Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252661 4.3 警告 hypermail-project - Hypermail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4339 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
252662 6.2 警告 jwilk - ocrodjvu における任意のファイルを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-4338 2012-03-27 18:42 2011-01-20 Show GitHub Exploit DB Packet Storm
252663 3.3 注意 GNU Project - gnash の configure スクリプトにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-4337 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
252664 7.5 危険 Cake Software Foundation - CakePHP の _validatePost 関数における内部 Cake キャッシュを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4335 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
252665 4 警告 io-socket-ssl - IO::Socket::SSL モジュールにおける証明書の制限を回避される脆弱性 CWE-310
暗号の問題 		CVE-2010-4334 2012-03-27 18:42 2011-01-13 Show GitHub Exploit DB Packet Storm
252666 7.5 危険 Laurent Destailleur - AWStats における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4367 2012-03-27 18:42 2010-12-2 Show GitHub Exploit DB Packet Storm
252667 4.3 警告 abk-soft - Chameleon Social Networking の forum_new_topic.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4366 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
252668 7.5 危険 Joomla!
Jextensions		 - Joomla! のJE Ajax Event Calendar コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4365 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
252669 4.3 警告 dadabik - DaDaBIK における保護メカニズムを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4364 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
252670 6.8 警告 mrcgiguy - MCG FreeTicket の contact.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4363 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246291 6.1 MEDIUM
Network 		sonatype nexus_repository_manager Sonatype Nexus Repository Manager before 3.14 allows XSS. CWE-79
Cross-site Scripting 		CVE-2018-16619 2024-11-21 12:53 2018-11-16 Show GitHub Exploit DB Packet Storm
246292 9.8 CRITICAL
Network 		postgresql
redhat
canonical 		postgresql
enterprise_linux
ubuntu_linux 		postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cau… CWE-89
SQL Injection 		CVE-2018-16850 2024-11-21 12:53 2018-11-14 Show GitHub Exploit DB Packet Storm
246293 6.1 MEDIUM
Local 		f5
debian
canonical
opensuse
apple 		nginx
debian_linux
ubuntu_linux
leap
xcode 		nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might r… - CVE-2018-16845 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
246294 7.5 HIGH
Network 		f5
debian
canonical
apple 		nginx
debian_linux
ubuntu_linux
xcode 		nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not … - CVE-2018-16844 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
246295 7.5 HIGH
Network 		f5
debian
canonical
opensuse
apple 		nginx
debian_linux
ubuntu_linux
leap
xcode 		nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_mod… - CVE-2018-16843 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
246296 8.8 HIGH
Adjacent 		ti ble-stack Texas Instruments BLE-STACK v2.2.1 for SimpleLink CC2640 and CC2650 devices allows remote attackers to execute arbitrary code via a malformed packet that triggers a buffer overflow. CWE-787
 Out-of-bounds Write 		CVE-2018-16986 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
246297 7.8 HIGH
Local 		qemu
canonical 		qemu
ubuntu_linux 		An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvme_cmb_ops routines in nvme device. A guest user/process could use this flaw to cras… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2018-16847 2024-11-21 12:53 2018-11-3 Show GitHub Exploit DB Packet Storm
246298 7.5 HIGH
Network 		redhat openstack-mistral A flaw was found in openstack-mistral. By manipulating the SSH private key filename, the std.ssh action can be used to disclose the presence of arbitrary files within the filesystem of the executor r… CWE-200
Information Exposure 		CVE-2018-16849 2024-11-21 12:53 2018-11-3 Show GitHub Exploit DB Packet Storm
246299 9.1 CRITICAL
Network 		haxx
canonical
debian 		curl
ubuntu_linux
debian_linux 		Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service. CWE-125
Out-of-bounds Read 		CVE-2018-16842 2024-11-21 12:53 2018-11-1 Show GitHub Exploit DB Packet Storm
246300 9.8 CRITICAL
Network 		haxx
canonical 		curl
ubuntu_linux 		A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` fun… CWE-416
 Use After Free 		CVE-2018-16840 2024-11-21 12:53 2018-11-1 Show GitHub Exploit DB Packet Storm