Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258131	5	警告	Drupal サイバートラスト株式会社	-	Drupal の OpenID モジュールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-3091	2010-10-7 16:39	2010-08-11	Show	GitHub Exploit DB Packet Storm

258132	2.1	注意	Drupal サイバートラスト株式会社	-	Drupal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3094	2010-10-7 16:39	2010-08-11	Show	GitHub Exploit DB Packet Storm

258133	3.5	注意	Drupal サイバートラスト株式会社	-	Drupal の comment モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3093	2010-10-7 16:38	2010-08-11	Show	GitHub Exploit DB Packet Storm

258134	5.5	警告	Drupal サイバートラスト株式会社	-	Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3092	2010-10-7 16:37	2010-08-11	Show	GitHub Exploit DB Packet Storm

258135	9.3	危険	アップル	-	Apple QuickTime の IPersistPropertyBag2::Read における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1818	2010-10-6 16:57	2010-08-31	Show	GitHub Exploit DB Packet Storm

258136	9.3	危険	IBM	-	IBM Lotus Domino サーバの MailCheck821Address 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3407	2010-10-6 16:57	2010-09-16	Show	GitHub Exploit DB Packet Storm

258137	6.8	警告	マイクロソフト	-	Microsoft Outlook Web Access におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3213	2010-10-6 16:56	2010-09-7	Show	GitHub Exploit DB Packet Storm

258138	6.9	警告	マイクロソフト	-	Microsoft Windows の Win32 サブシステム内にある CSRSS における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1891	2010-10-6 16:56	2010-09-14	Show	GitHub Exploit DB Packet Storm

258139	9	危険	マイクロソフト	-	Microsoft Windows の LSASS におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0820	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

258140	9.3	危険	マイクロソフト	-	Microsoft Windows の WordPad Text Converters における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2563	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253101	7.5	HIGH Network	vivotek	network_camera_ib8369_firmware network_camera_fd8164_firmware network_camera_fd816ba_firmware	'/cgi-bin/admin/downloadMedias.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable, which allows remote attackers to read any file on the camera's Linux filesystem via a craf…	CWE-22 Path Traversal	CVE-2017-9829	2024-11-21 12:36	2017-06-24	Show	GitHub Exploit DB Packet Storm

253102	9.8	CRITICAL Network	ocaml	ocaml	Insufficient sanitisation in the OCaml compiler versions 4.04.0 and 4.04.1 allows external code to be executed with raised privilege in binaries marked as setuid, by setting the CAML_CPLUGINS, CAML_N…	NVD-CWE-noinfo	CVE-2017-9772	2024-11-21 12:36	2017-06-24	Show	GitHub Exploit DB Packet Storm

253103	9.8	CRITICAL Network	vivotek	network_camera_ib8369_firmware network_camera_fd8164_firmware network_camera_fd816ba_firmware	'/cgi-bin/admin/testserver.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable to shell command injection, which allows remote attackers to execute any shell command as root …	CWE-78 OS Command	CVE-2017-9828	2024-11-21 12:36	2017-06-24	Show	GitHub Exploit DB Packet Storm

253104	7.8	HIGH Local	freedesktop debian redhat	poppler debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus enterprise_linux_server…	Integer overflow leading to Heap buffer overflow in JBIG2Stream.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service (application crash) or possibly have unspe…	CWE-190 Integer Overflow or Wraparound	CVE-2017-9776	2024-11-21 12:36	2017-06-23	Show	GitHub Exploit DB Packet Storm

253105	6.5	MEDIUM Network	freedesktop debian redhat	poppler debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_aus enterprise_linux_server_eus enterprise_linux_server…	Stack buffer overflow in GfxState.cc in pdftocairo in Poppler before 0.56 allows remote attackers to cause a denial of service (application crash) via a crafted PDF document.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-9775	2024-11-21 12:36	2017-06-23	Show	GitHub Exploit DB Packet Storm

253106	9.8	CRITICAL Network	ideablade	breeze.server.net	IdeaBlade Breeze Breeze.Server.NET before 1.6.5 allows remote attackers to execute arbitrary code, related to use of TypeNameHandling in JSON deserialization.	CWE-502 Deserialization of Untrusted Data	CVE-2017-9424	2024-11-21 12:36	2017-06-23	Show	GitHub Exploit DB Packet Storm

253107	6.5	MEDIUM Network	libtiff canonical	libtiff ubuntu_linux	In LibTIFF 4.0.7, the TIFFReadDirEntryLong8Array function in libtiff/tif_dirread.c mishandles a malloc operation, which allows attackers to cause a denial of service (memory leak within the function …	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-9815	2024-11-21 12:36	2017-06-23	Show	GitHub Exploit DB Packet Storm

253108	9.8	CRITICAL Network	openwebif_project	openwebif	An issue was discovered in the OpenWebif plugin through 1.2.4 for E2 open devices. The saveConfig function of "plugin/controllers/models/config.py" performs an eval() call on the contents of the "key…	CWE-94 Code Injection	CVE-2017-9807	2024-11-21 12:36	2017-06-22	Show	GitHub Exploit DB Packet Storm

253109	5.5	MEDIUM Local	jasper_project	jasper	JasPer 2.0.12 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted image, related to the jp2_decode function in libjasper/jp2/jp2_dec…	CWE-125 Out-of-bounds Read	CVE-2017-9782	2024-11-21 12:36	2017-06-22	Show	GitHub Exploit DB Packet Storm

253110	6.1	MEDIUM Network	check_mk_project	check_mk	A cross site scripting (XSS) vulnerability exists in Check_MK versions 1.4.0x prior to 1.4.0p6, allowing an unauthenticated remote attacker to inject arbitrary HTML or JavaScript via the _username pa…	CWE-79 Cross-site Scripting	CVE-2017-9781	2024-11-21 12:36	2017-06-22	Show	GitHub Exploit DB Packet Storm