Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258931	8.5	危険	Samba Project	-	Samba の smbd におけるファイルパーミッションを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0728	2010-03-18 12:09	2010-03-10	Show	GitHub Exploit DB Packet Storm

258932	7.2	危険	IBM	-	IBM AIX および VIOS の qosmod におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0960	2010-03-18 12:09	2010-03-5	Show	GitHub Exploit DB Packet Storm

258933	7.2	危険	IBM	-	IBM AIX および VIOS の qoslist におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0961	2010-03-18 12:09	2010-03-5	Show	GitHub Exploit DB Packet Storm

258934	9	危険	マイクロソフト	-	Microsoft Virtual PC の VMM におけるゲスト OS 内で任意のカーネルモードコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1542	2010-03-17 12:18	2009-07-14	Show	GitHub Exploit DB Packet Storm

258935	6.8	警告	IBM	-	IBM Lotus Domino Web Access におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-0921	2010-03-16 11:15	2010-03-3	Show	GitHub Exploit DB Packet Storm

258936	4.3	警告	IBM	-	IBM Lotus Domino Web Access におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0920	2010-03-16 11:14	2010-03-3	Show	GitHub Exploit DB Packet Storm

258937	10	危険	IBM	-	IBM Lotus Domino Web Access の UltraLite 機能における脆弱性	CWE-noinfo 情報不足	CVE-2010-0918	2010-03-16 11:14	2010-03-3	Show	GitHub Exploit DB Packet Storm

258938	4.9	警告	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の _get_argv および _get_compat_argv 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-0411	2010-03-16 11:14	2010-02-8	Show	GitHub Exploit DB Packet Storm

258939	10	危険	サイバートラスト株式会社レッドハット SystemTap	-	SystemTap の stap-server における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4273	2010-03-16 11:14	2010-01-26	Show	GitHub Exploit DB Packet Storm

258940	6.5	警告	サイバートラスト株式会社 Linux レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0298	2010-03-16 11:13	2010-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285341	-	skalfa oxwall	skadate_lite oxwall	Multiple cross-site request forgery (CSRF) vulnerabilities in Oxwall 1.7.0 (build 7907 and 7906) and SkaDate Lite 2.0 (build 7651) allow remote attackers to hijack the authentication of administrator…	CWE-352 Origin Validation Error	CVE-2014-9101	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285342	-	whydowork_adsense_project	whydowork_adsense	Cross-site scripting (XSS) vulnerability in the WhyDoWork AdSense plugin 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the idcode parameter in the whydowork_ads…	CWE-79 Cross-site Scripting	CVE-2014-9100	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285343	-	whydowork_adsense_project	whydowork_adsense	Cross-site request forgery (CSRF) vulnerability in the WhyDoWork AdSense plugin 1.2 for WordPress allows remote attackers to hijack the authentication of administrators for requests that have unspeci…	CWE-352 Origin Validation Error	CVE-2014-9099	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285344	-	apptha	contus_video_gallery	Multiple cross-site scripting (XSS) vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery) plugin 2.5, possibly before 2014-07-23, for WordPress allow remote authenticated users…	CWE-79 Cross-site Scripting	CVE-2014-9098	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285345	-	apptha	contus_video_gallery	Multiple SQL injection vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery) plugin 2.5, possibly as distributed before 2014-07-23, for WordPress allow (1) remote attackers to …	CWE-89 SQL Injection	CVE-2014-9097	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285346	-	pligg	pligg_cms	Multiple SQL injection vulnerabilities in recover.php in Pligg CMS 2.0.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) n parameter.	CWE-89 SQL Injection	CVE-2014-9096	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285347	-	raritan	power_iq	Multiple SQL injection vulnerabilities in Raritan Power IQ 4.1.0 and 4.2.1 allow remote attackers to execute arbitrary SQL commands via the (1) sort or (2) dir parameter to license/records.	CWE-89 SQL Injection	CVE-2014-9095	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285348	-	digitalzoomstudio	video_gallery	Multiple cross-site scripting (XSS) vulnerabilities in deploy/designer/preview.php in the Digital Zoom Studio (DZS) Video Gallery plugin for WordPress allow remote attackers to inject arbitrary web s…	CWE-79 Cross-site Scripting	CVE-2014-9094	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285349	-	libreoffice fedoraproject canonical debian	libreoffice fedora ubuntu_linux debian_linux	LibreOffice before 4.3.5 allows remote attackers to cause a denial of service (invalid write operation and crash) and possibly execute arbitrary code via a crafted RTF file.	CWE-20 Improper Input Validation	CVE-2014-9093	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm

285350	-	flac	libflac	Heap-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows remote attackers to execute arbitrary code via a crafted .flac file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-9028	2024-11-21 11:20	2014-11-27	Show	GitHub Exploit DB Packet Storm