Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252201	7.5	危険	W-Agora	-	W-Agora の search.php3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4867	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

252202	7.5	危険	Chipmunk Scripts	-	Chipmunk Board の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4866	2012-02-9 11:09	2011-10-5	Show	GitHub Exploit DB Packet Storm

252203	7.5	危険	Jextensions	-	Joomla! 用 JE Guestbook (com_jeguestbook) コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4865	2012-02-9 11:08	2011-10-5	Show	GitHub Exploit DB Packet Storm

252204	7.5	危険	Daniel James Scott	-	Joomla! 用 Club Manager (com_clubmanager) コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4864	2012-02-9 11:08	2011-10-5	Show	GitHub Exploit DB Packet Storm

252205	4.3	警告	The GetSimple Team	-	GetSimple CMS の admin/changedata.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4863	2012-02-9 11:07	2011-10-5	Show	GitHub Exploit DB Packet Storm

252206	7.5	危険	Joomla! Jextensions	-	Joomla! 用 JExtensions JE Director コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4862	2012-02-9 11:07	2011-10-5	Show	GitHub Exploit DB Packet Storm

252207	7.5	危険	webSPELL	-	webSPELL の asearch.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4861	2012-02-9 11:06	2011-10-5	Show	GitHub Exploit DB Packet Storm

252208	7.5	危険	Galaxyscriptz	-	MyPhpAuction の product_desc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4860	2012-02-9 11:05	2011-10-5	Show	GitHub Exploit DB Packet Storm

252209	7.5	危険	WebAsyst	-	WebAsyst Shop-Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4859	2012-02-9 11:05	2011-10-5	Show	GitHub Exploit DB Packet Storm

252210	5	警告	Joerg Risse	-	DNET Live-Stats の team.rc5-72.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4858	2012-02-9 11:04	2011-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246791	7.5	HIGH Network	zclassic	z-nomp	Z-NOMP before 2018-04-05 has an incorrect Equihash solution verifier that allows attackers to spoof mining shares, as demonstrated by providing a solution with {x1=1,x2=1,x3=1,...,x512=1} to bypass t…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2018-10831	2024-11-21 12:42	2018-05-9	Show	GitHub Exploit DB Packet Storm

246792	7.5	HIGH Network	litecart	litecart	LiteCart before 2.1.2 allows remote attackers to cause a denial of service (memory consumption) via URIs that do not exist, because public_html/logs/not_found.log grows without bound, and is loaded i…	CWE-400 Uncontrolled Resource Consumption	CVE-2018-10827	2024-11-21 12:42	2018-05-9	Show	GitHub Exploit DB Packet Storm

246793	6.1	MEDIUM Network	severalnines	clustercontrol	Severalnines ClusterControl before 1.6.0-4699 allows XSS.	CWE-79 Cross-site Scripting	CVE-2018-10817	2024-11-21 12:42	2018-05-9	Show	GitHub Exploit DB Packet Storm

246794	4.1	MEDIUM Local	bitpie	bitcoin_wallet	The Bitpie application through 3.2.4 for Android and iOS uses cleartext storage for digital currency initial keys, which allows local users to steal currency by leveraging root access to read /com.bi…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2018-10812	2024-11-21 12:42	2018-05-9	Show	GitHub Exploit DB Packet Storm

246795	7.8	HIGH Local	2345_security_guard_project	2345_security_guard	In 2345 Security Guard 3.7, the driver file (2345NetFirewall.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input valu…	CWE-20 Improper Input Validation	CVE-2018-10809	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246796	5.4	MEDIUM Network	frogcms_project	frogcms	An issue was discovered in Frog CMS 0.9.5. There is a reflected Cross Site Scripting Vulnerability via the file[current_name] parameter to the admin/?/plugin/file_manager/rename URI. This can be used…	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2018-10806	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246797	6.5	MEDIUM Network	imagemagick canonical	imagemagick ubuntu_linux	ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-10805	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246798	6.5	MEDIUM Network	imagemagick canonical	imagemagick ubuntu_linux	ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/tiff.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-10804	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246799	6.5	MEDIUM Network	libtiff	libtiff	TIFFClientOpen in tif_unix.c in LibTIFF 3.8.2 has memory leaks, as demonstrated by bmp2tiff.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-10801	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246800	6.5	MEDIUM Network	brave	brave	A hang issue was discovered in Brave before 0.14.0 (on, for example, Linux). This vulnerability is caused by the mishandling of a long URL formed by window.location+='?\u202a\uFEFF\u202b'; concatenat…	CWE-20 Improper Input Validation	CVE-2018-10799	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm