Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
260611 6.8 警告 マイクロソフト - Microsoft Windows のカーネルにおける権限を取得される脆弱性 CWE-399
リソース管理の問題
CVE-2010-1889 2010-09-1 15:16 2010-08-10 Show GitHub Exploit DB Packet Storm
260612 6.8 警告 マイクロソフト - Microsoft Windows XP のカーネルにおける権限を取得される脆弱性 CWE-362
競合状態
CVE-2010-1888 2010-09-1 15:16 2010-08-10 Show GitHub Exploit DB Packet Storm
260613 9.3 危険 マイクロソフト - Microsoft Silverlight における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-0019 2010-09-1 15:15 2010-08-10 Show GitHub Exploit DB Packet Storm
260614 10 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
- Mozilla Firefox の layout/generic/nsObjectFrame.cpp における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-2755 2010-09-1 14:54 2010-07-20 Show GitHub Exploit DB Packet Storm
260615 9.3 危険 アドビシステムズ
レッドハット
- Adobe Reader および Acrobat における任意のローカルプログラムを実行させられる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-1240 2010-09-1 14:52 2010-04-5 Show GitHub Exploit DB Packet Storm
260616 9.3 危険 マイクロソフト - Microsoft Windows の Secure Channel における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2010-2566 2010-08-31 16:46 2010-08-10 Show GitHub Exploit DB Packet Storm
260617 9.3 危険 マイクロソフト - Microsoft XML Core Services における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-2561 2010-08-31 16:45 2010-08-10 Show GitHub Exploit DB Packet Storm
260618 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-2560 2010-08-31 16:45 2010-08-10 Show GitHub Exploit DB Packet Storm
260619 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-2559 2010-08-31 16:45 2010-08-10 Show GitHub Exploit DB Packet Storm
260620 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-362
競合状態
CVE-2010-2558 2010-08-31 16:45 2010-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313901 - alex_kellner powermail SQL injection vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection
CVE-2010-3604 2024-11-21 10:19 2010-09-25 Show GitHub Exploit DB Packet Storm
313902 - sourcetreesolutions mojoportal Cross-site request forgery (CSRF) vulnerability in the file manager service (Services/FileService.ashx) in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to hijack the authentication of admin… CWE-352
 Origin Validation Error
CVE-2010-3603 2024-11-21 10:19 2010-09-25 Show GitHub Exploit DB Packet Storm
313903 - sourcetreesolutions mojoportal Cross-site scripting (XSS) vulnerability in ProfileView.aspx in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to inject arbitrary web script or HTML via the User ID parameter. NOTE: some of… CWE-79
Cross-site Scripting
CVE-2010-3602 2024-11-21 10:19 2010-09-25 Show GitHub Exploit DB Packet Storm
313904 - invisionpower ibphotohost SQL injection vulnerability in index.php in ibPhotohost 1.1.2 allows remote attackers to execute arbitrary SQL commands via the img parameter. CWE-89
SQL Injection
CVE-2010-3601 2024-11-21 10:19 2010-09-25 Show GitHub Exploit DB Packet Storm
313905 5.9 MEDIUM
Network
owasp enterprise_security_api_for_java It was found that all OWASP ESAPI for Java up to version 2.0 RC2 are vulnerable to padding oracle attacks. - CVE-2010-3300 2024-11-21 10:18 2021-06-22 Show GitHub Exploit DB Packet Storm
313906 3.3 LOW
Local
hp
redhat
fedoraproject
hp-ux_directory_server
redhat_directory_server
389_directory_server
directory_server
389 Directory Server before 1.2.7.1 (aka Red Hat Directory Server 8.2) and HP-UX Directory Server before B.08.10.03, when audit logging is enabled, logs the Directory Manager password (nsslapd-rootpw… CWE-312
 Cleartext Storage of Sensitive Information
CVE-2010-3282 2024-11-21 10:18 2020-01-10 Show GitHub Exploit DB Packet Storm
313907 5.5 MEDIUM
Local
babiloo_project
debian
babiloo
debian_linux
babiloo 2.0.9 before 2.0.11 creates temporary files with predictable names when downloading and unpacking dictionary files, allowing a local attacker to overwrite arbitrary files. CWE-494
 Download of Code Without Integrity Check
CVE-2010-3440 2024-11-21 10:18 2019-11-13 Show GitHub Exploit DB Packet Storm
313908 8.8 HIGH
Network
pixelpost pixelpost Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote attackers to change the admin password. CWE-352
 Origin Validation Error
CVE-2010-3305 2024-11-21 10:18 2019-11-13 Show GitHub Exploit DB Packet Storm
313909 6.5 MEDIUM
Network
rubyonrails
debian
rails
debian_linux
The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks. CWE-311
Missing Encryption of Sensitive Data
CVE-2010-3299 2024-11-21 10:18 2019-11-13 Show GitHub Exploit DB Packet Storm
313910 5.5 MEDIUM
Local
mailscanner mailscanner The update{_bad,}_phishing_sites scripts in mailscanner 4.79.11-2 downloads files and trusts them without using encryption (e.g., https) or digital signature checking which could allow an attacker to… CWE-311
Missing Encryption of Sensitive Data
CVE-2010-3292 2024-11-21 10:18 2019-11-13 Show GitHub Exploit DB Packet Storm