Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 11, 2026, 12:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252321 | 10 | 危険 | IBM | - | IBM IDS の librpc.dll における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-4070 | 2012-03-27 18:42 | 2010-10-25 | Show | GitHub Exploit DB Packet Storm |
| 252322 | 8.5 | 危険 | IBM | - | IBM IDS におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4069 | 2012-03-27 18:42 | 2010-10-25 | Show | GitHub Exploit DB Packet Storm |
| 252323 | 4.9 | 警告 | TYPO3 Association | - | TYPO3 の Extension Manager における任意のファイルを変更される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4068 | 2012-03-27 18:42 | 2010-10-6 | Show | GitHub Exploit DB Packet Storm |
| 252324 | 5 | 警告 | IBM | - | IBM solidDB の solid.exe におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-189
数値処理の問題 |
CVE-2010-4057 | 2012-03-27 18:42 | 2010-10-15 | Show | GitHub Exploit DB Packet Storm |
| 252325 | 5 | 警告 | IBM | - | IBM solidDB の solid.exe におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-4056 | 2012-03-27 18:42 | 2010-10-15 | Show | GitHub Exploit DB Packet Storm |
| 252326 | 5 | 警告 | IBM | - | IBM solidDB の solid.exe におけるサービス運用妨害 (DoS) 脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-4055 | 2012-03-27 18:42 | 2010-10-15 | Show | GitHub Exploit DB Packet Storm |
| 252327 | 9 | 危険 | IBM | - | IBM IDS のログを取得する機能におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4053 | 2012-03-27 18:42 | 2010-10-18 | Show | GitHub Exploit DB Packet Storm |
| 252328 | 4.3 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2010-4050 | 2012-03-27 18:42 | 2010-10-12 | Show | GitHub Exploit DB Packet Storm |
| 252329 | 4.3 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4049 | 2012-03-27 18:42 | 2010-10-12 | Show | GitHub Exploit DB Packet Storm |
| 252330 | 4.3 | 警告 | Opera Software ASA | - | Opera におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-4048 | 2012-03-27 18:42 | 2010-10-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 11, 2026, 5:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 247041 | 5.4 |
MEDIUM
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile. |
CWE-79
Cross-site Scripting |
CVE-2018-15189 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247042 | 6.5 |
MEDIUM
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote attackers to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-15188 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247043 | 8.0 |
HIGH
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via edit-profile.php. |
CWE-352
Origin Validation Error |
CVE-2018-15187 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247044 | 8.8 |
HIGH
Network |
chartered_accountant_\ | _auditor_website_project | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has CSRF via client/auditor/updprofile.php. |
CWE-352
Origin Validation Error |
CVE-2018-15186 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247045 | 6.5 |
MEDIUM
Network |
naukri_clone_script_project | naukri_clone_script | PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service (page update outage) via crafted PHP and JavaScript code in the "Current Position" fi… |
CWE-20
Improper Input Validation |
CVE-2018-15185 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247046 | 5.4 |
MEDIUM
Network |
naukri_clone_script_project | naukri_clone_script | PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795. |
CWE-79
Cross-site Scripting |
CVE-2018-15184 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247047 | 6.1 |
MEDIUM
Network |
myperfectresume_\/_jobhero_\/_resume_clone_script_project | myperfectresume_\/_jobhero_\/_resume_clone_script | PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15183 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247048 | 5.4 |
MEDIUM
Network |
car_rental_script_project | car_rental_script | PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15182 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247049 | 6.5 |
MEDIUM
Network |
jio | 4g_hotspot_m2s_firmware | JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15181 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247050 | 8.1 |
HIGH
Network |
laravel | laravel | In Laravel Framework through 5.5.40 and 5.6.x through 5.6.29, remote code execution might occur as a result of an unserialize call on a potentially untrusted X-XSRF-TOKEN value. This involves the dec… |
CWE-502
Deserialization of Untrusted Data |
CVE-2018-15133 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |