Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257181	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0029	2010-03-2 11:26	2010-02-9	Show	GitHub Exploit DB Packet Storm

257182	10	危険	マイクロソフト	-	Microsoft Office の MSO.DLL におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0243	2010-03-1 11:37	2010-02-9	Show	GitHub Exploit DB Packet Storm

257183	9.3	危険	マイクロソフト	-	Microsoft DirectX の DirectShow におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0250	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

257184	7.8	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0242	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

257185	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0241	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

257186	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0240	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

257187	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0239	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

257188	9.3	危険	マイクロソフト	-	Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性	CWE-362 競合状態	CVE-2010-0017	2010-03-1 11:35	2010-02-9	Show	GitHub Exploit DB Packet Storm

257189	9.3	危険	マイクロソフト	-	Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-0016	2010-03-1 11:35	2010-02-9	Show	GitHub Exploit DB Packet Storm

257190	5	警告	日立	-	uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-02-26 11:36	2010-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248421	9.0	CRITICAL Network	runelite	runelite	runelite version <= runelite-parent-1.4.23 contains a XML External Entity (XXE) vulnerability in Man in the middle runscape services call that can result in Disclosure of confidential data, denial of…	CWE-611 XXE	CVE-2018-1000834	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248422	9.8	CRITICAL Network	zoneminder	zoneminder	ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in User-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2018-1000833	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248423	9.8	CRITICAL Network	zoneminder	zoneminder	ZoneMinder version <= 1.32.2 contains a Other/Unknown vulnerability in User-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2018-1000832	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248424	10.0	CRITICAL Network	k9mail	k-9_mail	K9Mail version <= v5.600 contains a XML External Entity (XXE) vulnerability in WebDAV response parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning. This …	CWE-611 XXE	CVE-2018-1000831	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248425	10.0	CRITICAL Network	xr3player_project	xr3player	XR3Player version <= V3.124 contains a XML External Entity (XXE) vulnerability in Playlist parser that can result in Disclosure of confidential data, denial of service, SSRF, port scanning.	CWE-611 XXE	CVE-2018-1000830	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248426	9.0	CRITICAL Network	anyplace_project	anyplace	Anyplace version before commit 80359b4 contains a XML External Entity (XXE) vulnerability in Man in the middle on map API call that can result in Disclosure of confidential data, denial of service, S…	CWE-611 XXE	CVE-2018-1000829	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248427	9.0	CRITICAL Network	frostwire	frostwire	FrostWire version <= frostwire-desktop-6.7.4-build-272 contains a XML External Entity (XXE) vulnerability in Man in the middle on update that can result in Disclosure of confidential data, denial of …	CWE-611 XXE	CVE-2018-1000828	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248428	9.8	CRITICAL Network	ubilling	ubilling	Ubilling version <= 0.9.2 contains a Other/Unknown vulnerability in user-controlled parameter that can result in Disclosure of confidential data, denial of service, SSRF, remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2018-1000827	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248429	6.1	MEDIUM Network	microweber	microweber	Microweber version <= 1.0.7 contains a Cross Site Scripting (XSS) vulnerability in Admin login form template that can result in Execution of JavaScript code.	CWE-79 Cross-site Scripting	CVE-2018-1000826	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

248430	10.0	CRITICAL Network	freecol	freecol	FreeCol version <= nightly-2018-08-22 contains a XML External Entity (XXE) vulnerability in FreeColXMLReader parser that can result in Disclosure of confidential data, denial of service, SSRF, port s…	CWE-611 XXE	CVE-2018-1000825	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm