Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253311	7.5	危険	onlinetechtools.com	-	OWOS の process.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4186	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

253312	7.5	危険	energine	-	Energine における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4185	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

253313	5	警告	netsupportsoftware	-	NSM における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-4184	2012-03-27 18:42	2010-10-8	Show	GitHub Exploit DB Packet Storm

253314	4.3	警告	htmlpurifier マイクロソフト	-	HTML Purifier におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4183	2012-03-27 18:42	2010-09-5	Show	GitHub Exploit DB Packet Storm

253315	5	警告	Yaws	-	Yaws におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4181	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

253316	4	警告	dracut Project kernel.org	-	dracut におけるローカルユーザの tty0 からターナミルデータを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4176	2012-03-27 18:42	2010-12-7	Show	GitHub Exploit DB Packet Storm

253317	3.3	注意	OpenFabrics Alliance	-	libsdp の libsdp.conf のディフォルト設定における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2010-4173	2012-03-27 18:42	2010-11-22	Show	GitHub Exploit DB Packet Storm

253318	5	警告	OpenTTD	-	OpenTTD におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4168	2012-03-27 18:42	2010-11-17	Show	GitHub Exploit DB Packet Storm

253319	7.5	危険	Joomla!	-	Joomla! における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4166	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

253320	6.9	警告	Mono Project	-	Mono の metadata/loader.c における権限を取得される脆弱性	CWE-Other その他	CVE-2010-4159	2012-03-27 18:42	2010-09-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245651	9.9	CRITICAL Network	vyos	vyos	A sandbox escape issue was discovered in VyOS 1.1.8. It provides a restricted management shell for operator users to administer the device. By issuing various shell special characters with certain co…	CWE-78 OS Command	CVE-2018-18555	2024-11-21 12:56	2018-12-18	Show	GitHub Exploit DB Packet Storm

245652	4.6	MEDIUM Physics	medtronic	carelink_2090_programmer_firmware carelink_9790_programmer_firmware 29901_encore_programmer_firmware	Medtronic CareLink 2090 Programmer CareLink 9790 Programmer 29901 Encore Programmer, all versions, The affected products do not encrypt or do not sufficiently encrypt the following sensitive informat…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2018-18984	2024-11-21 12:56	2018-12-15	Show	GitHub Exploit DB Packet Storm

245653	9.8	CRITICAL Network	abisoftgt	ticketly	AbiSoft Ticketly 1.0 is affected by multiple SQL Injection vulnerabilities through the parameters name, category_id and description in action/addproject.php; kind_id, priority_id, project_id, status_…	CWE-89 SQL Injection	CVE-2018-18923	2024-11-21 12:56	2018-12-14	Show	GitHub Exploit DB Packet Storm

245654	9.8	CRITICAL Network	abisoftgt	ticketly	add_user in AbiSoft Ticketly 1.0 allows remote attackers to create administrator accounts via an action/add_user.php POST request.	CWE-425 Direct Request ('Forced Browsing')	CVE-2018-18922	2024-11-21 12:56	2018-12-14	Show	GitHub Exploit DB Packet Storm

245655	9.9	CRITICAL Network	tibco	managed_file_transfer_internet_server managed_file_transfer_command_center	The Administrator Service component of TIBCO Software Inc.'s TIBCO Managed File Transfer Command Center, and TIBCO Managed File Transfer Internet Server contains vulnerabilities where an authenticate…	NVD-CWE-noinfo	CVE-2018-18810	2024-11-21 12:56	2018-12-12	Show	GitHub Exploit DB Packet Storm

245656	10.0	CRITICAL Network	gitlab	gitlab	The Kubernetes integration in GitLab Enterprise Edition 11.x before 11.2.8, 11.3.x before 11.3.9, and 11.4.x before 11.4.4 has SSRF.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-18843	2024-11-21 12:56	2018-12-5	Show	GitHub Exploit DB Packet Storm

245657	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Information Exposure Through an Error Message.	CWE-200 Information Exposure	CVE-2018-18648	2024-11-21 12:56	2018-12-5	Show	GitHub Exploit DB Packet Storm

245658	6.5	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Missing Authorization.	CWE-862 Missing Authorization	CVE-2018-18647	2024-11-21 12:56	2018-12-5	Show	GitHub Exploit DB Packet Storm

245659	8.8	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows SSRF.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-18646	2024-11-21 12:56	2018-12-5	Show	GitHub Exploit DB Packet Storm

245660	4.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows for Information Exposure via unsubscribe links in email rep…	CWE-200 Information Exposure	CVE-2018-18645	2024-11-21 12:56	2018-12-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed