Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 2:07 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253311	5	警告	yellosoft	-	YelloSoft Pinky におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3487	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

253312	5	警告	SmarterTools Inc.	-	SmarterMail の FileStorageUpload.ashx におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3486	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

253313	7.5	危険	LightNEasy	-	LightNEasy の common.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3485	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

253314	7.5	危険	LightNEasy	-	LightNEasy の common.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3484	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

253315	7.5	危険	bouzouste	-	Primitive CMS の cms_write.php における管理者権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3483	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

253316	6.5	警告	bouzouste	-	Primitive CMS の cms_write.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3482	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

253317	6.8	警告	ApPHP	-	ApPHP PHP MicroCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3481	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

253318	4.3	警告	g.rodola	-	pyftpdlib の FTPHandler クラスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-3494	2012-03-27 18:42	2009-04-1	Show	GitHub Exploit DB Packet Storm

253319	6.8	警告	ApPHP	-	ApPHP PHP MicroCMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3480	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

253320	7.5	危険	boutikone	-	BoutikOne の list.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3479	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245941	3.3	LOW Local	thereceptionist	the_receptionist_for_ipad	The Receptionist for iPad could allow a local attacker to obtain sensitive information, caused by an error in the contact.json file. An attacker could exploit this vulnerability to obtain the contact…	CWE-200 Information Exposure	CVE-2018-17502	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245942	7.8	HIGH Local	envoy	passport	Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of hardcoded OAuth Creds in plaintext. An attacker could e…	CWE-522 Insufficiently Protected Credentials	CVE-2018-17500	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245943	5.5	MEDIUM Local	envoy	passport	Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of unencrypted data in logs. An attacker could exploit thi…	CWE-532 CWE-312 Inclusion of Sensitive Information in Log Files Cleartext Storage of Sensitive Information	CVE-2018-17499	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245944	7.8	HIGH Local	thresholdsecurity	evisitorpass	eVisitorPass contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the application.	CWE-1188 Insecure Default Initialization of Resource	CVE-2018-17497	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245945	7.8	HIGH Local	thresholdsecurity	evisitorpass	eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error while in kiosk mode. By visiting the kiosk and typing ctrl+shift+esc, an attacker could exploit…	NVD-CWE-noinfo	CVE-2018-17496	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245946	7.8	HIGH Local	thresholdsecurity	evisitorpass	eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Help Dialog. By visiting the kiosk and removing the program from full…	NVD-CWE-noinfo	CVE-2018-17495	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245947	7.8	HIGH Local	thresholdsecurity	evisitorpass	eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Virtual Keyboard Start Menu. By visiting the kiosk and pressing windows key twice, an …	NVD-CWE-noinfo	CVE-2018-17494	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245948	7.8	HIGH Local	thresholdsecurity	evisitorpass	eVisitorPass could allow a local attacker to gain elevated privileges on the system, caused by an error with the Fullscreen button. By visiting the kiosk and clicking the full screen button in the bo…	NVD-CWE-noinfo	CVE-2018-17493	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245949	7.8	HIGH Local	hidglobal	easylobby_solo	EasyLobby Solo contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the application.	CWE-798 Use of Hard-coded Credentials	CVE-2018-17492	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm

245950	7.8	HIGH Local	hidglobal	easylobby_solo	EasyLobby Solo could allow a local attacker to gain elevated privileges on the system. By visiting the kiosk and typing "esc" to exit the program, an attacker could exploit this vulnerability to perf…	CWE-862 Missing Authorization	CVE-2018-17491	2024-11-21 12:54	2019-03-22	Show	GitHub Exploit DB Packet Storm