Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251201	5	警告	energyscripts	-	ES Simple Download の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3456	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

251202	4.3	警告	ATutor	-	AChecker の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3455	2012-03-27 18:42	2010-09-17	Show	GitHub Exploit DB Packet Storm

251203	6.8	警告	FFmpeg mplayerhq	-	MPlayer などの製品で使用される FFmpeg の flicvideo.c における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3429	2012-03-27 18:42	2010-09-30	Show	GitHub Exploit DB Packet Storm

251204	7.5	危険	Intermesh	-	Intermesh Group-Office の modules/notes/json.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3428	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

251205	4.3	警告	Open Classifieds	-	Open Classifieds におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3427	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

251206	7.5	危険	4you-studio	-	Joomla! 用の Alpha の JPhone (com_jphone) コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3426	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

251207	4.3	警告	SmarterTools Inc.	-	SmarterStats の UserControls/Popups/frmHelp.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3425	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

251208	4.3	警告	Invision Power Services, Inc	-	IP.Board の admin/sources/classes/bbcode/custom/defaults.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3424	2012-03-27 18:42	2010-09-7	Show	GitHub Exploit DB Packet Storm

251209	7.5	危険	freka	-	Drupal の Yr Weatherdata モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3423	2012-03-27 18:42	2010-09-8	Show	GitHub Exploit DB Packet Storm

251210	7.5	危険	solventus Joomla!	-	Jmoola! 用の JGen コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3422	2012-03-27 18:42	2010-09-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248031	9.8	CRITICAL Network	cobblerd	cobbler	Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Incorrect Access Control vul…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-1000226	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248032	6.1	MEDIUM Network	cobblerd	cobbler	Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Cross Site Scripting (XSS) v…	CWE-79 Cross-site Scripting	CVE-2018-1000225	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248033	7.5	HIGH Network	godotengine	godot	Godot Engine version All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6. contains a Signed/unsigned comparison, wrong buffer size chackes, integer overflow, missing padding initialization v…	CWE-190 CWE-131 CWE-681 CWE-908 CWE-909 Integer Overflow or Wraparound Incorrect Calculation of Buffer Size Incorrect Conversion between Numeric Types Use of Uninitialized Resource Missing Initialization of Resource	CVE-2018-1000224	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248034	8.8	HIGH Network	surina	soundtouch	soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-1000223	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248035	8.8	HIGH Network	libgd canonical debian	libgd ubuntu_linux debian_linux	Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted …	CWE-415 Double Free	CVE-2018-1000222	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248036	9.8	CRITICAL Network	pkgconf	pkgconf	pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote() that can result in dequote() function returns 1-byte allocation if initial length is 0, leading to buffer overflow…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-1000221	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248037	5.4	MEDIUM Network	open-emr	openemr	OpenEMR version v5_0_1_4 contains a Cross Site Scripting (XSS) vulnerability in The 'scan' parameter in line #41 of interface/fax/fax_view.php that can result in The vulnerability could allow remote …	CWE-79 Cross-site Scripting	CVE-2018-1000219	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248038	5.4	MEDIUM Network	open-emr	openemr	OpenEMR version v5_0_1_4 contains a Cross Site Scripting (XSS) vulnerability in The 'file' parameter in line #43 of interface/fax/fax_view.php that can result in The vulnerability could allow remote …	CWE-79 Cross-site Scripting	CVE-2018-1000218	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248039	9.8	CRITICAL Network	cjson_project	cjson	Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to …	CWE-416 Use After Free	CVE-2018-1000217	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm

248040	8.8	HIGH Network	cjson_project	cjson	Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker …	CWE-415 Double Free	CVE-2018-1000216	2024-11-21 12:39	2018-08-21	Show	GitHub Exploit DB Packet Storm