Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255051	5.5	警告	Drupal サイバートラスト株式会社	-	Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3092	2010-10-7 16:37	2010-08-11	Show	GitHub Exploit DB Packet Storm

255052	9.3	危険	アップル	-	Apple QuickTime の IPersistPropertyBag2::Read における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1818	2010-10-6 16:57	2010-08-31	Show	GitHub Exploit DB Packet Storm

255053	9.3	危険	IBM	-	IBM Lotus Domino サーバの MailCheck821Address 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3407	2010-10-6 16:57	2010-09-16	Show	GitHub Exploit DB Packet Storm

255054	6.8	警告	マイクロソフト	-	Microsoft Outlook Web Access におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3213	2010-10-6 16:56	2010-09-7	Show	GitHub Exploit DB Packet Storm

255055	6.9	警告	マイクロソフト	-	Microsoft Windows の Win32 サブシステム内にある CSRSS における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1891	2010-10-6 16:56	2010-09-14	Show	GitHub Exploit DB Packet Storm

255056	9	危険	マイクロソフト	-	Microsoft Windows の LSASS におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0820	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

255057	9.3	危険	マイクロソフト	-	Microsoft Windows の WordPad Text Converters における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2563	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

255058	9.3	危険	マイクロソフト	-	Microsoft Windows の RPC クライアント実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2567	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

255059	6.8	警告	マイクロソフト	-	Windows 上で稼働する Microsoft Internet Information Services におけるアクセス制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-2731	2010-10-6 16:54	2010-09-14	Show	GitHub Exploit DB Packet Storm

255060	9.3	危険	マイクロソフト	-	Microsoft Internet Information Services におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2730	2010-10-5 19:00	2010-09-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225091	4.3	MEDIUM Network	cisco	email_security_appliance_firmware	A vulnerability in the MP3 detection engine of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to bypass configured content filters on …	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-15971	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225092	5.4	MEDIUM Network	cisco	unified_communications_domain_manager hosted_collaboration_solution	A vulnerability in the web-based management interface of Cisco Unified Communications Domain Manager (Unified CDM) could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS…	CWE-79 Cross-site Scripting	CVE-2019-15968	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225093	6.1	MEDIUM Network	cisco	network_level_service industrial_network_director	A vulnerability in the web-based management interface of Cisco Industrial Network Director (IND) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against…	CWE-79 Cross-site Scripting	CVE-2019-15973	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225094	4.4	MEDIUM Local	cisco	telepresence_collaboration_endpoint roomos	A vulnerability in the CLI of Cisco TelePresence Collaboration Endpoint (CE) and Cisco RoomOS Software could allow an authenticated, local attacker to enable audio recording without notifying users. …	NVD-CWE-Other	CVE-2019-15967	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225095	5.4	MEDIUM Network	cisco	webex_meetings	A vulnerability in the Webex Network Recording Admin page of Cisco Webex Meetings could allow an authenticated, remote attacker to elevate privileges in the context of the affected page. To exploit t…	NVD-CWE-Other	CVE-2019-15960	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225096	9.8	CRITICAL Network	cisco	prime_infrastructure evolved_programmable_network_manager	A vulnerability in the REST API of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could allow an unauthenticated remote attacker to execute arbitrary code with …	CWE-20 Improper Input Validation	CVE-2019-15958	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225097	8.8	HIGH Network	cisco	asyncos web_security_appliance	A vulnerability in the web management interface of Cisco AsyncOS Software for Cisco Web Security Appliance (WSA) could allow an authenticated, remote attacker to perform an unauthorized system reset …	NVD-CWE-Other	CVE-2019-15956	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225098	8.8	HIGH Network	ui	unifi_video_controller	A privilege escalation exists in UniFi Video Controller =<3.10.6 that would allow an attacker on the local machine to run arbitrary commands.	NVD-CWE-noinfo	CVE-2019-15595	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225099	7.5	HIGH Network	trendmicro	password_manager	Trend Micro Password Manager versions 3.x, 5.0, and 5.1 for Android is affected by a FLAG_MISUSE vulnerability that could be exploited to allow the application to share information to third-party app…	NVD-CWE-noinfo	CVE-2019-15629	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm

225100	4.3	MEDIUM Network	google kaspersky	chrome protection	Kaspersky Protection extension for web browser Google Chrome prior to 30.112.62.0 was vulnerable to unauthorized access to its features remotely that could lead to removing other installed extensions.	NVD-CWE-noinfo	CVE-2019-15684	2024-11-21 13:29	2019-11-26	Show	GitHub Exploit DB Packet Storm