Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258101	9.3	危険	Google	-	Google Chrome の browser kernel におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2121	2010-10-19 14:50	2009-06-22	Show	GitHub Exploit DB Packet Storm

258102	6.8	警告	Google	-	Google Chrome における任意の https サイトになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2009-2071	2010-10-19 14:49	2009-03-23	Show	GitHub Exploit DB Packet Storm

258103	6.4	警告	The PHP Group	-	PHP の zend_ini.c 内にある zend_restore_ini_entry_cb 関数における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2009-2626	2010-10-18 15:22	2009-12-1	Show	GitHub Exploit DB Packet Storm

258104	4	警告	オラクル	-	Oracle iPlanet Web Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3544	2010-10-18 12:03	2010-10-18	Show	GitHub Exploit DB Packet Storm

258105	5	警告	ISC, Inc.	-	BIND の ACL の処理に問題	CWE-264 認可・権限・アクセス制御	CVE-2010-0218	2010-10-15 13:24	2010-10-1	Show	GitHub Exploit DB Packet Storm

258106	5.1	警告	K2 Software	-	K2Editor における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3156	2010-10-15 11:22	2010-10-15	Show	GitHub Exploit DB Packet Storm

258107	6.8	警告	kMonos.NET	-	XacRett における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3157	2010-10-15 11:22	2010-10-15	Show	GitHub Exploit DB Packet Storm

258108	5	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2101	2010-10-14 16:20	2010-05-26	Show	GitHub Exploit DB Packet Storm

258109	9.3	危険	レッドハット	-	Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3996	2010-10-14 16:19	2009-12-18	Show	GitHub Exploit DB Packet Storm

258110	9.3	危険	レッドハット	-	Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3995	2010-10-14 16:19	2009-12-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294631	-	cisco	prime_data_center_network_manager	Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) before 6.2(1) allows remote attackers to write arbitrary files via the c…	CWE-78 OS Command	CVE-2013-5486	2024-11-21 10:57	2013-09-23	Show	GitHub Exploit DB Packet Storm

294632	-	glpi-project	glpi	inc/central.class.php in GLPI before 0.84.2 does not attempt to make install/install.php unavailable after an installation is completed, which allows remote attackers to conduct cross-site request fo…	CWE-352 Origin Validation Error	CVE-2013-5696	2024-11-21 10:57	2013-09-23	Show	GitHub Exploit DB Packet Storm

294633	-	cisco	mediasense	Cross-site scripting (XSS) vulnerability in the oraservice page in Cisco MediaSense allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuj23328.	CWE-79 Cross-site Scripting	CVE-2013-5501	2024-11-21 10:57	2013-09-21	Show	GitHub Exploit DB Packet Storm

294634	-	cisco	mediasense	Multiple cross-site scripting (XSS) vulnerabilities in the oraadmin service page in Cisco MediaSense allow remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bu…	CWE-79 Cross-site Scripting	CVE-2013-5500	2024-11-21 10:57	2013-09-21	Show	GitHub Exploit DB Packet Storm

294635	-	cisco	intrusion_prevention_system	The authentication manager process in the web framework in Cisco Intrusion Prevention System (IPS) does not properly handle user tokens, which allows remote attackers to cause a denial of service (in…	CWE-287 Improper Authentication	CVE-2013-5497	2024-11-21 10:57	2013-09-20	Show	GitHub Exploit DB Packet Storm

294636	-	apple	iphone_os	WebKit in Apple iOS before 7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive information about use of the window.webkitRequestAnimationFrame API via an IFRAM…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5159	2024-11-21 10:57	2013-09-19	Show	GitHub Exploit DB Packet Storm

294637	-	apple	iphone_os	The Social subsystem in Apple iOS before 7 does not properly restrict access to the cache of Twitter icons, which allows physically proximate attackers to obtain sensitive information about recent Tw…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5158	2024-11-21 10:57	2013-09-19	Show	GitHub Exploit DB Packet Storm

294638	-	apple	iphone_os	The Twitter subsystem in Apple iOS before 7 does not require API conformity for access to Twitter daemon interfaces, which allows attackers to post Tweets via a crafted app that sends direct requests…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5157	2024-11-21 10:57	2013-09-19	Show	GitHub Exploit DB Packet Storm

294639	-	apple	iphone_os	The Telephony subsystem in Apple iOS before 7 does not require API conformity for access to telephony-daemon interfaces, which allows attackers to bypass intended restrictions on phone calls via a cr…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-5156	2024-11-21 10:57	2013-09-19	Show	GitHub Exploit DB Packet Storm

294640	-	apple	iphone_os	The Sandbox subsystem in Apple iOS before 7 allows attackers to cause a denial of service (infinite loop) via an application that writes crafted values to /dev/random.	CWE-20 Improper Input Validation	CVE-2013-5155	2024-11-21 10:57	2013-09-19	Show	GitHub Exploit DB Packet Storm