Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259071 - - Blackboard, Inc. - Blackboard Transact データベースに情報漏えいの脆弱性 - - 2010-09-28 14:46 2010-09-2 Show GitHub Exploit DB Packet Storm
259072 6.8 警告 w3m project
ターボリナックス
サイバートラスト株式会社
レッドハット		 - w3m のistream.c における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2074 2010-09-27 16:24 2010-06-16 Show GitHub Exploit DB Packet Storm
259073 6.8 警告 レッドハット
サイバートラスト株式会社
ターボリナックス
OpenLDAP Foundation		 - OpenLDAP における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-3767 2010-09-27 16:23 2009-10-23 Show GitHub Exploit DB Packet Storm
259074 4.3 警告 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3021 2010-09-27 16:21 2010-08-12 Show GitHub Exploit DB Packet Storm
259075 5 警告 Opera Software ASA - Opera の news-feed プレビュー機能における任意のフィードの購読を強制される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3020 2010-09-27 16:21 2010-08-12 Show GitHub Exploit DB Packet Storm
259076 9.3 危険 Opera Software ASA - Opera におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3019 2010-09-27 16:21 2010-08-12 Show GitHub Exploit DB Packet Storm
259077 9.3 危険 Opera Software ASA - Windows および Mac OS X 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2666 2010-09-27 16:20 2010-06-21 Show GitHub Exploit DB Packet Storm
259078 4.3 警告 Opera Software ASA - Opera における URI の処理に関するクロスサイトスクリプティングの脆弱性\ CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2665 2010-09-27 16:20 2010-06-21 Show GitHub Exploit DB Packet Storm
259079 4.3 警告 Opera Software ASA - Opera の HTML コンテンツにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2664 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
259080 4.3 警告 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2663 2010-09-27 16:20 2010-07-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265231 6.1 MEDIUM
Network 		xoops xoops XOOPS Core 2.5.8 has stored XSS in imagemanager.php because of missing MIME type validation in htdocs/class/uploader.php. CWE-79
Cross-site Scripting 		CVE-2017-12139 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
265232 6.1 MEDIUM
Network 		xoops xoops XOOPS Core 2.5.8 has a stored URL redirect bypass vulnerability in /modules/profile/index.php because of the URL filter. CWE-601
Open Redirect 		CVE-2017-12138 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
265233 5.9 MEDIUM
Network 		gnu glibc The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS support is enabled, will solicit large UDP responses from name servers, potentially simplifying off-path… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2017-12132 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
265234 6.1 MEDIUM
Network 		mantisbt mantisbt An XSS issue was discovered in manage_user_page.php in MantisBT 2.x before 2.5.2. The 'filter' field is not sanitized before being rendered in the Manage User page, allowing remote attackers to execu… CWE-79
Cross-site Scripting 		CVE-2017-12062 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
265235 6.1 MEDIUM
Network 		mantisbt mantisbt An XSS issue was discovered in admin/install.php in MantisBT before 1.3.12 and 2.x before 2.5.2. Some variables under user control in the MantisBT installation script are not properly sanitized befor… CWE-79
Cross-site Scripting 		CVE-2017-12061 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
265236 6.5 MEDIUM
Network 		underbit mad_libmad mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a denial of service (memory corruption seen in a crash in the mad_decode… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11552 2024-11-21 12:08 2017-08-1 Show GitHub Exploit DB Packet Storm
265237 6.1 MEDIUM
Network 		goldplugins easy_testimonials The Easy Testimonials plugin 3.0.4 for WordPress has XSS in include/settings/display.options.php, as demonstrated by the Default Testimonials Width, View More Testimonials Link, and Testimonial Excer… CWE-79
Cross-site Scripting 		CVE-2017-12131 2024-11-21 12:08 2017-08-1 Show GitHub Exploit DB Packet Storm
265238 6.1 MEDIUM
Network 		event_list_project event_list The Event List plugin 0.7.9 for WordPress has XSS in the slug array parameter to wp-admin/admin.php in an el_admin_categories delete_bulk action. CWE-79
Cross-site Scripting 		CVE-2017-12068 2024-11-21 12:08 2017-08-1 Show GitHub Exploit DB Packet Storm
265239 7.5 HIGH
Network 		potrace_project potrace Potrace 1.14 has a heap-based buffer over-read in the interpolate_cubic function in mkbitmap.c. CWE-125
Out-of-bounds Read 		CVE-2017-12067 2024-11-21 12:08 2017-08-1 Show GitHub Exploit DB Packet Storm
265240 5.4 MEDIUM
Network 		cacti cacti Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in Cacti before 1.1.16 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer hea… CWE-79
Cross-site Scripting 		CVE-2017-12066 2024-11-21 12:08 2017-08-1 Show GitHub Exploit DB Packet Storm