Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258821	4.3	警告	アップル	-	Apple Safari におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1778	2010-08-20 18:24	2010-07-30	Show	GitHub Exploit DB Packet Storm

258822	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

258823	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

258824	5	警告	金子勇	-	Winny におけるノード情報の処理に関する脆弱性	CWE-Other その他	CVE-2010-2362	2010-08-20 12:01	2010-08-20	Show	GitHub Exploit DB Packet Storm

258825	5	警告	金子勇	-	Winny における BBS 情報の処理に関する脆弱性	CWE-Other その他	CVE-2010-2361	2010-08-20 12:01	2010-08-20	Show	GitHub Exploit DB Packet Storm

258826	10	危険	シマンテック IBM	-	Autonomy KeyView Filter SDK の kvolefio.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3032	2010-08-19 18:22	2010-03-5	Show	GitHub Exploit DB Packet Storm

258827	5	警告	The PHP Group	-	PHP の phar 拡張における重要な情報を取得される脆弱性	CWE-134 書式文字列の問題	CVE-2010-2094	2010-08-18 18:26	2010-05-14	Show	GitHub Exploit DB Packet Storm

258828	7.5	危険	The PHP Group	-	PHP の sqlite_single_query および sqlite_array_query 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1868	2010-08-18 18:26	2010-05-7	Show	GitHub Exploit DB Packet Storm

258829	7.5	危険	The PHP Group	-	PHP の dechunk フィルタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-1866	2010-08-18 18:26	2010-05-2	Show	GitHub Exploit DB Packet Storm

258830	5	警告	The PHP Group	-	PHP の chunk_split 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1862	2010-08-18 18:25	2010-05-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
280491	6.1	MEDIUM Network	roundcube	roundcube_webmail webmail	Cross-site scripting (XSS) vulnerability in program/include/rcmail.php in Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the _mbox parameter t…	CWE-79 Cross-site Scripting	CVE-2015-5381	2024-11-21 11:32	2017-05-23	Show	GitHub Exploit DB Packet Storm

280492	6.1	MEDIUM Network	apache	juddi	After logging into the portal, the logout jsp page redirects the browser back to the login page after. It is feasible for malicious users to redirect the browser to an unintended web page in Apache j…	CWE-601 Open Redirect	CVE-2015-5241	2024-11-21 11:32	2017-05-20	Show	GitHub Exploit DB Packet Storm

280493	5.5	MEDIUM Local	ibm	security_access_manager_for_web_8.0_firmware security_access_manager_for_mobile security_access_manager_9.0_firmware	The IBM Security Access Manager appliance includes configuration files that contain obfuscated plaintext-passwords which authenticated users can access.	CWE-522 Insufficiently Protected Credentials	CVE-2015-5013	2024-11-21 11:32	2017-02-9	Show	GitHub Exploit DB Packet Storm

280494	9.1	CRITICAL Network	ibm pcre	powerkvm pcre	Heap-based buffer overflow in the find_fixedlength function in pcre_compile.c in PCRE before 8.38 allows remote attackers to cause a denial of service (crash) or obtain sensitive information from hea…	CWE-119 CWE-200 Incorrect Access of Indexable Resource ('Range Error') Information Exposure	CVE-2015-5073	2024-11-21 11:32	2016-12-14	Show	GitHub Exploit DB Packet Storm

280495	2.6	LOW Adjacent	ibm	tealeaf_customer_experience	IBM Tealeaf Customer Experience 8.x before 8.7.1.8847 FP10, 8.8.x before 8.8.0.9049 FP9, 9.0.0 and 9.0.1 before 9.0.1.1117 FP5, 9.0.1A before 9.0.1.5108 FP5, 9.0.2 before 9.0.2.1223 FP3, and 9.0.2A b…	CWE-200 Information Exposure	CVE-2015-4961	2024-11-21 11:32	2016-11-25	Show	GitHub Exploit DB Packet Storm

280496	7.5	HIGH Network	openstack	nova glance cinder	The image parser in OpenStack Cinder 7.0.2 and 8.0.0 through 8.1.1; Glance before 11.0.1 and 12.0.0; and Nova before 12.0.4 and 13.0.0 does not properly limit qemu-img calls, which might allow attack…	CWE-399 Resource Management Errors	CVE-2015-5162	2024-11-21 11:32	2016-10-7	Show	GitHub Exploit DB Packet Storm

280497	5.4	MEDIUM Network	phpvibe	phpvibe	Cross-site scripting (XSS) vulnerability in PHPVibe before 4.21 allows remote authenticated users to inject arbitrary web script or HTML via a comment.	CWE-79 Cross-site Scripting	CVE-2015-5399	2024-11-21 11:32	2016-08-27	Show	GitHub Exploit DB Packet Storm

280498	7.1	HIGH Local	canonical redhat debian spice_project	ubuntu_linux enterprise_linux_server_eus enterprise_linux_hpc_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_hpc_node_eus deb…	Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to read and write to arbitrary memory locations on the host via guest QXL commands related to surface creation.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-5261	2024-11-21 11:32	2016-06-7	Show	GitHub Exploit DB Packet Storm

280499	7.8	HIGH Local	redhat debian canonical spice_project	enterprise_linux_server_eus enterprise_linux_hpc_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation debian_linux ubuntu_linux spice enterprise_…	Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to cause a denial of service (heap-based memory corruption and QEMU-KVM crash) or possibly execute arbitrary code on the host v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-5260	2024-11-21 11:32	2016-06-7	Show	GitHub Exploit DB Packet Storm

280500	5.5	MEDIUM Local	criu opensuse	checkpoint\/restore_in_userspace opensuse	The service daemon in CRIU does not properly restrict access to non-dumpable processes, which allows local users to obtain sensitive information via (1) process dumps or (2) ptrace access.	CWE-200 Information Exposure	CVE-2015-5231	2024-11-21 11:32	2016-06-7	Show	GitHub Exploit DB Packet Storm