Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 4, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257191 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Cabinet File Viewer Shell Extension における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0487 | 2010-05-10 19:09 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 257192 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の Authenticode Signature Verification における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0486 | 2010-05-10 19:09 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 257193 | 4.7 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | x86_64 および amd64 プラットフォーム上 Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2009-4271 | 2010-05-10 18:25 | 2010-03-16 | Show | GitHub Exploit DB Packet Storm |
| 257194 | 5 | 警告 | VMware | - | VMware Authorization Service の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2009-3707 | 2010-05-7 17:26 | 2009-10-16 | Show | GitHub Exploit DB Packet Storm |
| 257195 | 9.3 | 危険 | VMware | - | VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性 |
CWE-119
バッファエラー |
CVE-2009-1565 | 2010-05-7 17:26 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
| 257196 | 9.3 | 危険 | VMware | - | VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2009-1564 | 2010-05-7 17:25 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
| 257197 | 10 | 危険 | VMware | - | VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2009-3732 | 2010-05-7 17:25 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
| 257198 | 7.2 | 危険 | VMware | - | 複数の VMware 製品の vmrun における権限昇格の脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2010-1139 | 2010-05-7 17:25 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
| 257199 | 5 | 警告 | VMware | - | 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-1138 | 2010-05-7 17:25 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
| 257200 | 8.5 | 危険 | VMware | - | 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-1142 | 2010-05-7 17:24 | 2010-04-9 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 4, 2026, 4:17 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 248901 | 8.8 |
HIGH
Network |
h2database cognitect |
h2 datomic |
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designe… |
CWE-20
Improper Input Validation |
CVE-2018-10054 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248902 | 4.8 |
MEDIUM
Network |
iscripts | supportdesk | iScripts SupportDesk v4.3 has XSS via the admin/inteligentsearchresult.php txtinteligentsearch parameter. |
CWE-79
Cross-site Scripting |
CVE-2018-10052 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248903 | 5.4 |
MEDIUM
Network |
iscripts | supportdesk | iScripts SupportDesk v4.3 has XSS via the staff/inteligentsearchresult.php txtinteligentsearch parameter. |
CWE-79
Cross-site Scripting |
CVE-2018-10051 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248904 | 7.2 |
HIGH
Network |
iscripts | eswap | iScripts eSwap v2.4 has SQL injection via the "registration_settings.php" ddlFree parameter in the Admin Panel. |
CWE-89
SQL Injection |
CVE-2018-10050 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248905 | 4.8 |
MEDIUM
Network |
iscripts | eswap | iScripts eSwap v2.4 has XSS via the "registration_settings.php" txtDate parameter in the Admin Panel. |
CWE-79
Cross-site Scripting |
CVE-2018-10049 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248906 | 8.8 |
HIGH
Network |
iscripts | eswap | iScripts eSwap v2.4 has CSRF via "registration_settings.php" in the Admin Panel. |
CWE-352
Origin Validation Error |
CVE-2018-10048 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248907 | 4.8 |
MEDIUM
Network |
cmsmadesimple | cms_made_simple | CMS Made Simple (aka CMSMS) 2.2.7 has Stored XSS in admin/siteprefs.php via the metadata parameter. |
CWE-79
Cross-site Scripting |
CVE-2018-10033 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248908 | 4.8 |
MEDIUM
Network |
cmsmadesimple | cms_made_simple | CMS Made Simple (aka CMSMS) 2.2.7 has Reflected XSS in admin/moduleinterface.php via the m1_version parameter. |
CWE-79
Cross-site Scripting |
CVE-2018-10032 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248909 | 8.8 |
HIGH
Network |
cmsmadesimple | cms_made_simple | CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in admin/moduleinterface.php. |
CWE-352
Origin Validation Error |
CVE-2018-10031 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |
| 248910 | 8.8 |
HIGH
Network |
cmsmadesimple | cms_made_simple | CMS Made Simple (aka CMSMS) 2.2.7 has CSRF in admin/siteprefs.php. |
CWE-352
Origin Validation Error |
CVE-2018-10030 | 2024-11-21 12:40 | 2018-04-12 | Show | GitHub Exploit DB Packet Storm |