Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251831	9.3	危険	crossftp	-	CrossFTP Pro におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4153	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

251832	7.5	危険	4site	-	4site CMS の catalog/index.shtml における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4152	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

251833	6.8	警告	deluxebb	-	DeluxeBB における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4151	2012-03-27 18:42	2010-11-3	Show	GitHub Exploit DB Packet Storm

251834	9.3	危険	freshwebmaster	-	FreshWebMaster Fresh FTP におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4149	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

251835	9.3	危険	anyconnect	-	AnyConnect におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4148	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

251836	7.5	危険	avactis	-	Pentasoft Avactis Shopping Cart における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4147	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

251837	4.3	警告	Attachmate	-	Web 2008 の Attachmate Reflection におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4146	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

251838	5	警告	ASP indir	-	Kisisel Radyo Script におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4145	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

251839	7.5	危険	ASP indir	-	Kisisel Radyo Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4144	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

251840	6.8	警告	phpcheckz	-	phpCheckZ の chart.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4143	2012-03-27 18:42	2010-11-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246541	9.8	CRITICAL Network	mutt neomutt debian canonical	mutt neomutt debian_linux ubuntu_linux	An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/message.c has a stack-based buffer overflow for a FETCH response with a long INTERNALDATE field.	CWE-787 Out-of-bounds Write	CVE-2018-14350	2024-11-21 12:48	2018-07-18	Show	GitHub Exploit DB Packet Storm

246542	9.8	CRITICAL Network	debian mutt neomutt canonical	debian_linux mutt neomutt ubuntu_linux	An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/command.c mishandles a NO response without a message.	CWE-20 Improper Input Validation	CVE-2018-14349	2024-11-21 12:48	2018-07-18	Show	GitHub Exploit DB Packet Storm

246543	6.5	MEDIUM Network	debian gnu	debian_linux libextractor	GNU Libextractor before 1.7 contains an infinite loop vulnerability in EXTRACTOR_mpeg_extract_method (mpeg_extractor.c).	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2018-14347	2024-11-21 12:48	2018-07-18	Show	GitHub Exploit DB Packet Storm

246544	8.8	HIGH Network	debian gnu	debian_linux libextractor	GNU Libextractor before 1.7 has a stack-based buffer overflow in ec_read_file_func (unzip.c).	CWE-787 Out-of-bounds Write	CVE-2018-14346	2024-11-21 12:48	2018-07-18	Show	GitHub Exploit DB Packet Storm

246545	7.5	HIGH Network	sddm_project	sddm	An issue was discovered in SDDM through 0.17.0. If configured with ReuseSession=true, the password is not checked for users with an already existing session. Any user with access to the system D-Bus …	CWE-287 CWE-613 Improper Authentication Insufficient Session Expiration	CVE-2018-14345	2024-11-21 12:48	2018-07-17	Show	GitHub Exploit DB Packet Storm

246546	9.8	CRITICAL Network	trivum	webtouch_setup_v9_firmware	Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 09:10:14 (FW 303) allow unauthorized remote attackers to reset the authentication via the "/xml/system/setAttribute.xml" URL, using…	NVD-CWE-noinfo	CVE-2018-13862	2024-11-21 12:48	2018-07-17	Show	GitHub Exploit DB Packet Storm

246547	9.8	CRITICAL Network	trivum	webtouch_setup_v9_firmware	Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 09:10:14 (FW 303) allows unauthorized remote attackers to reboot or execute other functions via the "/xml/system/control.xml" URL, …	NVD-CWE-noinfo	CVE-2018-13861	2024-11-21 12:48	2018-07-17	Show	GitHub Exploit DB Packet Storm

246548	7.5	HIGH Network	trivum	c4_professional_firmware	MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 Professional before V9.34 build 13381 - 12.07.18 allows unauthorized remote attackers to obtain sensitive information via the "/xml/…	CWE-200 Information Exposure	CVE-2018-13860	2024-11-21 12:48	2018-07-17	Show	GitHub Exploit DB Packet Storm

246549	9.8	CRITICAL Network	trivum	c4_professional_firmware	MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 Professional before V9.34 build 13381 - 12.07.18, allow unauthorized remote attackers to reset the authentication via the "/xml/syst…	NVD-CWE-noinfo	CVE-2018-13859	2024-11-21 12:48	2018-07-17	Show	GitHub Exploit DB Packet Storm

246550	9.8	CRITICAL Network	trivum	c4_professional_firmware	MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 Professional allows unauthorized remote attackers to reboot or execute other functions via the "/xml/system/control.xml" URL, using …	NVD-CWE-noinfo	CVE-2018-13858	2024-11-21 12:48	2018-07-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed