Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254061	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0167	2010-04-7 14:50	2010-03-23	Show	GitHub Exploit DB Packet Storm

254062	5.1	警告	Mozilla Foundation	-	Mac OS X 上で稼働する Mozilla Firefox の gfxTextRun::SanitizeGlyphRuns 関数における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0166	2010-04-7 14:49	2010-03-23	Show	GitHub Exploit DB Packet Storm

254063	9.3	危険	Mozilla Foundation	-	Mozilla Firefox の TraceRecorder::traverseScopeChain 関数における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0165	2010-04-7 14:49	2010-03-23	Show	GitHub Exploit DB Packet Storm

254064	4.3	警告	Mozilla Foundation	-	Mozilla Firefox の非同期認証プロンプト実装における信頼できる認証ダイアログになりすまされる脆弱性	CWE-Other その他	CVE-2010-0172	2010-04-6 16:50	2010-03-23	Show	GitHub Exploit DB Packet Storm

254065	5	警告	Mozilla Foundation レッドハット	-	複数の Mozilla 製品の CSSLoaderImpl::DoSheetComplete 関数におけるウェブページのレンダリングを中断される脆弱性	CWE-Other その他	CVE-2010-0169	2010-04-6 16:50	2010-03-23	Show	GitHub Exploit DB Packet Storm

254066	7.6	危険	Mozilla Foundation	-	Mozilla Firefox の nsDocument::MaybePreLoadImage 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0168	2010-04-6 16:49	2010-03-23	Show	GitHub Exploit DB Packet Storm

254067	9.3	危険	Mozilla Foundation	-	Mozilla Firefox の imgContainer::InternalAddFrameHelper 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0164	2010-04-6 16:49	2010-03-23	Show	GitHub Exploit DB Packet Storm

254068	4.3	警告	Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0171	2010-04-5 14:54	2010-03-23	Show	GitHub Exploit DB Packet Storm

254069	4.3	警告	Mozilla Foundation	-	Mozilla Firefox における同一生成元ポリシーを回避される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0170	2010-04-5 14:53	2010-03-23	Show	GitHub Exploit DB Packet Storm

254070	7.5	危険	Heartlogic	-	HL-SiteManager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1331	2010-04-2 15:02	2010-04-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224351	6.1	MEDIUM Network	cisco	sf250-24_firmware sf250-24p_firmware sf250-48_firmware sf250-48hp_firmware sf250-08_firmware sf250-08hp_firmware sf250-10p_firmware sf250-18_firmware sf250-26_firmware sf25…	A vulnerability in the web-based interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a …	CWE-79 Cross-site Scripting	CVE-2019-12718	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

224352	6.5	MEDIUM Network	cisco	spa112_firmware spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to view the contents of arbitrary files on …	CWE-22 Path Traversal	CVE-2019-12704	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

224353	5.2	MEDIUM Adjacent	cisco	spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA122 ATA with Router Devices could allow an unauthenticated, adjacent attacker to conduct cross-site scripting attacks. The vulnerabil…	CWE-79 Cross-site Scripting	CVE-2019-12703	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

224354	5.4	MEDIUM Network	cisco	spa112_firmware spa122_firmware	A vulnerability in the web-based management interface of Cisco SPA100 Series Analog Telephone Adapters (ATAs) could allow an authenticated, remote attacker to conduct cross-site scripting attacks. Th…	CWE-79 Cross-site Scripting	CVE-2019-12702	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

224355	5.4	MEDIUM Network	cisco	identity_services_engine	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a use…	CWE-79 Cross-site Scripting	CVE-2019-12638	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

224356	5.4	MEDIUM Network	cisco	identity_services_engine	Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine (ISE) could allow an authenticated, remote attacker to conduct cross-site scripting (XSS) attacks agai…	CWE-79 Cross-site Scripting	CVE-2019-12637	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

224357	8.8	HIGH Network	cisco	sf250-24_firmware sf250-24p_firmware sf250-48_firmware sf250-48hp_firmware sf250-08_firmware sf250-08hp_firmware sf250-10p_firmware sf250-18_firmware sf250-26_firmware sf25…	A vulnerability in the web-based management interface of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF)…	CWE-352 Origin Validation Error	CVE-2019-12636	2024-11-21 13:23	2019-10-17	Show	GitHub Exploit DB Packet Storm

224358	7.5	HIGH Network	gluehome	glue_smart_lock_firmware	Glue Smart Lock 2.7.8 devices do not properly block guest access in certain situations where the network connection is unavailable.	CWE-862 Missing Authorization	CVE-2019-12944	2024-11-21 13:23	2019-10-15	Show	GitHub Exploit DB Packet Storm

224359	9.8	CRITICAL Network	autopi	wi-fi\/nb_firmware 4g\/lte_firmware	AutoPi Wi-Fi/NB and 4G/LTE devices before 2019-10-15 allows an attacker to perform a brute-force attack or dictionary attack to gain access to the WiFi network, which provides root access to the devi…	CWE-307 mproper Restriction of Excessive Authentication Attempts	CVE-2019-12941	2024-11-21 13:23	2019-10-15	Show	GitHub Exploit DB Packet Storm

224360	9.8	CRITICAL Network	activesoft	mybuilder	MyBuilder viewer before 6.2.2019.814 allow an attacker to execute arbitrary command via specifically crafted configuration file. This can be leveraged for code execution.	NVD-CWE-noinfo	CVE-2019-12812	2024-11-21 13:23	2019-10-8	Show	GitHub Exploit DB Packet Storm