Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257121 4.1 警告 Linux
レッドハット		 - Linux kernel の smbfs に関する脆弱性 - CVE-2006-5871 2010-03-15 16:40 2005-10-5 Show GitHub Exploit DB Packet Storm
257122 7.8 危険 Linux
レッドハット		 - Linux kernel の selinux_parse_skb_ipv6 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2005-4886 2010-03-15 16:40 2005-10-5 Show GitHub Exploit DB Packet Storm
257123 5 警告 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2003-1589 2010-03-15 16:39 2003-12-2 Show GitHub Exploit DB Packet Storm
257124 5 警告 サン・マイクロシステムズ - Sun ONE/iPlanet Web Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2003-1590 2010-03-15 16:39 2003-08-13 Show GitHub Exploit DB Packet Storm
257125 7.1 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の handle_dr 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3722 2010-03-15 15:23 2009-10-30 Show GitHub Exploit DB Packet Storm
257126 4.3 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Switched Rack PDU におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4406 2010-03-12 15:13 2009-12-23 Show GitHub Exploit DB Packet Storm
257127 4.3 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Network Management Card におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-1798 2010-03-12 15:13 2009-12-28 Show GitHub Exploit DB Packet Storm
257128 6.8 警告 シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン) - APC Network Management Card におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-1797 2010-03-12 15:12 2009-12-28 Show GitHub Exploit DB Packet Storm
257129 6.6 警告 日立 - JP1/Cm2/Network Node Manager のリモートコンソールにおけるファイルパーミッションの脆弱性 CWE-264
認可・権限・アクセス制御 		- 2010-03-12 15:12 2010-02-26 Show GitHub Exploit DB Packet Storm
257130 9.3 危険 Panda Security - Panda Security ActiveScan におけるコンポーネントのデジタル署名を検証しない問題 CWE-94
コード・インジェクション 		CVE-2009-3735 2010-03-12 15:12 2010-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247741 9.8 CRITICAL
Network 		megamek megamek MegaMek version < v0.45.1 contains a Other/Unknown vulnerability in Object Stream Connection that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution. CWE-502
 Deserialization of Untrusted Data 		CVE-2018-1000824 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247742 10.0 CRITICAL
Network 		exist-db exist exist version <= 5.0.0-RC4 contains a XML External Entity (XXE) vulnerability in XML Parser for REST Server that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. CWE-611
XXE 		CVE-2018-1000823 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247743 10.0 CRITICAL
Network 		codelibs fess codelibs fess version before commit faa265b contains a XML External Entity (XXE) vulnerability in GSA XML file parser that can result in Disclosure of confidential data, denial of service, SSRF, port… CWE-611
XXE 		CVE-2018-1000822 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247744 10.0 CRITICAL
Network 		micromathematics_project micromathematics MicroMathematics version before commit 5c05ac8 contains a XML External Entity (XXE) vulnerability in SMathStudio files that can result in Disclosure of confidential data, denial of service, SSRF, por… CWE-611
XXE 		CVE-2018-1000821 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247745 10.0 CRITICAL
Network 		neo4j awesome_procedures_on_cyper neo4j-contrib neo4j-apoc-procedures version before commit 45bc09c contains a XML External Entity (XXE) vulnerability in XML Parser that can result in Disclosure of confidential data, denial of servic… CWE-611
XXE 		CVE-2018-1000820 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247746 5.4 MEDIUM
Network 		grafana grafana Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser… CWE-79
Cross-site Scripting 		CVE-2018-1000816 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247747 4.3 MEDIUM
Network 		brave brave Brave Software Inc. Brave version version 0.22.810 to 0.24.0 contains a Other/Unknown vulnerability in function ContentSettingsObserver::AllowScript() in content_settings_observer.cc that can result … CWE-20
 Improper Input Validation  		CVE-2018-1000815 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247748 7.5 HIGH
Network 		asset_pipeline_project asset-pipeline Asset Pipeline Grails Plugin Asset-pipeline plugin version Prior to 2.14.1.1, 2.15.1 and 3.0.6 contains a Incorrect Access Control vulnerability in Applications deployed in Jetty that can result in D… CWE-22
Path Traversal 		CVE-2018-1000817 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247749 6.5 MEDIUM
Network 		aiohttp-session_project aiohttp-session aio-libs aiohttp-session version 2.6.0 and earlier contains a Other/Unknown vulnerability in EncryptedCookieStorage and NaClCookieStorage that can result in Non-expiring sessions / Infinite lifespan.… CWE-613
 Insufficient Session Expiration 		CVE-2018-1000814 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm
247750 4.8 MEDIUM
Network 		backdropcms backdrop_cms Backdrop CMS version 1.11.0 and earlier contains a Cross Site Scripting (XSS) vulnerability in Sanitization of custom class names used on blocks and layouts. that can result in Execution of JavaScrip… CWE-79
Cross-site Scripting 		CVE-2018-1000813 2024-11-21 12:40 2018-12-21 Show GitHub Exploit DB Packet Storm