Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252091 7.5 危険 W-Agora - W-Agora の search.php3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4867 2012-02-9 11:10 2011-10-5 Show GitHub Exploit DB Packet Storm
252092 7.5 危険 Chipmunk Scripts - Chipmunk Board の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4866 2012-02-9 11:09 2011-10-5 Show GitHub Exploit DB Packet Storm
252093 7.5 危険 Jextensions - Joomla! 用 JE Guestbook (com_jeguestbook) コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4865 2012-02-9 11:08 2011-10-5 Show GitHub Exploit DB Packet Storm
252094 7.5 危険 Daniel James Scott - Joomla! 用 Club Manager (com_clubmanager) コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4864 2012-02-9 11:08 2011-10-5 Show GitHub Exploit DB Packet Storm
252095 4.3 警告 The GetSimple Team - GetSimple CMS の admin/changedata.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4863 2012-02-9 11:07 2011-10-5 Show GitHub Exploit DB Packet Storm
252096 7.5 危険 Joomla!
Jextensions		 - Joomla! 用 JExtensions JE Director コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4862 2012-02-9 11:07 2011-10-5 Show GitHub Exploit DB Packet Storm
252097 7.5 危険 webSPELL - webSPELL の asearch.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4861 2012-02-9 11:06 2011-10-5 Show GitHub Exploit DB Packet Storm
252098 7.5 危険 Galaxyscriptz - MyPhpAuction の product_desc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4860 2012-02-9 11:05 2011-10-5 Show GitHub Exploit DB Packet Storm
252099 7.5 危険 WebAsyst - WebAsyst Shop-Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4859 2012-02-9 11:05 2011-10-5 Show GitHub Exploit DB Packet Storm
252100 5 警告 Joerg Risse - DNET Live-Stats の team.rc5-72.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4858 2012-02-9 11:04 2011-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246851 7.5 HIGH
Network 		bitcoinsv bitcoin_sv Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving sendheaders messages. CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-1000892 2024-11-21 12:40 2020-12-24 Show GitHub Exploit DB Packet Storm
246852 7.5 HIGH
Network 		bitcoinsv bitcoin_sv Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving messages with invalid checksums. CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-1000891 2024-11-21 12:40 2020-12-24 Show GitHub Exploit DB Packet Storm
246853 6.1 MEDIUM
Network 		contao contao Contao before 4.5.7 has XSS in the system log. CWE-79
Cross-site Scripting 		CVE-2018-10125 2024-11-21 12:40 2020-03-17 Show GitHub Exploit DB Packet Storm
246854 5.3 MEDIUM
Network 		kubernetes nginx_ingress_controller Versions < 1.5 of the Kubernetes ingress default backend, which handles invalid ingress traffic, exposed prometheus metrics publicly. CWE-20
 Improper Input Validation  		CVE-2018-1002104 2024-11-21 12:40 2020-01-15 Show GitHub Exploit DB Packet Storm
246855 2.6 LOW
Network 		kubernetes
fedoraproject 		kubernetes
fedora 		Improper validation of URL redirection in the Kubernetes API server in versions prior to v1.14.0 allows an attacker-controlled Kubelet to redirect API server requests from streaming endpoints to arbi… CWE-601
Open Redirect 		CVE-2018-1002102 2024-11-21 12:40 2019-12-6 Show GitHub Exploit DB Packet Storm
246856 9.8 CRITICAL
Network 		tcpdump tcpdump tcpdump before 4.9.3 mishandles the printing of SMB data (issue 2 of 2). CWE-20
 Improper Input Validation  		CVE-2018-10105 2024-11-21 12:40 2019-10-4 Show GitHub Exploit DB Packet Storm
246857 9.8 CRITICAL
Network 		tcpdump tcpdump tcpdump before 4.9.3 mishandles the printing of SMB data (issue 1 of 2). CWE-20
 Improper Input Validation  		CVE-2018-10103 2024-11-21 12:40 2019-10-4 Show GitHub Exploit DB Packet Storm
246858 9.8 CRITICAL
Network 		kromtech mackeeper Kromtech MacKeeper 3.20.4 suffers from a root privilege escalation vulnerability through its `com.mackeeper.AdwareAnalyzer.AdwareAnalyzerPrivilegedHelper` component. The AdwareAnalzyerPrivilegedHelpe… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-10171 2024-11-21 12:40 2019-06-6 Show GitHub Exploit DB Packet Storm
246859 8.1 HIGH
Network 		google tensorflow Invalid memory access and/or a heap buffer overflow in the TensorFlow XLA compiler in Google TensorFlow before 1.7.1 could cause a crash or read from other parts of process memory via a crafted confi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-10055 2024-11-21 12:40 2019-04-25 Show GitHub Exploit DB Packet Storm
246860 8.8 HIGH
Network 		audiocodes 420hd_ip_phone_firmware AudioCodes IP phone 420HD devices using firmware version 2.2.12.126 allow Remote Code Execution. CWE-862
 Missing Authorization 		CVE-2018-10093 2024-11-21 12:40 2019-03-22 Show GitHub Exploit DB Packet Storm