Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253201	5	警告	MailEnable	-	MailEnable の SMTP サービス (MESMTPC.exe) におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2580	2012-03-27 18:42	2010-09-13	Show	GitHub Exploit DB Packet Storm

253202	4.7	警告	Linux	-	Linux kernel の btrfs_ioctl_clone 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2538	2012-03-27 18:42	2010-09-30	Show	GitHub Exploit DB Packet Storm

253203	6.3	警告	Linux	-	Linux kernel の btrfs_ioctl_clone 関数における append-only のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2537	2012-03-27 18:42	2010-09-30	Show	GitHub Exploit DB Packet Storm

253204	3.5	注意	Joomla!	-	Joomla! の Back End におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2535	2012-03-27 18:42	2010-07-15	Show	GitHub Exploit DB Packet Storm

253205	4.9	警告	アップル FreeBSD NetBSD	-	NetBSD などの製品で使用されるカーネルの smb_subr.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-2530	2012-03-27 18:42	2010-09-29	Show	GitHub Exploit DB Packet Storm

253206	10	危険	Linux	-	Linux kernel の pppol2tp_xmit 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2495	2012-03-27 18:42	2010-09-8	Show	GitHub Exploit DB Packet Storm

253207	4.3	警告	Roundup	-	Roundup の cgi/client.py におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2491	2012-03-27 18:42	2010-09-24	Show	GitHub Exploit DB Packet Storm

253208	7.2	危険	Linux	-	Linux kernel の ethtool_get_rxnfc 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2478	2012-03-27 18:42	2010-09-29	Show	GitHub Exploit DB Packet Storm

253209	4.3	警告	Python Paste	-	Paste の paste.httpexceptions 実装におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2477	2012-03-27 18:42	2010-06-24	Show	GitHub Exploit DB Packet Storm

253210	4.3	警告	Synology Inc.	-	Synology Disk Station におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2453	2012-03-27 18:42	2010-09-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246001	9.8	CRITICAL Network	citrix	netscaler_sd-wan sd-wan	A SQL Injection issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.	CWE-89 SQL Injection	CVE-2018-17446	2024-11-21 12:54	2018-10-24	Show	GitHub Exploit DB Packet Storm

246002	9.8	CRITICAL Network	citrix	netscaler_sd-wan sd-wan	A Command Injection issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.	CWE-77 Command Injection	CVE-2018-17445	2024-11-21 12:54	2018-10-24	Show	GitHub Exploit DB Packet Storm

246003	7.5	HIGH Network	citrix	netscaler_sd-wan sd-wan	A Directory Traversal issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.	CWE-22 Path Traversal	CVE-2018-17444	2024-11-21 12:54	2018-10-24	Show	GitHub Exploit DB Packet Storm

246004	6.8	MEDIUM Physics	teltonika	rut900_firmware rut950_firmware rut955_firmware	Teltonika RUT9XX routers with firmware before 00.04.233 provide a root terminal on a serial interface without proper access control. This allows attackers with physical access to execute arbitrary co…	CWE-287 Improper Authentication	CVE-2018-17534	2024-11-21 12:54	2018-10-16	Show	GitHub Exploit DB Packet Storm

246005	6.1	MEDIUM Network	teltonika	rut900_firmware rut950_firmware rut955_firmware	Teltonika RUT9XX routers with firmware before 00.05.01.1 are prone to cross-site scripting vulnerabilities in hotspotlogin.cgi due to insufficient user input sanitization.	CWE-79 Cross-site Scripting	CVE-2018-17533	2024-11-21 12:54	2018-10-16	Show	GitHub Exploit DB Packet Storm

246006	9.8	CRITICAL Network	teltonika	rut900_firmware rut950_firmware rut955_firmware	Teltonika RUT9XX routers with firmware before 00.04.233 are prone to multiple unauthenticated OS command injection vulnerabilities in autologin.cgi and hotspotlogin.cgi due to insufficient user input…	CWE-78 OS Command	CVE-2018-17532	2024-11-21 12:54	2018-10-16	Show	GitHub Exploit DB Packet Storm

246007	6.1	MEDIUM Network	sugarcrm	sugarcrm	Multiple vulnerabilities in YUI and FlashCanvas embedded in SugarCRM Community Edition 6.5.26 could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targe…	CWE-79 Cross-site Scripting	CVE-2018-17784	2024-11-21 12:54	2018-10-11	Show	GitHub Exploit DB Packet Storm

246008	6.1	MEDIUM Network	intelbras	nplug_firmware	Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast.	CWE-79 Cross-site Scripting	CVE-2018-17337	2024-11-21 12:54	2018-10-11	Show	GitHub Exploit DB Packet Storm

246009	7.8	HIGH Local	seqrite	end_point_security	Seqrite End Point Security v7.4 has "Everyone: (F)" permission for %PROGRAMFILES%\Seqrite\Seqrite, which allows local users to gain privileges by replacing an executable file with a Trojan horse.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-17775	2024-11-21 12:54	2018-10-9	Show	GitHub Exploit DB Packet Storm

246010	6.1	MEDIUM Network	dlink	central_wifimanager	An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. The 'sitename' parameter of the UpdateSite endpoint is vulnerable to stored XSS.	CWE-79 Cross-site Scripting	CVE-2018-17443	2024-11-21 12:54	2018-10-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed