Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230251	7.5	危険	レッドハットサイバートラスト株式会社 Mozilla Foundation VMware オラクル	-	複数の Mozilla 製品の SSL 実装における暗号保護メカニズムを回避される脆弱性	CWE-310 暗号の問題	CVE-2010-3173	2012-12-18 17:37	2010-10-19	Show	GitHub Exploit DB Packet Storm

230252	4.3	警告	レッドハットサイバートラスト株式会社 Mozilla Foundation VMware オラクル	-	複数の Mozilla 製品における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2010-3170	2012-12-18 17:36	2010-10-19	Show	GitHub Exploit DB Packet Storm

230253	6.4	警告	サイバートラスト株式会社 VMware レッドハット	-	libuser におけるアクセス権を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-0002	2012-12-18 17:35	2011-01-20	Show	GitHub Exploit DB Packet Storm

230254	4.3	警告	アップルサイバートラスト株式会社ブルーコートシステムズヒューレット・パッカード OpenSSL Project オラクル VMware レッドハット	-	OpenSSL における暗号スイートのダウングレードに関する脆弱性	CWE-DesignError	CVE-2010-4180	2012-12-18 17:34	2010-12-2	Show	GitHub Exploit DB Packet Storm

230255	4.3	警告	サイバートラスト株式会社 VMware OpenSSL Project レッドハットオラクル	-	OpenSSL における暗号を強制的に利用される脆弱性	CWE-310 暗号の問題	CVE-2008-7270	2012-12-18 17:31	2010-12-6	Show	GitHub Exploit DB Packet Storm

230256	5	警告	GNU Project VMware	-	GNU C Library の posix/fnmatch.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1659	2012-12-18 17:16	2011-04-8	Show	GitHub Exploit DB Packet Storm

230257	3.7	注意	GNU Project VMware	-	GNU C Library の ld.so における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1658	2012-12-18 17:14	2011-04-8	Show	GitHub Exploit DB Packet Storm

230258	6.2	警告	GNU Project VMware サイバートラスト株式会社レッドハット	-	GNU C Library の locale/programs/locale.c における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1095	2012-12-18 17:12	2011-04-4	Show	GitHub Exploit DB Packet Storm

230259	5.1	警告	GNU Project VMware サイバートラスト株式会社レッドハット	-	GNU C Library および Embedded GLIBC における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-1071	2012-12-18 17:10	2011-04-4	Show	GitHub Exploit DB Packet Storm

230260	6.9	警告	GNU Project VMware サイバートラスト株式会社レッドハット	-	GNU C Library の elf/dl-object.c における権限を取得される脆弱性	CWE-Other その他	CVE-2011-0536	2012-12-18 17:07	2011-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314071	-		-	-	Rejected reason: REJECT This is a duplicate of CVE-2024-1049. Please use CVE-2024-1049 instead.	-	CVE-2024-1420	2024-02-13 00:15	2024-02-13	Show	GitHub Exploit DB Packet Storm

314072	7.5	HIGH Network	phprank	phprank	phpRank 1.8 stores the administrative password in plaintext on the server and in the "ap" cookie, which allows remote attackers to retrieve the administrative password.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2002-1800	2024-02-10 12:06	2002-12-31	Show	GitHub Exploit DB Packet Storm

314073	7.5	HIGH Network	audiogalaxy	audiogalaxy	Autogalaxy stores usernames and passwords in cleartext in cookies, which makes it easier for remote attackers to obtain authentication information and gain unauthorized access via sniffing or a cross…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2001-1536	2024-02-10 12:04	2001-12-31	Show	GitHub Exploit DB Packet Storm

314074	-		-	-	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. All references and descriptions in this record have been removed to prevent accidental usage.	-	CVE-2023-6716	2024-02-9 18:15	2024-02-9	Show	GitHub Exploit DB Packet Storm

314075	-		georgecurrums	open_guestbook	Cross-site scripting (XSS) vulnerability in header.php in Open Guestbook 0.5 allows remote attackers to inject arbitrary web script or HTML via the title parameter.	CWE-79 Cross-site Scripting	CVE-2006-3295	2024-02-9 12:26	2006-06-29	Show	GitHub Exploit DB Packet Storm

314076	-		sun oracle	jsse java_web_start jre	X509TrustManager in (1) Java Secure Socket Extension (JSSE) in SDK and JRE 1.4.0 through 1.4.0_01, (2) JSSE before 1.0.3, (3) Java Plug-in SDK and JRE 1.3.0 through 1.4.1, and (4) Java Web Start 1.0 …	CWE-295 Improper Certificate Validation	CVE-2003-1229	2024-02-9 12:26	2003-12-31	Show	GitHub Exploit DB Packet Storm

314077	-		rtfm	ssldump	Buffer underflow in ssldump 0.9b2 and earlier allows remote attackers to cause a denial of service (memory corruption) via a crafted SSLv2 challenge value.	CWE-787 Out-of-bounds Write	CVE-2002-2227	2024-02-9 12:26	2002-12-31	Show	GitHub Exploit DB Packet Storm

314078	-		microsoft	windows_xp windows_2000 windows_98 windows_me windows_98se windows_nt internet_explorer office outlook_express	The (1) CertGetCertificateChain, (2) CertVerifyCertificateChainPolicy, and (3) WinVerifyTrust APIs within the CryptoAPI for Microsoft products including Microsoft Windows 98 through XP, Office for Ma…	CWE-295 Improper Certificate Validation	CVE-2002-0862	2024-02-9 12:26	2002-10-4	Show	GitHub Exploit DB Packet Storm

314079	-		cjguestbook_project	cjguestbook	Cross-site scripting (XSS) vulnerability in sign.php in cjGuestbook 1.3 and earlier allows remote attackers to inject Javascript code via a javascript URI in an img bbcode tag in the comments paramet…	CWE-79 Cross-site Scripting	CVE-2006-3211	2024-02-9 12:21	2006-06-24	Show	GitHub Exploit DB Packet Storm

314080	-		fantastic_guestbook_project	fantastic_guestbook	Multiple cross-site scripting (XSS) vulnerabilities in guestbook.php in Fantastic Guestbook 2.0.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the…	CWE-79 Cross-site Scripting	CVE-2006-3568	2024-02-9 12:20	2006-07-13	Show	GitHub Exploit DB Packet Storm