Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259341 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-362
競合状態 		CVE-2010-0489 2010-04-19 19:18 2010-03-30 Show GitHub Exploit DB Packet Storm
259342 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0267 2010-04-19 19:18 2010-03-30 Show GitHub Exploit DB Packet Storm
259343 10 危険 アップル - Apple Mac OS X の xar におけるパッケージ署名の検証処理に関する脆弱性 CWE-DesignError
CVE-2010-0055 2010-04-16 16:59 2010-03-29 Show GitHub Exploit DB Packet Storm
259344 0 注意 アップル - Apple Mac OS X の Wiki サーバにおけるコンテンツを公開される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0534 2010-04-16 16:58 2010-03-29 Show GitHub Exploit DB Packet Storm
259345 5 警告 アップル - Apple Mac OS X の Wiki サーバにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-0523 2010-04-16 16:58 2010-03-29 Show GitHub Exploit DB Packet Storm
259346 9 危険 アップル - Apple Mac OS X のサーバ管理における管理者権限の処理に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0522 2010-04-16 16:58 2010-03-29 Show GitHub Exploit DB Packet Storm
259347 5 警告 アップル - Apple Mac OS X のサーバ管理における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2010-0521 2010-04-16 16:58 2010-03-29 Show GitHub Exploit DB Packet Storm
259348 4.3 警告 アップル
Ruby on Rails project		 - Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4214 2010-04-16 16:58 2009-12-7 Show GitHub Exploit DB Packet Storm
259349 4.3 警告 アップル
Ruby on Rails project		 - Ruby on Rails におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3009 2010-04-16 16:58 2009-09-8 Show GitHub Exploit DB Packet Storm
259350 7.5 危険 アップル
Ruby on Rails project		 - Ruby on Rails のダイジェスト認証における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-2422 2010-04-16 16:57 2009-07-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291001 - zend zendopenid
zend_framework 		The GenericConsumer class in the Consumer component in ZendOpenId before 2.0.2 and the Zend_OpenId_Consumer class in Zend Framework 1 before 1.12.4 does not verify that the openid_op_endpoint value i… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-2684 2024-11-21 11:06 2014-11-16 Show GitHub Exploit DB Packet Storm
291002 - zend zendrest
zend_framework
zendservice_slideshare
zendservice_api
zendservice_audioscrobbler
zendservice_amazon
zendservice_technorati
zendservice_windowsazure
zendopenid
zend… 		Zend Framework 1 (ZF1) before 1.12.4, Zend Framework 2 before 2.1.6 and 2.2.x before 2.2.6, ZendOpenId, ZendRest, ZendService_AudioScrobbler, ZendService_Nirvanix, ZendService_SlideShare, ZendService… CWE-17
Code 		CVE-2014-2683 2024-11-21 11:06 2014-11-16 Show GitHub Exploit DB Packet Storm
291003 - zend zendrest
zend_framework
zendservice_slideshare
zendservice_api
zendservice_audioscrobbler
zendservice_amazon
zendservice_technorati
zendservice_windowsazure
zendopenid
zend… 		Zend Framework 1 (ZF1) before 1.12.4, Zend Framework 2 before 2.1.6 and 2.2.x before 2.2.6, ZendOpenId, ZendRest, ZendService_AudioScrobbler, ZendService_Nirvanix, ZendService_SlideShare, ZendService… CWE-19
 Data Processing Errors 		CVE-2014-2682 2024-11-21 11:06 2014-11-16 Show GitHub Exploit DB Packet Storm
291004 - zend zendrest
zend_framework
zendservice_slideshare
zendservice_api
zendservice_audioscrobbler
zendservice_amazon
zendservice_technorati
zendservice_windowsazure
zendopenid
zend… 		Zend Framework 1 (ZF1) before 1.12.4, Zend Framework 2 before 2.1.6 and 2.2.x before 2.2.6, ZendOpenId, ZendRest, ZendService_AudioScrobbler, ZendService_Nirvanix, ZendService_SlideShare, ZendService… CWE-19
 Data Processing Errors 		CVE-2014-2681 2024-11-21 11:06 2014-11-16 Show GitHub Exploit DB Packet Storm
291005 - accuenergy axm-net
acuvim_ii 		The AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to discover passwords and modify settings via vectors involving JavaScript. CWE-200
Information Exposure 		CVE-2014-2374 2024-11-21 11:06 2014-11-5 Show GitHub Exploit DB Packet Storm
291006 - accuenergy axm-net
acuvim_ii 		The web server on the AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to bypass authentication and modify settings via a direct request to an unspecified U… CWE-287
Improper Authentication 		CVE-2014-2373 2024-11-21 11:06 2014-11-5 Show GitHub Exploit DB Packet Storm
291007 - t-mobile
asus 		tm-ac1900
rt_series_firmware 		ASUS RT-AC68U, RT-AC66R, RT-AC66U, RT-AC56R, RT-AC56U, RT-N66R, RT-N66U, RT-N56R, RT-N56U, and possibly other RT-series routers before firmware 3.0.0.4.376.x do not verify the integrity of firmware (… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2014-2718 2024-11-21 11:06 2014-11-5 Show GitHub Exploit DB Packet Storm
291008 - fortinet fortimanager
fortianalyzer_firmware 		Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 and FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web scrip… CWE-79
Cross-site Scripting 		CVE-2014-2336 2024-11-21 11:06 2014-10-31 Show GitHub Exploit DB Packet Storm
291009 - fortinet fortianalyzer_firmware Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vecto… CWE-79
Cross-site Scripting 		CVE-2014-2335 2024-11-21 11:06 2014-10-31 Show GitHub Exploit DB Packet Storm
291010 - fortinet fortianalyzer_firmware Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vect… CWE-79
Cross-site Scripting 		CVE-2014-2334 2024-11-21 11:06 2014-10-31 Show GitHub Exploit DB Packet Storm