Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257251	6.9	警告	GNU Project 日本電気ターボリナックスサイバートラスト株式会社レッドハット	-	GNU Libtool の libltdl における権限昇格の脆弱性	CWE-DesignError	CVE-2009-3736	2010-12-15 15:26	2009-11-16	Show	GitHub Exploit DB Packet Storm

257252	6.4	警告	アップル日本電気 Fetchmail Project	-	fetchmail における任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-2666	2010-12-15 15:25	2009-08-6	Show	GitHub Exploit DB Packet Storm

257253	4.3	警告	アップル	-	Apple Safari の WebKit におけるロケーションバーの URL を偽装される脆弱性	CWE-Other その他	CVE-2010-3810	2010-12-15 14:42	2010-11-22	Show	GitHub Exploit DB Packet Storm

257254	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3809	2010-12-15 14:39	2010-11-22	Show	GitHub Exploit DB Packet Storm

257255	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3808	2010-12-15 14:37	2010-11-22	Show	GitHub Exploit DB Packet Storm

257256	9.3	危険	アップル	-	Apple Safari の WebKit 内にある JavaScript 実装における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-3805	2010-12-15 14:32	2010-11-22	Show	GitHub Exploit DB Packet Storm

257257	5	警告	アップル	-	Apple Safari の WebKit 内にある JavaScript 実装におけるユーザを追跡可能な脆弱性	CWE-310 暗号の問題	CVE-2010-3804	2010-12-15 14:29	2010-11-22	Show	GitHub Exploit DB Packet Storm

257258	9.3	危険	アップル	-	Apple Safari の WebKit における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-3803	2010-12-15 14:25	2010-11-22	Show	GitHub Exploit DB Packet Storm

257259	2.6	注意	マイクロソフト	-	Internet Explorer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3348	2010-12-15 14:08	2010-12-15	Show	GitHub Exploit DB Packet Storm

257260	2.6	注意	マイクロソフト	-	Internet Explorer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3342	2010-12-15 14:07	2010-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246131	7.8	HIGH Local	ftsafe	securecore	SecureCore Standard Edition Version 2.x allows an attacker to bypass the product 's authentication to log in to a Windows PC.	CWE-287 Improper Authentication	CVE-2018-16160	2024-11-21 12:52	2018-11-16	Show	GitHub Exploit DB Packet Storm

246132	7.5	HIGH Network	rack_project	rack	There is a possible DoS vulnerability in the multipart parser in Rack before 2.0.6. Specially crafted requests can cause the multipart parser to enter a pathological state, causing the parser to use …	CWE-400 Uncontrolled Resource Consumption	CVE-2018-16470	2024-11-21 12:52	2018-11-14	Show	GitHub Exploit DB Packet Storm

246133	6.1	MEDIUM Network	rack_project debian	rack debian_linux	There is a possible XSS vulnerability in Rack before 2.0.6 and 1.6.11. Carefully crafted requests can impact the data returned by the `scheme` method on `Rack::Request`. Applications that expect the …	CWE-79 Cross-site Scripting	CVE-2018-16471	2024-11-21 12:52	2018-11-14	Show	GitHub Exploit DB Packet Storm

246134	5.9	MEDIUM Network	axtls_project	axtls	In sig_verify() in x509.c in axTLS version 2.1.3 and before, the PKCS#1 v1.5 signature verification does not properly verify the ASN.1 metadata. Consequently, a remote attacker can forge signatures w…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2018-16253	2024-11-21 12:52	2018-11-8	Show	GitHub Exploit DB Packet Storm

246135	5.9	MEDIUM Network	axtls_project	axtls	In sig_verify() in x509.c in axTLS version 2.1.3 and before, the PKCS#1 v1.5 signature verification does not reject excess data after the hash value. Consequently, a remote attacker can forge signatu…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2018-16150	2024-11-21 12:52	2018-11-8	Show	GitHub Exploit DB Packet Storm

246136	5.9	MEDIUM Network	axtls_project	axtls	In sig_verify() in x509.c in axTLS version 2.1.3 and before, the PKCS#1 v1.5 signature verification blindly trusts the declared lengths in the ASN.1 structure. Consequently, when small public exponen…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2018-16149	2024-11-21 12:52	2018-11-8	Show	GitHub Exploit DB Packet Storm

246137	7.5	HIGH Network	knight_project	knight	A Path Traversal in Knightjs versions <= 0.0.1 allows an attacker to read content of arbitrary files on a remote server.	CWE-22 Path Traversal	CVE-2018-16475	2024-11-21 12:52	2018-11-7	Show	GitHub Exploit DB Packet Storm

246138	6.1	MEDIUM Network	tianma-static_project	tianma-static	A stored xss in tianma-static module versions <=1.0.4 allows an attacker to execute arbitrary javascript.	CWE-79 Cross-site Scripting	CVE-2018-16474	2024-11-21 12:52	2018-11-7	Show	GitHub Exploit DB Packet Storm

246139	5.3	MEDIUM Network	takeapeek_project	takeapeek	A path traversal in takeapeek module versions <=0.2.2 allows an attacker to list directory and files.	CWE-22 Path Traversal	CVE-2018-16473	2024-11-21 12:52	2018-11-7	Show	GitHub Exploit DB Packet Storm

246140	7.5	HIGH Network	cached-path-relative_project debian	cached-path-relative debian_linux	A prototype pollution attack in cached-path-relative versions <=1.0.1 allows an attacker to inject properties on Object.prototype which are then inherited by all the JS objects through the prototype …	CWE-20 Improper Input Validation	CVE-2018-16472	2024-11-21 12:52	2018-11-7	Show	GitHub Exploit DB Packet Storm