Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251201 4.7 警告 kernel.org - Linux-PAM の privilege-dropping 実装における重要情報を取得される脆弱性 CWE-DesignError
CVE-2010-3430 2012-03-27 18:42 2011-01-24 Show GitHub Exploit DB Packet Storm
251202 7.5 危険 Symphony CMS - Symphony CMS の lib/toolkit/events/event.section.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3458 2012-03-27 18:42 2010-09-17 Show GitHub Exploit DB Packet Storm
251203 4.3 警告 Symphony CMS - Symphony CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3457 2012-03-27 18:42 2010-09-17 Show GitHub Exploit DB Packet Storm
251204 5 警告 energyscripts - ES Simple Download の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3456 2012-03-27 18:42 2010-09-17 Show GitHub Exploit DB Packet Storm
251205 4.3 警告 ATutor - AChecker の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3455 2012-03-27 18:42 2010-09-17 Show GitHub Exploit DB Packet Storm
251206 6.8 警告 FFmpeg
mplayerhq		 - MPlayer などの製品で使用される FFmpeg の flicvideo.c における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3429 2012-03-27 18:42 2010-09-30 Show GitHub Exploit DB Packet Storm
251207 7.5 危険 Intermesh - Intermesh Group-Office の modules/notes/json.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3428 2012-03-27 18:42 2010-09-16 Show GitHub Exploit DB Packet Storm
251208 4.3 警告 Open Classifieds - Open Classifieds におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3427 2012-03-27 18:42 2010-09-16 Show GitHub Exploit DB Packet Storm
251209 7.5 危険 4you-studio - Joomla! 用の Alpha の JPhone (com_jphone) コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3426 2012-03-27 18:42 2010-09-16 Show GitHub Exploit DB Packet Storm
251210 4.3 警告 SmarterTools Inc. - SmarterStats の UserControls/Popups/frmHelp.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3425 2012-03-27 18:42 2010-09-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247691 5.5 MEDIUM
Local 		wavpack
debian 		wavpack
debian_linux 		An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before … CWE-787
 Out-of-bounds Write 		CVE-2018-10539 2024-11-21 12:41 2018-04-30 Show GitHub Exploit DB Packet Storm
247692 5.5 MEDIUM
Local 		wavpack
debian 		wavpack
debian_linux 		An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Out-of-bounds writes can occur because ParseRiffHeaderConfig in riff.c does not validate the sizes of unknown chunks before attempt… CWE-787
 Out-of-bounds Write 		CVE-2018-10538 2024-11-21 12:41 2018-04-30 Show GitHub Exploit DB Packet Storm
247693 7.8 HIGH
Local 		wavpack
debian 		wavpack
debian_linux 		An issue was discovered in WavPack 5.1.0 and earlier. The W64 parser component contains a vulnerability that allows writing to memory because ParseWave64HeaderConfig in wave64.c does not reject multi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-10537 2024-11-21 12:41 2018-04-30 Show GitHub Exploit DB Packet Storm
247694 7.8 HIGH
Local 		wavpack
debian 		wavpack
debian_linux 		An issue was discovered in WavPack 5.1.0 and earlier. The WAV parser component contains a vulnerability that allows writing to memory because ParseRiffHeaderConfig in riff.c does not reject multiple … CWE-787
 Out-of-bounds Write 		CVE-2018-10536 2024-11-21 12:41 2018-04-30 Show GitHub Exploit DB Packet Storm
247695 5.5 MEDIUM
Local 		gnu
redhat 		binutils
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server 		The ignore_section_sym function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, does not validate the output_section pointer in the case of a s… CWE-476
 NULL Pointer Dereference 		CVE-2018-10535 2024-11-21 12:41 2018-04-30 Show GitHub Exploit DB Packet Storm
247696 8.8 HIGH
Network 		canonical
libraw 		ubuntu_linux
libraw 		An issue was discovered in LibRaw 0.18.9. There is an out-of-bounds read affecting the X3F property table list implementation in libraw_x3f.cpp and libraw_cxx.cpp. CWE-125
Out-of-bounds Read 		CVE-2018-10529 2024-11-21 12:41 2018-04-29 Show GitHub Exploit DB Packet Storm
247697 8.8 HIGH
Network 		canonical
libraw 		ubuntu_linux
libraw 		An issue was discovered in LibRaw 0.18.9. There is a stack-based buffer overflow in the utf2char function in libraw_cxx.cpp. CWE-787
 Out-of-bounds Write 		CVE-2018-10528 2024-11-21 12:41 2018-04-29 Show GitHub Exploit DB Packet Storm
247698 5.4 MEDIUM
Network 		easycms_project easycms EasyCMS 1.3 is prone to Stored XSS when posting an article; four fields are affected: title, keyword, abstract, and content, as demonstrated by the /admin/index/index.html#listarticle URI. CWE-79
Cross-site Scripting 		CVE-2018-10527 2024-11-21 12:41 2018-04-29 Show GitHub Exploit DB Packet Storm
247699 7.5 HIGH
Network 		uetoken useless_ethereum_token The transferFrom function of a smart contract implementation for Useless Ethereum Token (UET), an Ethereum ERC20 token, allows attackers to steal assets (e.g., transfer all victims' balances into the… CWE-20
 Improper Input Validation  		CVE-2018-10468 2024-11-21 12:41 2018-04-28 Show GitHub Exploit DB Packet Storm
247700 5.5 MEDIUM
Local 		gnu
redhat 		binutils
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server 		The _bfd_XX_bfd_copy_private_bfd_data_common function in peXXigen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, processes a negative Data Directory … CWE-787
 Out-of-bounds Write 		CVE-2018-10534 2024-11-21 12:41 2018-04-30 Show GitHub Exploit DB Packet Storm