Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256731 6.8 警告 アップル - Java の window drawing 実装における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2010-0539 2010-06-7 17:58 2010-05-18 Show GitHub Exploit DB Packet Storm
256732 6.8 警告 アップル - Apple Mac OS X 上で稼働する Java における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0538 2010-06-7 17:58 2010-05-18 Show GitHub Exploit DB Packet Storm
256733 6.5 警告 PostgreSQL.org
サイバートラスト株式会社
ターボリナックス
サン・マイクロシステムズ
レッドハット		 - PostgreSQL におけるインデックスの処理に関する権限を取得される脆弱性 CWE-Other
その他 		CVE-2009-4136 2010-06-7 16:48 2009-12-15 Show GitHub Exploit DB Packet Storm
256734 - - コンソナ - Consona (旧 SupportSoft) Intelligent Assistance Suite (IAS) に複数の脆弱性 - - 2010-06-4 17:58 2010-05-13 Show GitHub Exploit DB Packet Storm
256735 7.5 危険 アップル
VMware
サン・マイクロシステムズ
ヒューレット・パッカード
レッドハット		 - JDK および JRE の Java プラグインにおける古い JRE バージョンで動作可能な脆弱性 CWE-DesignError
CVE-2009-1105 2010-06-4 15:54 2009-03-24 Show GitHub Exploit DB Packet Storm
256736 10 危険 日立 - Collaboration - Common Utility におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		- 2010-06-3 15:19 2010-05-12 Show GitHub Exploit DB Packet Storm
256737 10 危険 日立
CA Technologies		 - CA ARCserve Backup および BrightStor ARCserve Backup における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		- 2010-06-3 15:19 2010-03-18 Show GitHub Exploit DB Packet Storm
256738 6.4 警告 サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - MySQL における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4028 2010-06-3 14:57 2009-11-4 Show GitHub Exploit DB Packet Storm
256739 4 警告 富士通九州システムズ - e-Pares におけるセッション固定の脆弱性 CWE-Other
その他 		CVE-2010-2149 2010-06-2 15:05 2010-06-2 Show GitHub Exploit DB Packet Storm
256740 2.6 注意 富士通九州システムズ - e-Pares におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2151 2010-06-2 15:04 2010-06-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247911 7.0 HIGH
Local 		microsoft windows_10
windows_server_2016 		The Named Pipe File System in Windows 10 version 1709 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Named Pipe File System handles objects, aka "N… NVD-CWE-noinfo
CVE-2018-0823 2024-11-21 12:39 2018-02-15 Show GitHub Exploit DB Packet Storm
247912 4.7 MEDIUM
Local 		microsoft windows_server_2012
windows_10
windows_server_2016
windows_8.1
windows_server_2008
windows_7
windows_rt_8.1 		The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Window… CWE-200
Information Exposure 		CVE-2018-0830 2024-11-21 12:39 2018-02-15 Show GitHub Exploit DB Packet Storm
247913 4.7 MEDIUM
Local 		microsoft windows_server_2012
windows_10
windows_server_2016
windows_8.1
windows_server_2008
windows_7
windows_rt_8.1 		The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Window… CWE-200
Information Exposure 		CVE-2018-0829 2024-11-21 12:39 2018-02-15 Show GitHub Exploit DB Packet Storm
247914 7.5 HIGH
Network 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_7
windows_10
windows_8.1
windows_server_2008
windows_server 		StructuredQuery in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows S… NVD-CWE-noinfo
CVE-2018-0825 2024-11-21 12:39 2018-02-15 Show GitHub Exploit DB Packet Storm
247915 7.0 HIGH
Local 		microsoft windows_10
windows_server_2016 		NTFS in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way NTFS handles objects, aka "Windo… NVD-CWE-noinfo
CVE-2018-0822 2024-11-21 12:39 2018-02-15 Show GitHub Exploit DB Packet Storm
247916 7.0 HIGH
Local 		microsoft windows_10
windows_server_2016 		AppContainer in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way constrained impersonatio… CWE-269
 Improper Privilege Management 		CVE-2018-0821 2024-11-21 12:39 2018-02-15 Show GitHub Exploit DB Packet Storm
247917 7.8 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_7
windows_10
windows_8.1
windows_server_2008 		The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Window… NVD-CWE-noinfo
CVE-2018-0820 2024-11-21 12:39 2018-02-15 Show GitHub Exploit DB Packet Storm
247918 4.4 MEDIUM
Network 		wondercms wondercms WonderCMS version 2.4.0 contains a Stored Cross-Site Scripting on File Upload through SVG vulnerability in uploadFileAction(), 'svg' => 'image/svg+xml' that can result in An attacker can execute arbi… CWE-79
Cross-site Scripting 		CVE-2018-1000062 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
247919 9.8 CRITICAL
Network 		validformbuilder validform_builder ValidFormBuilder version 4.5.4 contains a PHP Object Injection vulnerability in Valid Form unserialize method that can result in Possible to execute unauthorised system commands remotely and disclose… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-1000059 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
247920 4.3 MEDIUM
Network 		jenkins credentials_binding Jenkins Credentials Binding Plugin 1.14 and earlier masks passwords it provides to build processes in their build logs. Jenkins however transforms provided password values, e.g. replacing environment… CWE-522
 Insufficiently Protected Credentials 		CVE-2018-1000057 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm