Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258491	3.2	注意	オラクル	-	Oracle Solaris における NFS の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2383	2010-08-4 16:25	2010-07-13	Show	GitHub Exploit DB Packet Storm

258492	3.2	注意	オラクル	-	Oracle Solaris における脆弱性	CWE-noinfo 情報不足	CVE-2010-2382	2010-08-4 16:25	2010-07-13	Show	GitHub Exploit DB Packet Storm

258493	3.2	注意	オラクル	-	Oracle Solaris における Solaris Management コンソールの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2376	2010-08-4 16:25	2010-07-13	Show	GitHub Exploit DB Packet Storm

258494	3.8	注意	オラクル	-	Oracle Solaris における RPCの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2393	2010-08-4 16:25	2010-07-13	Show	GitHub Exploit DB Packet Storm

258495	4.6	警告	オラクル	-	Oracle Solaris における Kernel/Filesystem の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2400	2010-08-4 16:24	2010-07-13	Show	GitHub Exploit DB Packet Storm

258496	4.6	警告	オラクル	-	Oracle Solaris における Kernel/VM の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2399	2010-08-4 16:24	2010-07-13	Show	GitHub Exploit DB Packet Storm

258497	10	危険	日立	-	JP1/Cm2/Network Node Manager における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	-	2010-08-4 16:23	2010-07-12	Show	GitHub Exploit DB Packet Storm

258498	5	警告	日立	-	HiRDB におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	-	2010-08-4 16:23	2010-06-30	Show	GitHub Exploit DB Packet Storm

258499	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0177	2010-08-4 15:25	2010-03-30	Show	GitHub Exploit DB Packet Storm

258500	4.7	警告	オラクル	-	Oracle Solaris における TCP/IP の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2394	2010-08-3 19:20	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285391	-	vld_interactive	vldpersonals	Multiple SQL injection vulnerabilities in vldPersonals before 2.7.1 allow remote attackers to execute arbitrary SQL commands via the (1) country, (2) gender1, or ((3) gender2 parameter in a search ac…	CWE-89 SQL Injection	CVE-2014-9005	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285392	-	vld_interactive	vldpersonals	Cross-site scripting (XSS) vulnerability in vldPersonals before 2.7.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter in a member_profile action to index.php.	CWE-79 Cross-site Scripting	CVE-2014-9004	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285393	-	lantronix	xprintserver	Cross-site request forgery (CSRF) vulnerability in Lantronix xPrintServer allows remote attackers to hijack the authentication of administrators for requests that modify configuration, as demonstrate…	CWE-352 Origin Validation Error	CVE-2014-9003	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285394	-	lantronix	xprintserver	Lantronix xPrintServer does not properly restrict access to ips/, which allows remote attackers to execute arbitrary commands via the c parameter in an rpc action.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9002	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285395	-	incrediblepbx	incredible_pbx_11	reminders/index.php in Incredible PBX 11 2.0.6.5.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) APPTMIN, (2) APPTHR, (3) APPTDA, (4) APPTMO, (5)…	CWE-94 Code Injection	CVE-2014-9001	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285396	-	mulesoft	mule_enterprise_management_console	Mule Enterprise Management Console (MMC) does not properly restrict access to handler/securityService.rpc, which allows remote authenticated users to gain administrator privileges and execute arbitra…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9000	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285397	-	xoops	xoops	SQL injection vulnerability in htdocs/modules/system/admin.php in XOOPS before 2.5.7 Final allows remote authenticated users to execute arbitrary SQL commands via the selgroups parameter.	CWE-89 SQL Injection	CVE-2014-8999	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285398	-	x7chat	x7_chat	lib/message.php in X7 Chat 2.0.0 through 2.0.5.1 allows remote authenticated users to execute arbitrary PHP code via a crafted HTTP header to index.php, which is processed by the preg_replace functio…	CWE-94 Code Injection	CVE-2014-8998	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285399	-	digitalvidhya	digi_online_examination_system	Unrestricted file upload vulnerability in the Photo functionality in DigitalVidhya Digi Online Examination System 2.0 allows remote attackers to execute arbitrary code by uploading a file with an exe…	CWE-94 Code Injection	CVE-2014-8997	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm

285400	-	nibbleblog	nibbleblog	Multiple cross-site scripting (XSS) vulnerabilities in Nibbleblog before 4.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) author_name or (2) content parameter to index.…	CWE-79 Cross-site Scripting	CVE-2014-8996	2024-11-21 11:20	2014-11-20	Show	GitHub Exploit DB Packet Storm