Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256951 6 警告 オラクル - Oracle Database の Application Express Application Builder コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0076 2010-02-12 12:21 2010-01-12 Show GitHub Exploit DB Packet Storm
256952 9 危険 オラクル - Oracle Database の Oracle OLAP コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-3415 2010-02-12 12:20 2010-01-12 Show GitHub Exploit DB Packet Storm
256953 10 危険 オラクル - Oracle Database の Listener コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0071 2010-02-12 12:20 2010-01-12 Show GitHub Exploit DB Packet Storm
256954 5 警告 Pidgin
Adium
レッドハット		 - Pidgin および Adium の MSN プロトコルプラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0013 2010-02-10 13:39 2010-01-8 Show GitHub Exploit DB Packet Storm
256955 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の U3D 実装における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-3959 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
256956 10 危険 アドビシステムズ - Adobe Reader および Acrobat のダウンロードマネージャーにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-3958 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
256957 5 警告 アドビシステムズ - Adobe Reader および Acrobat におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3957 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
256958 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat におけるスクリプトインジェクションの脆弱性に関連した脆弱性 CWE-16
環境設定 		CVE-2009-3956 2010-02-10 13:39 2010-01-12 Show GitHub Exploit DB Packet Storm
256959 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3955 2010-02-10 13:38 2010-01-12 Show GitHub Exploit DB Packet Storm
256960 10 危険 アドビシステムズ
レッドハット		 - Adobe Reader および Acrobat の 3D 実装における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3954 2010-02-10 13:38 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247041 4.8 MEDIUM
Network 		weseek growi Cross-site scripting vulnerability in GROWI v.3.1.11 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via the UserGroup Management section of admin page. CWE-79
Cross-site Scripting 		CVE-2018-0652 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247042 7.4 HIGH
Network 		linecorp line_music The LINE MUSIC for Android version 3.1.0 to versions prior to 3.6.5 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive… CWE-295
Improper Certificate Validation  		CVE-2018-0650 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247043 7.8 HIGH
Local 		eset internet_security
smart_security
nod32_antivirus
deslock\+_pro
compusec
smart_security_premium 		Untrusted search path vulnerability in the installers of multiple Canon IT Solutions Inc. software programs (ESET Smart Security Premium, ESET Internet Security, ESET Smart Security, ESET NOD32 Antiv… CWE-426
 Untrusted Search Path 		CVE-2018-0649 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247044 7.8 HIGH
Local 		chatwork chatwork Untrusted search path vulnerability in installer of ChatWork Desktop App for Windows 2.3.0 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2018-0648 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247045 8.8 HIGH
Network 		asus wl-330nul_firmware Cross-site request forgery (CSRF) vulnerability in WL-330NUL Firmware version prior to 3.0.0.46 allows remote attackers to hijack the authentication of administrators via unspecified vectors. CWE-352
 Origin Validation Error 		CVE-2018-0647 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247046 9.8 CRITICAL
Network 		bit-part mtappjquery MTAppjQuery 1.8.1 and earlier allows remote PHP code execution via unspecified vectors. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-0645 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247047 6.5 MEDIUM
Network 		canonical ubuntu_linux Buffer overflow in Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-client2) 1:1.4.9+p41-u4jma1 and earlier, Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 5.0.0 (panda-client2… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-0644 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247048 6.6 MEDIUM
Adjacent 		canonical
orcamo 		ubuntu_linux
online_receipt_computer_advantage 		Ubuntu14.04 ORCA (Online Receipt Computer Advantage) 4.8.0 (panda-server) 1:1.4.9+p41-u4jma1 and earlier allows attacker with administrator rights to execute arbitrary OS commands via unspecified vec… CWE-78
OS Command  		CVE-2018-0643 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247049 6.1 MEDIUM
Network 		foliovision fv_flowplayer_video_player Cross-site scripting vulnerability in FV Flowplayer Video Player 6.1.2 to 6.6.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2018-0642 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm
247050 7.8 HIGH
Local 		yayoi-kk kaikei
aoiro_shinkoku
kyuuyo
kyuuyo_keisan
hanbai
kokyaku_kanri 		Untrusted search path vulnerability in Multiple Yayoi 17 Series products (Yayoi Kaikei 17 Series Ver.23.1.1 and earlier, Yayoi Aoiro Shinkoku 17 Ver.23.1.1 and earlier, Yayoi Kyuuyo 17 Ver.20.1.4 and… CWE-426
 Untrusted Search Path 		CVE-2018-0624 2024-11-21 12:38 2018-09-7 Show GitHub Exploit DB Packet Storm