Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252491 4.3 警告 Andreas Kiefer - TYPO3 用の Yet Another Calendar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4890 2012-01-19 11:19 2010-09-2 Show GitHub Exploit DB Packet Storm
252492 10 危険 Marco Hezel - TYPO3 用の Tiny Market における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-4889 2012-01-19 11:18 2010-09-2 Show GitHub Exploit DB Packet Storm
252493 7.5 危険 Marco Hezel - TYPO3 用の Tiny Market における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4888 2012-01-19 11:17 2010-09-2 Show GitHub Exploit DB Packet Storm
252494 7.5 危険 Raphael Zschorsch - TYPO3 用の Commenting system Backend Module における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4887 2012-01-19 11:17 2010-09-2 Show GitHub Exploit DB Packet Storm
252495 4.3 警告 Peter Proell - TYPO3 用の official twitter tweet button for your page におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4886 2012-01-19 11:10 2010-09-2 Show GitHub Exploit DB Packet Storm
252496 4.3 警告 Peter Proell - TYPO3 用の XING Button におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4885 2012-01-19 11:09 2010-09-2 Show GitHub Exploit DB Packet Storm
252497 7.5 危険 Hinnendahl - Gaestebuch の guestbook/gbook.php におけるリモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4884 2012-01-19 11:08 2011-10-7 Show GitHub Exploit DB Packet Storm
252498 2.6 注意 MODX - MODx Revolution の manager/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4883 2012-01-19 11:06 2011-10-7 Show GitHub Exploit DB Packet Storm
252499 4.3 警告 Ventics - Auto CMS の autocms.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4882 2012-01-19 11:06 2011-10-7 Show GitHub Exploit DB Packet Storm
252500 6.8 警告 ApPHP - ApPHP Calendar の calendar.class.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-4881 2012-01-19 10:33 2011-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246571 7.8 HIGH
Local 		google android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper configuration of script may lead to unprivileged access. CWE-269
 Improper Privilege Management 		CVE-2018-11911 2024-11-21 12:44 2018-11-28 Show GitHub Exploit DB Packet Storm
246572 7.8 HIGH
Local 		google android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /persist/ whic… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-11910 2024-11-21 12:44 2018-11-28 Show GitHub Exploit DB Packet Storm
246573 7.8 HIGH
Local 		google android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /cache/ which … CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-11909 2024-11-21 12:44 2018-11-28 Show GitHub Exploit DB Packet Storm
246574 7.8 HIGH
Local 		google android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /data/ which p… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-11908 2024-11-21 12:44 2018-11-28 Show GitHub Exploit DB Packet Storm
246575 7.8 HIGH
Local 		google android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, improper access control can lead to device node and executable to be run from /firmware/ whi… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-11907 2024-11-21 12:44 2018-11-28 Show GitHub Exploit DB Packet Storm
246576 7.8 HIGH
Local 		google android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, there is a security concern with default privileged access to ADB and debug-fs. CWE-276
Incorrect Default Permissions  		CVE-2018-11906 2024-11-21 12:44 2018-11-28 Show GitHub Exploit DB Packet Storm
246577 7.8 HIGH
Local 		google android In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, freeing device memory in driver probe failure will result in double free issue in power modu… CWE-415
 Double Free 		CVE-2018-11823 2024-11-21 12:44 2018-11-28 Show GitHub Exploit DB Packet Storm
246578 4.2 MEDIUM
Physics 		samsung 840_evo_firmware An issue was discovered on Samsung 840 EVO devices. Vendor-specific commands may allow access to the disk-encryption key. CWE-522
 Insufficiently Protected Credentials 		CVE-2018-12038 2024-11-21 12:44 2018-11-21 Show GitHub Exploit DB Packet Storm
246579 4.0 MEDIUM
Physics 		samsung
micron 		840_evo_firmware
850_evo_firmware
t3_firmware
t5_firmware
crucial_mx100_firmware
crucial_mx200_firmware
crucial_mx300_firmware 		An issue was discovered on Samsung 840 EVO and 850 EVO devices (only in "ATA high" mode, not vulnerable in "TCG" or "ATA max" mode), Samsung T3 and T5 portable drives, and Crucial MX100, MX200 and MX… NVD-CWE-noinfo
CVE-2018-12037 2024-11-21 12:44 2018-11-21 Show GitHub Exploit DB Packet Storm
246580 7.8 HIGH
Local 		intel parallel_studio_xe Heap overflow in Intel Trace Analyzer 2018 in Intel Parallel Studio XE 2018 Update 3 may allow an authenticated user to potentially escalate privileges via local access. CWE-787
 Out-of-bounds Write 		CVE-2018-12174 2024-11-21 12:44 2018-11-14 Show GitHub Exploit DB Packet Storm