Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257091	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0054	2010-07-13 16:36	2010-03-15	Show	GitHub Exploit DB Packet Storm

257092	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0053	2010-07-13 16:35	2010-03-15	Show	GitHub Exploit DB Packet Storm

257093	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0052	2010-07-13 16:35	2010-03-15	Show	GitHub Exploit DB Packet Storm

257094	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0050	2010-07-13 16:34	2010-03-15	Show	GitHub Exploit DB Packet Storm

257095	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0049	2010-07-13 16:33	2010-03-15	Show	GitHub Exploit DB Packet Storm

257096	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0048	2010-07-13 16:33	2010-03-15	Show	GitHub Exploit DB Packet Storm

257097	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0047	2010-07-13 16:31	2010-03-15	Show	GitHub Exploit DB Packet Storm

257098	9.3	危険	アップル	-	Apple Safari の Cascading Style Sheet 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0046	2010-07-13 16:30	2010-03-15	Show	GitHub Exploit DB Packet Storm

257099	9.3	危険	アップル	-	Apple Safari の ImageIO における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0043	2010-07-13 16:30	2010-03-15	Show	GitHub Exploit DB Packet Storm

257100	4.3	警告	アップル	-	Apple Safari の ImageIO における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0041	2010-07-13 16:29	2010-03-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249671	9.8	CRITICAL Network	protonmail	protonvpn	ProtonVPN 1.3.3 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "ProtonVPN Service" service. This service establishes an NetNamedPipe endpoint that allows arbitrary i…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-10169	2024-11-21 12:40	2018-04-17	Show	GitHub Exploit DB Packet Storm

249672	7.8	HIGH Local	debian libreoffice redhat canonical	debian_linux libreoffice enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server ubuntu_linux	The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx in LibreOffice before 5.4.6.1 and 6.x before 6.0.2.1 does not validate a customizations index, which allows remote attackers to …	CWE-787 CWE-129 Out-of-bounds Write Improper Validation of Array Index	CVE-2018-10120	2024-11-21 12:40	2018-04-16	Show	GitHub Exploit DB Packet Storm

249673	7.8	HIGH Local	libreoffice debian redhat canonical	libreoffice debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server ubuntu_linux	sot/source/sdstor/stgstrms.cxx in LibreOffice before 5.4.5.1 and 6.x before 6.0.1.1 uses an incorrect integer data type in the StgSmallStrm class, which allows remote attackers to cause a denial of s…	CWE-416 Use After Free	CVE-2018-10119	2024-11-21 12:40	2018-04-16	Show	GitHub Exploit DB Packet Storm

249674	8.8	HIGH Network	h2database cognitect	h2 datomic	H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designe…	CWE-20 Improper Input Validation	CVE-2018-10054	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

249675	4.8	MEDIUM Network	iscripts	supportdesk	iScripts SupportDesk v4.3 has XSS via the admin/inteligentsearchresult.php txtinteligentsearch parameter.	CWE-79 Cross-site Scripting	CVE-2018-10052	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

249676	5.4	MEDIUM Network	iscripts	supportdesk	iScripts SupportDesk v4.3 has XSS via the staff/inteligentsearchresult.php txtinteligentsearch parameter.	CWE-79 Cross-site Scripting	CVE-2018-10051	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

249677	7.2	HIGH Network	iscripts	eswap	iScripts eSwap v2.4 has SQL injection via the "registration_settings.php" ddlFree parameter in the Admin Panel.	CWE-89 SQL Injection	CVE-2018-10050	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

249678	4.8	MEDIUM Network	iscripts	eswap	iScripts eSwap v2.4 has XSS via the "registration_settings.php" txtDate parameter in the Admin Panel.	CWE-79 Cross-site Scripting	CVE-2018-10049	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

249679	8.8	HIGH Network	iscripts	eswap	iScripts eSwap v2.4 has CSRF via "registration_settings.php" in the Admin Panel.	CWE-352 Origin Validation Error	CVE-2018-10048	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm

249680	4.8	MEDIUM Network	cmsmadesimple	cms_made_simple	CMS Made Simple (aka CMSMS) 2.2.7 has Stored XSS in admin/siteprefs.php via the metadata parameter.	CWE-79 Cross-site Scripting	CVE-2018-10033	2024-11-21 12:40	2018-04-12	Show	GitHub Exploit DB Packet Storm