89
SQL Injection
CVE-2010-3601 2024-11-21 10:19 2010-09-25 Show GitHub Exploit DB Packet Storm
313905 5.9 MEDIUM
Network
owasp enterprise_security_api_for_java It was found that all OWASP ESAPI for Java up to version 2.0 RC2 are vulnerable to padding oracle attacks. - CVE-2010-3300 2024-11-21 10:18 2021-06-22 Show GitHub Exploit DB Packet Storm
313906 3.3 LOW
Local
hp
redhat
fedoraproject
hp-ux_directory_server
redhat_directory_server
389_directory_server
directory_server
389 Directory Server before 1.2.7.1 (aka Red Hat Directory Server 8.2) and HP-UX Directory Server before B.08.10.03, when audit logging is enabled, logs the Directory Manager password (nsslapd-rootpw… CWE-312
 Cleartext Storage of Sensitive Information
CVE-2010-3282 2024-11-21 10:18 2020-01-10 Show GitHub Exploit DB Packet Storm
313907 5.5 MEDIUM
Local
babiloo_project
debian
babiloo
debian_linux
babiloo 2.0.9 before 2.0.11 creates temporary files with predictable names when downloading and unpacking dictionary files, allowing a local attacker to overwrite arbitrary files. CWE-494
 Download of Code Without Integrity Check
CVE-2010-3440 2024-11-21 10:18 2019-11-13 Show GitHub Exploit DB Packet Storm
313908 8.8 HIGH
Network
pixelpost pixelpost Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote attackers to change the admin password. CWE-352
 Origin Validation Error
CVE-2010-3305 2024-11-21 10:18 2019-11-13 Show GitHub Exploit DB Packet Storm
313909 6.5 MEDIUM
Network
rubyonrails
debian
rails
debian_linux
The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks. CWE-311
Missing Encryption of Sensitive Data
CVE-2010-3299 2024-11-21 10:18 2019-11-13 Show GitHub Exploit DB Packet Storm
313910 5.5 MEDIUM
Local
mailscanner mailscanner The update{_bad,}_phishing_sites scripts in mailscanner 4.79.11-2 downloads files and trusts them without using encryption (e.g., https) or digital signature checking which could allow an attacker to… CWE-311
Missing Encryption of Sensitive Data
CVE-2010-3292 2024-11-21 10:18 2019-11-13 Show GitHub Exploit DB Packet Storm