Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258761	9.3	危険	マイクロソフト	-	Microsoft Windows の Cinepak コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2553	2010-09-1 15:19	2010-08-10	Show	GitHub Exploit DB Packet Storm

258762	7.8	危険	マイクロソフト	-	Microsoft Windows の SMB サーバーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2552	2010-09-1 15:19	2010-08-10	Show	GitHub Exploit DB Packet Storm

258763	7.8	危険	マイクロソフト	-	Microsoft Windows の SMB サーバーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2551	2010-09-1 15:19	2010-08-10	Show	GitHub Exploit DB Packet Storm

258764	10	危険	マイクロソフト	-	Microsoft Windows の SMB サーバーにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2550	2010-09-1 15:17	2010-08-10	Show	GitHub Exploit DB Packet Storm

258765	9.3	危険	マイクロソフト	-	Microsoft Office Word および Office Word Viewe における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1903	2010-09-1 15:17	2010-08-10	Show	GitHub Exploit DB Packet Storm

258766	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1902	2010-09-1 15:17	2010-08-10	Show	GitHub Exploit DB Packet Storm

258767	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1901	2010-09-1 15:17	2010-08-10	Show	GitHub Exploit DB Packet Storm

258768	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1900	2010-09-1 15:16	2010-08-10	Show	GitHub Exploit DB Packet Storm

258769	9.3	危険	マイクロソフト	-	Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1898	2010-09-1 15:16	2010-08-10	Show	GitHub Exploit DB Packet Storm

258770	6.8	警告	マイクロソフト	-	Microsoft Windows のカーネルにおける権限を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1889	2010-09-1 15:16	2010-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285891	-	apptha	contus_video_gallery	Multiple cross-site scripting (XSS) vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery) plugin 2.5, possibly before 2014-07-23, for WordPress allow remote authenticated users…	CWE-79 Cross-site Scripting	CVE-2014-9098	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285892	-	apptha	contus_video_gallery	Multiple SQL injection vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery) plugin 2.5, possibly as distributed before 2014-07-23, for WordPress allow (1) remote attackers to …	CWE-89 SQL Injection	CVE-2014-9097	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285893	-	pligg	pligg_cms	Multiple SQL injection vulnerabilities in recover.php in Pligg CMS 2.0.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) n parameter.	CWE-89 SQL Injection	CVE-2014-9096	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285894	-	raritan	power_iq	Multiple SQL injection vulnerabilities in Raritan Power IQ 4.1.0 and 4.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) sort or (2) dir parameter to license/records.	CWE-89 SQL Injection	CVE-2014-9095	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285895	-	digitalzoomstudio	video_gallery	Multiple cross-site scripting (XSS) vulnerabilities in deploy/designer/preview.php in the Digital Zoom Studio (DZS) Video Gallery plugin for WordPress allow remote attackers to inject arbitrary web s…	CWE-79 Cross-site Scripting	CVE-2014-9094	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285896	-	libreoffice fedoraproject canonical debian	libreoffice fedora ubuntu_linux debian_linux	LibreOffice before 4.3.5 allows remote attackers to cause a denial of service (invalid write operation and crash) and possibly execute arbitrary code via a crafted RTF file.	CWE-20 Improper Input Validation	CVE-2014-9093	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285897	-	flac	libflac	Heap-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-9028	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285898	-	flac	libflac	Stack-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8962	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285899	-	debian mageia_project wordpress	debian_linux mageia wordpress	wp-login.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 might allow remote attackers to reset passwords by leveraging access to an e-mail account that rec…	CWE-254 7PK - Security Features	CVE-2014-9039	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

285900	-	wordpress	wordpress	wp-includes/http.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote attackers to conduct server-side request forgery (SSRF) attacks by referring…	CWE-20 Improper Input Validation	CVE-2014-9038	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm