Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256261 6.8 警告 Opera Software ASA - Opera における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1080 2010-09-27 15:55 2008-02-29 Show GitHub Exploit DB Packet Storm
256262 9.3 危険 リアルネットワークス - RealNetworks RealPlayer におけるファイルのアクセス制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3002 2010-09-21 14:11 2010-08-26 Show GitHub Exploit DB Packet Storm
256263 9.3 危険 リアルネットワークス - Windows 上で稼働する RealNetworks RealPlayer の ParseKnownType 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-3000 2010-09-21 14:11 2010-08-26 Show GitHub Exploit DB Packet Storm
256264 9.3 危険 リアルネットワークス - Windows 上で稼働する RealNetworks RealPlayer の Internet Explorer プラグインにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3001 2010-09-21 14:11 2010-08-26 Show GitHub Exploit DB Packet Storm
256265 9.3 危険 リアルネットワークス - Windows 上で稼働する RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2996 2010-09-21 14:10 2010-08-26 Show GitHub Exploit DB Packet Storm
256266 9.3 危険 リアルネットワークス - Windows 上で稼働する RealNetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0120 2010-09-17 15:56 2010-08-26 Show GitHub Exploit DB Packet Storm
256267 9.3 危険 リアルネットワークス - Windows 上で稼働する RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-0117 2010-09-17 15:56 2010-08-26 Show GitHub Exploit DB Packet Storm
256268 9.3 危険 リアルネットワークス - Windows 上で稼働する RealNetworks RealPlayer における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0116 2010-09-17 15:56 2010-08-26 Show GitHub Exploit DB Packet Storm
256269 9.3 危険 Artifex Software - Ghostscript の TrueType bytecode interpreter に脆弱性 CWE-189
数値処理の問題 		CVE-2009-3743 2010-09-16 15:42 2010-08-25 Show GitHub Exploit DB Packet Storm
256270 5 警告 Devon IT - Devon IT 製品に複数の脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-3122 2010-09-16 15:42 2010-08-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246551 6.8 MEDIUM
Physics 		apollotechnologiesinc momentum_axel_720p_firmware An issue was discovered on Momentum Axel 720P 5.1.8 devices. Custom Firmware Upgrade is possible via an SD Card. With physical access, an attacker can upgrade the firmware in under 60 seconds by inse… NVD-CWE-noinfo
CVE-2018-12258 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
246552 4.4 MEDIUM
Local 		apollotechnologiesinc momentum_axel_720p_firmware An issue was discovered on Momentum Axel 720P 5.1.8 devices. There is Authenticated Custom Firmware Upgrade via DNS Hijacking. An authenticated root user with CLI access is able to remotely upgrade f… CWE-295
Improper Certificate Validation  		CVE-2018-12257 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
246553 8.8 HIGH
Network 		harmistechnology ek_rishta router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI. CWE-89
SQL Injection 		CVE-2018-12254 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
246554 7.5 HIGH
Network 		mruby
debian 		mruby
debian_linux 		An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrb_class_real because "class BasicObject" is not properly supported in class.c. CWE-476
 NULL Pointer Dereference 		CVE-2018-12249 2024-11-21 12:44 2018-06-12 Show GitHub Exploit DB Packet Storm
246555 7.5 HIGH
Network 		mruby mruby An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OP_ENTER because mrbgems/mruby-fiber/src/fiber.c does not extend the stack in cases of many arguments to… CWE-125
Out-of-bounds Read 		CVE-2018-12248 2024-11-21 12:44 2018-06-12 Show GitHub Exploit DB Packet Storm
246556 7.5 HIGH
Network 		mruby mruby An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrb_class, related to certain .clone usage, because mrb_obj_clone in kernel.c copies flags other than the MRB_FLAG_IS_FR… CWE-476
 NULL Pointer Dereference 		CVE-2018-12247 2024-11-21 12:44 2018-06-12 Show GitHub Exploit DB Packet Storm
246557 7.8 HIGH
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		In the ea_get function in fs/jfs/xattr.c in the Linux kernel through 4.17.1, a memory corruption bug in JFS can be triggered by calling setxattr twice with two different extended attribute names on t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12233 2024-11-21 12:44 2018-06-12 Show GitHub Exploit DB Packet Storm
246558 5.9 MEDIUM
Network 		linux linux_kernel In net/socket.c in the Linux kernel through 4.17.1, there is a race condition between fchownat and close in cases where they target the same socket file descriptor, related to the sock_close and sock… CWE-362
Race Condition 		CVE-2018-12232 2024-11-21 12:44 2018-06-12 Show GitHub Exploit DB Packet Storm
246559 6.1 MEDIUM
Network 		sfu open_journal_system Cross-site scripting (XSS) vulnerability in Public Knowledge Project (PKP) Open Journal System (OJS) 3.0.0 to 3.1.1-1 allows remote attackers to inject arbitrary web script or HTML via the templates/… CWE-79
Cross-site Scripting 		CVE-2018-12229 2024-11-21 12:44 2018-06-12 Show GitHub Exploit DB Packet Storm
246560 6.5 MEDIUM
Network 		sangoma asterisk An issue was discovered in Asterisk Open Source 15.x before 15.4.1. When connected to Asterisk via TCP/TLS, if the client abruptly disconnects, or sends a specially crafted message, then Asterisk get… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2018-12228 2024-11-21 12:44 2018-06-12 Show GitHub Exploit DB Packet Storm