Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
260591 6.6 警告 マイクロソフト - Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2010-1897 2010-09-3 12:00 2010-08-10 Show GitHub Exploit DB Packet Storm
260592 6.8 警告 マイクロソフト - Windows の Windows Service Isolation 機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-1886 2010-09-2 14:07 2010-08-10 Show GitHub Exploit DB Packet Storm
260593 6.8 警告 マイクロソフト - Windows のサービスのトレース機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-2554 2010-09-2 14:06 2010-08-10 Show GitHub Exploit DB Packet Storm
260594 6.8 警告 マイクロソフト - Windows のサービスのトレース機能における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-2555 2010-09-2 14:06 2010-08-10 Show GitHub Exploit DB Packet Storm
260595 6.8 警告 マイクロソフト - Windwos の TCP/IP スタックにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2010-1893 2010-09-2 14:06 2010-08-10 Show GitHub Exploit DB Packet Storm
260596 9.3 危険 マイクロソフト - Microsoft Office Excel および Open XML File Format Converter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-2562 2010-09-2 14:05 2010-08-10 Show GitHub Exploit DB Packet Storm
260597 9.3 危険 マイクロソフト - Microsoft Windows Movie Maker におけるバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション
CVE-2010-2564 2010-09-2 14:05 2010-08-10 Show GitHub Exploit DB Packet Storm
260598 6.6 警告 マイクロソフト - Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性 CWE-20
不適切な入力確認
CVE-2010-1896 2010-09-2 14:05 2010-08-10 Show GitHub Exploit DB Packet Storm
260599 6.6 警告 マイクロソフト - Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-1895 2010-09-2 14:04 2010-08-10 Show GitHub Exploit DB Packet Storm
260600 6.6 警告 マイクロソフト - Microsoft Windows の win32k.sys 内にある Windows カーネルモードドライバにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-1894 2010-09-2 14:04 2010-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
302951 - tvmobili tvmobili Multiple stack-based buffer overflows in HttpUtils.dll in TVMOBiLi before 2.1.0.3974 allow remote attackers to cause a denial of service (tvMobiliService service crash) via a long string in a (1) GET… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2012-5451 2024-11-21 10:44 2015-04-24 Show GitHub Exploit DB Packet Storm
302952 - plone plone The error pages in Plone before 4.2.3 and 4.3 before beta 1 allow remote attackers to obtain random numbers and derive the PRNG state for password resets via unspecified vectors. NOTE: this identifi… CWE-200
Information Exposure
CVE-2012-5508 2024-11-21 10:44 2014-11-4 Show GitHub Exploit DB Packet Storm
302953 - plone plone The batch id change script (renameObjectsByPaths.py) in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to change the titles of content items by leveraging a valid CSRF token in a cr… CWE-352
 Origin Validation Error
CVE-2012-5500 2024-11-21 10:44 2014-11-4 Show GitHub Exploit DB Packet Storm
302954 - libproxy_project libproxy Format string vulnerability in the print_proxies function in bin/proxy.c in libproxy 0.3.1 might allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary … CWE-94
Code Injection
CVE-2012-5580 2024-11-21 10:44 2014-10-28 Show GitHub Exploit DB Packet Storm
302955 - bananadance banana_dance functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to read arbitrary database information via a crafted request. CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-5243 2024-11-21 10:44 2014-10-21 Show GitHub Exploit DB Packet Storm
302956 - bananadance banana_dance Directory traversal vulnerability in functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the name parame… CWE-22
Path Traversal
CVE-2012-5242 2024-11-21 10:44 2014-10-21 Show GitHub Exploit DB Packet Storm
302957 - bananadance banana_dance Multiple SQL injection vulnerabilities in Banana Dance B.2.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) return, (2) display, (3) table, or (4) search parameter t… CWE-89
SQL Injection
CVE-2012-5244 2024-11-21 10:44 2014-10-20 Show GitHub Exploit DB Packet Storm
302958 - zope
plone
zope
plone
AccessControl/AuthEncoding.py in Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to obtain passwords via vectors involving timing discrepancies in pa… CWE-362
Race Condition
CVE-2012-5507 2024-11-21 10:44 2014-09-30 Show GitHub Exploit DB Packet Storm
302959 - plone plone python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to cause a denial of service (infinite loop) via an RSS feed request for a folder the user does not have permissi… CWE-399
 Resource Management Errors
CVE-2012-5506 2024-11-21 10:44 2014-09-30 Show GitHub Exploit DB Packet Storm
302960 - plone plone atat.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to read private data structures via a request for a view without a name. CWE-200
Information Exposure
CVE-2012-5505 2024-11-21 10:44 2014-09-30 Show GitHub Exploit DB Packet Storm