Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259801 10 危険 CA Technologies - CA PSFormX および CA WebScan ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-20
CWE-noinfo
CVE-2010-2193 2010-12-27 11:49 2010-06-8 Show GitHub Exploit DB Packet Storm
259802 2.6 注意 CA Technologies - CA eHealth Performance Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-0640 2010-12-27 11:44 2010-02-24 Show GitHub Exploit DB Packet Storm
259803 9.3 危険 CA Technologies - CA eTrust PestPatrol の PestPatrol ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-4225 2010-12-27 11:41 2009-12-8 Show GitHub Exploit DB Packet Storm
259804 4.3 警告 CA Technologies - CA Service Desk の Web インターフェイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2009-4149 2010-12-27 11:38 2009-12-8 Show GitHub Exploit DB Packet Storm
259805 4.3 警告 CA Technologies - 複数の CA 製品の Anti-Virus エンジン内にある arclib コンポーネントおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-3588 2010-12-27 11:36 2009-10-8 Show GitHub Exploit DB Packet Storm
259806 9.3 危険 CA Technologies - 複数の CA 製品の Anti-Virus エンジン内にある arclib コンポーネントにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2009-3587 2010-12-27 11:32 2009-10-8 Show GitHub Exploit DB Packet Storm
259807 5 警告 CA Technologies - CA Host-Based Intrusion Prevention System の kmxIds.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-2740 2010-12-27 11:24 2009-08-18 Show GitHub Exploit DB Packet Storm
259808 4.3 警告 CA Technologies - CA SiteMinder における J2EE アプリケーションのクロスサイトスクリプティングに対する保護を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-2705 2010-12-27 11:19 2009-08-11 Show GitHub Exploit DB Packet Storm
259809 4.3 警告 CA Technologies - CA SiteMinder における J2EE アプリケーションのクロスサイトスクリプティングに対する保護を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-2704 2010-12-27 10:47 2009-08-11 Show GitHub Exploit DB Packet Storm
259810 10 危険 CA Technologies - 複数の CA 製品の Data Transport Services におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-2026 2010-12-27 10:45 2009-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256371 5.4 MEDIUM
Network
sap successfactors Stored Cross-site scripting (XSS) vulnerability in SAP SuccessFactors before b1705.1234962 allows remote authenticated users to inject arbitrary web script or HTML via the file upload functionality. CWE-79
Cross-site Scripting
CVE-2017-9613 2024-11-21 12:36 2017-06-16 Show GitHub Exploit DB Packet Storm
256372 4.3 MEDIUM
Network
atlassian confluence Atlassian Confluence starting with 4.3.0 before 6.2.1 did not check if a user had permission to view a page when creating a workbox notification about new comments. An attacker who can login to Confl… CWE-276
Incorrect Default Permissions 
CVE-2017-9505 2024-11-21 12:36 2017-06-16 Show GitHub Exploit DB Packet Storm
256373 7.8 HIGH
Local
gnuplot_project gnuplot An uninitialized stack variable vulnerability in load_tic_series() in set.c in gnuplot 5.2.rc1 allows an attacker to cause Denial of Service (Segmentation fault and Memory Corruption) or possibly hav… CWE-824
 Access of Uninitialized Pointer
CVE-2017-9670 2024-11-21 12:36 2017-06-15 Show GitHub Exploit DB Packet Storm
256374 7.3 HIGH
Local
infotecs vipnet_client
vipnet_coordinator
Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorr… CWE-345
CWE-354
CWE-732
 Insufficient Verification of Data Authenticity
 Improper Validation of Integrity Check Value
 Incorrect Permission Assignment for Critical Resource
CVE-2017-9606 2024-11-21 12:36 2017-06-15 Show GitHub Exploit DB Packet Storm
256375 6.1 MEDIUM
Network
epesi epesi Multiple cross-site scripting (XSS) vulnerabilities in Telaxus/EPESI 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted currency decimal-sign data. CWE-79
Cross-site Scripting
CVE-2017-9624 2024-11-21 12:36 2017-06-15 Show GitHub Exploit DB Packet Storm
256376 6.1 MEDIUM
Network
epesi epesi Multiple cross-site scripting (XSS) vulnerabilities in Telaxus/EPESI 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted country data. CWE-79
Cross-site Scripting
CVE-2017-9623 2024-11-21 12:36 2017-06-15 Show GitHub Exploit DB Packet Storm
256377 6.1 MEDIUM
Network
epesi epesi Multiple cross-site scripting (XSS) vulnerabilities in Telaxus/EPESI 1.8.2 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted common data. CWE-79
Cross-site Scripting
CVE-2017-9622 2024-11-21 12:36 2017-06-15 Show GitHub Exploit DB Packet Storm
256378 6.1 MEDIUM
Network
epesi epesi Cross-site scripting (XSS) vulnerability in modules/Base/Lang/Administrator/update_translation.php in EPESI in Telaxus/EPESI 1.8.2 and earlier allows remote attackers to inject arbitrary web script o… CWE-79
Cross-site Scripting
CVE-2017-9621 2024-11-21 12:36 2017-06-15 Show GitHub Exploit DB Packet Storm
256379 5.5 MEDIUM
Local
wireshark wireshark In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector. CWE-674
 Uncontrolled Recursion
CVE-2017-9617 2024-11-21 12:36 2017-06-15 Show GitHub Exploit DB Packet Storm
256380 5.5 MEDIUM
Local
wireshark wireshark In Wireshark 2.2.7, overly deep mp4 chunks may cause stack exhaustion (uncontrolled recursion) in the dissect_mp4_box function in epan/dissectors/file-mp4.c. CWE-674
 Uncontrolled Recursion
CVE-2017-9616 2024-11-21 12:36 2017-06-15 Show GitHub Exploit DB Packet Storm