Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253311	7.5	危険	onlinetechtools.com	-	OWOS の process.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4186	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

253312	7.5	危険	energine	-	Energine における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4185	2012-03-27 18:42	2010-11-5	Show	GitHub Exploit DB Packet Storm

253313	5	警告	netsupportsoftware	-	NSM における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-4184	2012-03-27 18:42	2010-10-8	Show	GitHub Exploit DB Packet Storm

253314	4.3	警告	htmlpurifier マイクロソフト	-	HTML Purifier におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4183	2012-03-27 18:42	2010-09-5	Show	GitHub Exploit DB Packet Storm

253315	5	警告	Yaws	-	Yaws におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4181	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

253316	4	警告	dracut Project kernel.org	-	dracut におけるローカルユーザの tty0 からターナミルデータを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4176	2012-03-27 18:42	2010-12-7	Show	GitHub Exploit DB Packet Storm

253317	3.3	注意	OpenFabrics Alliance	-	libsdp の libsdp.conf のディフォルト設定における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2010-4173	2012-03-27 18:42	2010-11-22	Show	GitHub Exploit DB Packet Storm

253318	5	警告	OpenTTD	-	OpenTTD におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4168	2012-03-27 18:42	2010-11-17	Show	GitHub Exploit DB Packet Storm

253319	7.5	危険	Joomla!	-	Joomla! における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4166	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

253320	6.9	警告	Mono Project	-	Mono の metadata/loader.c における権限を取得される脆弱性	CWE-Other その他	CVE-2010-4159	2012-03-27 18:42	2010-09-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245711	6.5	MEDIUM Network	microfocus	service_manager	A potential unauthorized disclosure of data vulnerability has been identified in Micro Focus Service Manager versions: 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51. The vulnerability co…	CWE-200 Information Exposure	CVE-2018-18591	2024-11-21 12:56	2018-11-13	Show	GitHub Exploit DB Packet Storm

245712	8.8	HIGH Network	ethereum	py-evm	Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.execute_bytecode call that triggers computation._stack.values with '"stack": [100, 100, 0]' where b'\x' was expected, resulting in an execution fa…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-18920	2024-11-21 12:56	2018-11-12	Show	GitHub Exploit DB Packet Storm

245713	8.8	HIGH Adjacent	microfocus	operations_bridge	A potential remote code execution and information disclosure vulnerability exists in Micro Focus Operations Bridge containerized suite versions 2017.11, 2018.02, 2018.05, 2018.08. This vulnerability …	CWE-200 Information Exposure	CVE-2018-18590	2024-11-21 12:56	2018-11-8	Show	GitHub Exploit DB Packet Storm

245714	9.8	CRITICAL Network	degraupublicidade	degraupublicidade	Busca.aspx.cs in Degrau Publicidade e Internet Plataforma de E-commerce allows SQL Injection via the busca/ URI.	CWE-89 SQL Injection	CVE-2018-18963	2024-11-21 12:56	2018-11-6	Show	GitHub Exploit DB Packet Storm

245715	7.5	HIGH Network	zohocorp	manageengine_network_configuration_manager manageengine_opmanager	An XML External Entity injection (XXE) vulnerability exists in Zoho ManageEngine Network Configuration Manager and OpManager before 12.3.214 via the RequestXML parameter in a /devices/ProcessRequest.…	CWE-611 XXE	CVE-2018-18980	2024-11-21 12:56	2018-11-6	Show	GitHub Exploit DB Packet Storm

245716	4.9	MEDIUM Network	oscommerce	online_merchant	osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. The .htaccess file in catalog/images/ bans the html extension, but Internet Explorer render HTML elemen…	NVD-CWE-noinfo	CVE-2018-18966	2024-11-21 12:56	2018-11-6	Show	GitHub Exploit DB Packet Storm

245717	4.9	MEDIUM Network	oscommerce	online_merchant	osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. The .htaccess file in catalog/images/ bans the html extension, but there are several alternative cases …	NVD-CWE-noinfo	CVE-2018-18965	2024-11-21 12:56	2018-11-6	Show	GitHub Exploit DB Packet Storm

245718	4.9	MEDIUM Network	oscommerce	online_merchant	osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. The .htaccess file in catalog/images/ bans the html extension, but there are several extensions in whic…	NVD-CWE-noinfo	CVE-2018-18964	2024-11-21 12:56	2018-11-6	Show	GitHub Exploit DB Packet Storm

245719	9.8	CRITICAL Network	mz-automation	libiec61850	An issue has been found in libIEC61850 v1.3. It is a stack-based buffer overflow in prepareGooseBuffer in goose/goose_publisher.c.	CWE-787 Out-of-bounds Write	CVE-2018-18957	2024-11-21 12:56	2018-11-6	Show	GitHub Exploit DB Packet Storm

245720	7.5	HIGH Network	suricata-ids	suricata	The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x before 4.0.6 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-18956	2024-11-21 12:56	2018-11-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed