Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245781 6.8 警告 シスコシステムズ - Cisco Scientific Atlanta WebSTAR DPC2100R2 ケーブルモデムの Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2025 2012-06-26 16:19 2010-05-26 Show GitHub Exploit DB Packet Storm
245782 4.4 警告 Exim Development - Exim の transports/appendfile.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-2024 2012-06-26 16:19 2010-05-25 Show GitHub Exploit DB Packet Storm
245783 4.4 警告 Exim Development - Exim の transports/appendfile.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-2023 2012-06-26 16:19 2010-05-25 Show GitHub Exploit DB Packet Storm
245784 3.3 注意 FreeBSD - FreeBSD の jail の jail.c における任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2022 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
245785 6.9 警告 FreeBSD - FreeBSD のカーネルの NFS クライアントにおける権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2020 2012-06-26 16:19 2010-05-27 Show GitHub Exploit DB Packet Storm
245786 6.8 警告 bukulokomedia - Lokomedia CMS の downlot.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2019 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
245787 5 警告 bukulokomedia - Lokomedia CMS の downlot.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2018 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
245788 4.3 警告 bukulokomedia - Lokomedia CMS の hasil-pencarian.html におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2017 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
245789 6.8 警告 createch-group - LiSK CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2015 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
245790 4.3 警告 createch-group - LiSK CMS の cp/list_content.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2014 2012-06-26 16:19 2010-05-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252501 9.1 CRITICAL
Network 		haxx
debian
canonical 		libcurl
debian_linux
ubuntu_linux 		libcurl 7.49.0 to and including 7.57.0 contains an out bounds read in code handling HTTP/2 trailers. It was reported (https://github.com/curl/curl/pull/2231) that reading an HTTP/2 trailer could mess… CWE-125
Out-of-bounds Read 		CVE-2018-1000005 2024-11-21 12:39 2018-01-25 Show GitHub Exploit DB Packet Storm
252502 7.8 HIGH
Local 		ovirt ovirt-hosted-engine-setup An information disclosure in ovirt-hosted-engine-setup prior to 2.2.7 reveals the root user's password in the log file. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2018-1000018 2024-11-21 12:39 2018-01-24 Show GitHub Exploit DB Packet Storm
252503 4.8 MEDIUM
Network 		jenkins pipeline_nodes_and_processes On Jenkins instances with Authorize Project plugin, the authentication associated with a build may lack the Computer/Build permission on some agents. This did not prevent the execution of Pipeline `n… CWE-862
 Missing Authorization 		CVE-2018-1000015 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
252504 8.8 HIGH
Network 		jenkins translation_assistance Jenkins Translation Assistance Plugin 1.15 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to override localized strings di… CWE-352
 Origin Validation Error 		CVE-2018-1000014 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
252505 8.8 HIGH
Network 		jenkins release Jenkins Release Plugin 2.9 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to trigger release builds. CWE-352
 Origin Validation Error 		CVE-2018-1000013 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
252506 8.8 HIGH
Network 		jenkins warnings Jenkins Warnings Plugin 4.64 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from t… CWE-611
XXE 		CVE-2018-1000012 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
252507 8.8 HIGH
Network 		jenkins findbugs Jenkins FindBugs Plugin 4.71 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from t… CWE-611
XXE 		CVE-2018-1000011 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
252508 8.8 HIGH
Network 		jenkins dry Jenkins DRY Plugin 2.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Je… CWE-611
XXE 		CVE-2018-1000010 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
252509 8.8 HIGH
Network 		jenkins checkstyle Jenkins Checkstyle Plugin 3.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from… CWE-611
XXE 		CVE-2018-1000009 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
252510 8.8 HIGH
Network 		jenkins pmd Jenkins PMD Plugin 3.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Je… CWE-611
XXE 		CVE-2018-1000008 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm