Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251301	7.5	危険	wsnlinks	-	WSN Links の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4006	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

251302	6.9	警告	GNOME Project	-	GNOME Tomboy の tomboy スクリプトにおける権限を取得される脆弱性	CWE-94 コード・インジェクション	CVE-2010-4005	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

251303	6.9	警告	GNOME Project	-	GNOME Shell の gnome-shell における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4000	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

251304	6.9	警告	gnucash	-	GnuCash の gnc-test-env における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3999	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

251305	6.9	警告	banshee-project	-	Banshee の banshee-1 スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3998	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

251306	6.9	警告	cstr	-	CSTR Festival の festival_server における権限を取得される脆弱性	CWE-DesignError	CVE-2010-3996	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

251307	4.3	警告	ヒューレット・パッカード	-	HP VCRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3994	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

251308	6.4	警告	ヒューレット・パッカード	-	HP Insight Control Server Migration における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-3993	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

251309	9	危険	ヒューレット・パッカード	-	HP Insight Control Server Migration における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-3992	2012-03-27 18:42	2010-10-25	Show	GitHub Exploit DB Packet Storm

251310	10	危険	Novell	-	SUSE Linux Enterprise の supportconfig スクリプトにおける脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-3912	2012-03-27 18:42	2011-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247301	5.5	MEDIUM Local	libfsntfs_project	libfsntfs	The libfsntfs_security_descriptor_values_free function in libfsntfs_security_descriptor_values.c in libfsntfs through 2018-04-20 allows remote attackers to cause a denial of service (double-free) via…	CWE-415 Double Free	CVE-2018-11730	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247302	5.5	MEDIUM Local	libfsntfs_project	libfsntfs	The libfsntfs_mft_entry_read_header function in libfsntfs_mft_entry.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a cr…	CWE-200 CWE-125 Information Exposure Out-of-bounds Read	CVE-2018-11729	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247303	5.5	MEDIUM Local	libfsntfs_project	libfsntfs	The libfsntfs_reparse_point_values_read_data function in libfsntfs_reparse_point_values.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure (heap-based buffer…	CWE-200 CWE-125 Information Exposure Out-of-bounds Read	CVE-2018-11728	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247304	5.5	MEDIUM Local	libfsntfs_project	libfsntfs	The libfsntfs_attribute_read_from_mft function in libfsntfs_attribute.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a …	CWE-200 CWE-125 Information Exposure Out-of-bounds Read	CVE-2018-11727	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247305	8.8	HIGH Network	libmobi_project	libmobi	The mobi_decode_font_resource function in util.c in Libmobi 0.3 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a craft…	CWE-787 Out-of-bounds Write	CVE-2018-11726	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247306	6.5	MEDIUM Network	libmobi_project	libmobi	The mobi_parse_index_entry function in index.c in Libmobi 0.3 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted mobi file.	CWE-125 Out-of-bounds Read	CVE-2018-11725	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247307	8.8	HIGH Network	libmobi_project	libmobi	The mobi_pk1_decrypt function in encryption.c in Libmobi 0.3 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted …	CWE-125 Out-of-bounds Read	CVE-2018-11724	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247308	5.5	MEDIUM Local	libpff_project	libpff	The libpff_name_to_id_map_entry_read function in libpff_name_to_id_map.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure (heap-based buffer over-read) v…	CWE-125 Out-of-bounds Read	CVE-2018-11723	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247309	6.5	MEDIUM Network	auth0	angular-jwt	Auth0 angular-jwt before 0.1.10 treats whiteListedDomains entries as regular expressions, which allows remote attackers with knowledge of the jwtInterceptorProvider.whiteListedDomains setting to bypa…	CWE-20 Improper Input Validation	CVE-2018-11537	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm

247310	7.8	HIGH Local	webtoffee	wordpress_comments_import_and_export	The plugin "WordPress Comments Import & Export" for WordPress (v2.0.4 and before) is vulnerable to CSV Injection.	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2018-11526	2024-11-21 12:43	2018-06-20	Show	GitHub Exploit DB Packet Storm