Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258321	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0029	2010-03-2 11:26	2010-02-9	Show	GitHub Exploit DB Packet Storm

258322	10	危険	マイクロソフト	-	Microsoft Office の MSO.DLL におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0243	2010-03-1 11:37	2010-02-9	Show	GitHub Exploit DB Packet Storm

258323	9.3	危険	マイクロソフト	-	Microsoft DirectX の DirectShow におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0250	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

258324	7.8	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0242	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

258325	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0241	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

258326	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0240	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

258327	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0239	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

258328	9.3	危険	マイクロソフト	-	Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性	CWE-362 競合状態	CVE-2010-0017	2010-03-1 11:35	2010-02-9	Show	GitHub Exploit DB Packet Storm

258329	9.3	危険	マイクロソフト	-	Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0016	2010-03-1 11:35	2010-02-9	Show	GitHub Exploit DB Packet Storm

258330	5	警告	日立	-	uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-02-26 11:36	2010-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266691	5.9	MEDIUM Network	apache	struts	In Apache Struts 2.5 through 2.5.5, if an application allows entering a URL in a form field and the built-in URLValidator is used, it is possible to prepare a special URL which will be used to overlo…	CWE-20 Improper Input Validation	CVE-2016-8738	2024-11-21 11:59	2017-09-21	Show	GitHub Exploit DB Packet Storm

266692	8.8	HIGH Network	apache	brooklyn	In Apache Brooklyn before 0.10.0, the REST server is vulnerable to cross-site request forgery (CSRF), which could permit a malicious web site to produce a link which, if clicked whilst a user is logg…	CWE-352 Origin Validation Error	CVE-2016-8737	2024-11-21 11:59	2017-09-14	Show	GitHub Exploit DB Packet Storm

266693	8.8	HIGH Network	apache	brooklyn	Apache Brooklyn uses the SnakeYAML library for parsing YAML inputs. SnakeYAML allows the use of YAML tags to indicate that SnakeYAML should unmarshal data to a Java type. In the default configuration…	CWE-502 Deserialization of Untrusted Data	CVE-2016-8744	2024-11-21 11:59	2017-09-14	Show	GitHub Exploit DB Packet Storm

266694	7.5	HIGH Network	apache	atlas	Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allow access to the webapp directory contents by pointing to URIs like /js and /img.	CWE-284 Improper Access Control	CVE-2016-8752	2024-11-21 11:59	2017-08-30	Show	GitHub Exploit DB Packet Storm

266695	7.5	HIGH Network	apache	tomcat	A bug in the error handling of the send file code for the NIO HTTP connector in Apache Tomcat 9.0.0.M1 to 9.0.0.M13, 8.5.0 to 8.5.8, 8.0.0.RC1 to 8.0.39, 7.0.0 to 7.0.73 and 6.0.16 to 6.0.48 resulted…	CWE-388 7PK - Errors	CVE-2016-8745	2024-11-21 11:59	2017-08-11	Show	GitHub Exploit DB Packet Storm

266696	7.5	HIGH Network	apache	cxf	The JAX-RS module in Apache CXF prior to 3.0.12 and 3.1.x prior to 3.1.9 provides a number of Atom JAX-RS MessageBodyReaders. These readers use Apache Abdera Parser which expands XML entities by defa…	CWE-611 XXE	CVE-2016-8739	2024-11-21 11:59	2017-08-11	Show	GitHub Exploit DB Packet Storm

266697	7.5	HIGH Network	apache netapp debian redhat	http_server clustered_data_ontap oncommand_unified_manager debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus<…	Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whitespace accepted from requests and sent in response lines and headers. Accepting these different behaviors repres…	NVD-CWE-noinfo	CVE-2016-8743	2024-11-21 11:59	2017-07-28	Show	GitHub Exploit DB Packet Storm

266698	9.1	CRITICAL Network	ipsilon_project	ipsilon	A vulnerability in ipsilon 2.0 before 2.0.2, 1.2 before 1.2.1, 1.1 before 1.1.2, and 1.0 before 1.0.3 was found that allows attacker to log out active sessions of other users. This issue is related …	CWE-384 Session Fixation	CVE-2016-8638	2024-11-21 11:59	2017-07-12	Show	GitHub Exploit DB Packet Storm

266699	8.8	HIGH Network	fortinet	forticlient	In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClientNamedPipe vulnerability.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-8493	2024-11-21 11:59	2017-06-27	Show	GitHub Exploit DB Packet Storm

266700	9.8	CRITICAL Network	foscam	c1_webcam_firmware	Hard-coded FTP credentials (r:r) are included in the Foscam C1 running firmware 1.9.1.12. Knowledge of these credentials would allow remote access to any cameras found on the internet that do not hav…	CWE-798 Use of Hard-coded Credentials	CVE-2016-8731	2024-11-21 11:59	2017-06-22	Show	GitHub Exploit DB Packet Storm