Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251291 7.5 危険 anything-digital - Joomla! の Yannick Gaultier コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4404 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251292 5 警告 devbits - WordPress の Register Plus プラグインにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4403 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251293 4.3 警告 devbits - WordPress の wp-login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4402 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251294 5 警告 dynpg - DynPG CMS の languages.inc.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4401 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251295 7.5 危険 dynpg - DynPG CMS の in _rights.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4400 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251296 4.3 警告 dynpg - DynPG CMS の languages.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4399 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251297 4.3 警告 Nullsoft - Winamp の in_mkv プラグインにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4374 2012-03-27 18:42 2010-11-27 Show GitHub Exploit DB Packet Storm
251298 4.3 警告 Nullsoft - Winamp の in_mp4 プラグインにおけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4373 2012-03-27 18:42 2010-11-27 Show GitHub Exploit DB Packet Storm
251299 9.3 危険 Nullsoft - Winamp の in_nsv プラグインにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4372 2012-03-27 18:42 2010-11-27 Show GitHub Exploit DB Packet Storm
251300 9.3 危険 Nullsoft - Winamp の in_mod プラグインにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4371 2012-03-27 18:42 2010-11-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247161 5.3 MEDIUM
Network 		jester_project jester Directory traversal in Jester web framework 0.2.0 allows remote attackers to fetch files in arbitrary locations via "..%f" sequences. CWE-22
Path Traversal 		CVE-2018-13034 2024-11-21 12:46 2018-07-10 Show GitHub Exploit DB Packet Storm
247162 8.8 HIGH
Network 		softexpert excellence_suite A SQL injection vulnerability in the SoftExpert (SE) Excellence Suite 2.0 allows remote authenticated users to perform SQL heuristics by pulling information from the database with the "cddocument" pa… CWE-89
SQL Injection 		CVE-2018-12977 2024-11-21 12:46 2018-07-10 Show GitHub Exploit DB Packet Storm
247163 6.1 MEDIUM
Network 		chartered_accountant_\ _auditor_website_project PHP Scripts Mall Auditor Website 2.0.1 has XSS via the lastname or firstname parameter. CWE-79
Cross-site Scripting 		CVE-2018-13256 2024-11-21 12:46 2018-07-9 Show GitHub Exploit DB Packet Storm
247164 7.5 HIGH
Network 		adbglobal dv2210_firmware
vv2220_firmware
vv5522_firmware
prg_av4202n_firmware 		All ADB broadband gateways / routers based on the Epicentro platform are affected by a privilege escalation vulnerability where attackers can gain access to the command line interface (CLI) if previo… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-13110 2024-11-21 12:46 2018-07-6 Show GitHub Exploit DB Packet Storm
247165 7.5 HIGH
Network 		adbglobal dv2210_firmware
vv2220_firmware
vv5522_firmware
prg_av4202n_firmware 		All ADB broadband gateways / routers based on the Epicentro platform are affected by an authorization bypass vulnerability where attackers are able to access and manipulate settings within the web in… CWE-863
 Incorrect Authorization 		CVE-2018-13109 2024-11-21 12:46 2018-07-6 Show GitHub Exploit DB Packet Storm
247166 7.8 HIGH
Local 		adbglobal dv2210_firmware
vv2220_firmware
vv5522_firmware
prg_av4202n_firmware 		All ADB broadband gateways / routers based on the Epicentro platform are affected by a local root jailbreak vulnerability where attackers are able to gain root access on the device, and extract furth… NVD-CWE-noinfo
CVE-2018-13108 2024-11-21 12:46 2018-07-6 Show GitHub Exploit DB Packet Storm
247167 7.5 HIGH
Network 		mercurial mercurial The mpatch_decode function in mpatch.c in Mercurial before 4.6.1 mishandles certain situations where there should be at least 12 bytes remaining after the current position in the patch data, but actu… CWE-20
 Improper Input Validation  		CVE-2018-13348 2024-11-21 12:46 2018-07-6 Show GitHub Exploit DB Packet Storm
247168 9.8 CRITICAL
Network 		mercurial mercurial mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002. CWE-190
 Integer Overflow or Wraparound 		CVE-2018-13347 2024-11-21 12:46 2018-07-6 Show GitHub Exploit DB Packet Storm
247169 7.5 HIGH
Network 		mercurial mercurial The mpatch_apply function in mpatch.c in Mercurial before 4.6.1 incorrectly proceeds in cases where the fragment start is past the end of the original data, aka OVE-20180430-0004. CWE-20
 Improper Input Validation  		CVE-2018-13346 2024-11-21 12:46 2018-07-6 Show GitHub Exploit DB Packet Storm
247170 8.8 HIGH
Network 		gleeztech gleez_cms Gleez CMS 1.2.0 has CSRF, as demonstrated by a /page/add request. CWE-352
 Origin Validation Error 		CVE-2018-13340 2024-11-21 12:46 2018-07-6 Show GitHub Exploit DB Packet Storm