Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257271 9.3 危険 アドビシステムズ - Adobe Shockwave Player の dirapi.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-4085 2010-11-17 16:50 2010-10-28 Show GitHub Exploit DB Packet Storm
257272 9.3 危険 アドビシステムズ - Adobe Shockwave Player の dirapi.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-4084 2010-11-17 16:50 2010-10-28 Show GitHub Exploit DB Packet Storm
257273 9.3 危険 アドビシステムズ - Adobe Shockwave Player の dirapi.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3655 2010-11-17 16:49 2010-10-28 Show GitHub Exploit DB Packet Storm
257274 9.3 危険 アドビシステムズ - Adobe Shockwave Player の TextXtra.x32 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2582 2010-11-17 16:49 2010-10-28 Show GitHub Exploit DB Packet Storm
257275 9.3 危険 アドビシステムズ - Adobe Shockwave Player の dirapi.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2581 2010-11-17 16:48 2010-10-28 Show GitHub Exploit DB Packet Storm
257276 9.3 危険 アドビシステムズ - Adobe Shockwave Player に脆弱性 CWE-119
バッファエラー 		CVE-2010-3653 2010-11-16 14:49 2010-10-25 Show GitHub Exploit DB Packet Storm
257277 7.5 危険 富士通 - Interstage Application Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6258 2010-11-16 14:48 2008-02-19 Show GitHub Exploit DB Packet Storm
257278 6.5 警告 アップル
サイバートラスト株式会社
MySQL AB
ターボリナックス
レッドハット		 - MySQL におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1848 2010-11-15 16:20 2010-05-5 Show GitHub Exploit DB Packet Storm
257279 5 警告 サイバートラスト株式会社
Zabbix		 - Zabbix サーバの trapper/trapper.c 内にある process_trap 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-4500 2010-11-15 15:41 2009-07-21 Show GitHub Exploit DB Packet Storm
257280 9.3 危険 サイバートラスト株式会社
Zabbix		 - Zabbix Agent の net.c 内にある NET_TCP_LISTEN 関数における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4502 2010-11-15 15:41 2009-09-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246111 6.5 MEDIUM
Network 		rubyonrails rails A bypass vulnerability in Active Storage >= 5.2.0 for Google Cloud Storage and Disk services allow an attacker to modify the `content-disposition` and `content-type` parameters which can be used in w… NVD-CWE-noinfo
CVE-2018-16477 2024-11-21 12:52 2018-12-1 Show GitHub Exploit DB Packet Storm
246112 7.5 HIGH
Network 		rubyonrails
redhat 		rails
cloudforms 		A Broken Access Control vulnerability in Active Job versions >= 4.2.0 allows an attacker to craft user input which can cause Active Job to deserialize it using GlobalId and give them access to inform… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-16476 2024-11-21 12:52 2018-12-1 Show GitHub Exploit DB Packet Storm
246113 6.5 MEDIUM
Network 		lenovo xclarity_integrator LXCI for VMware versions prior to 5.5 and LXCI for Microsoft System Center versions prior to 3.5, allow an authenticated user to write to any system file due to insufficient sanitization during the u… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-16097 2024-11-21 12:52 2018-11-30 Show GitHub Exploit DB Packet Storm
246114 6.5 MEDIUM
Network 		lenovo xclarity_integrator In versions prior to 5.5, LXCI for VMware allows an authenticated user to write to any system file due to insufficient sanitization during the upload of a backup file. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-16093 2024-11-21 12:52 2018-11-30 Show GitHub Exploit DB Packet Storm
246115 8.8 HIGH
Network 		mi miwifi_os System command injection in request_mitv in Xiaomi Mi Router 3 version 2.22.15 allows attackers to execute arbitrary system commands via the "payload" URL parameter. CWE-78
OS Command  		CVE-2018-16130 2024-11-21 12:52 2018-11-28 Show GitHub Exploit DB Packet Storm
246116 6.1 MEDIUM
Network 		lenovo system_management_module_firmware In System Management Module (SMM) versions prior to 1.06, the SMM web interface for changing Enclosure VPD fails to sufficiently sanitize all input for HTML tags, possibly opening a path for cross-si… CWE-79
Cross-site Scripting 		CVE-2018-16096 2024-11-21 12:52 2018-11-27 Show GitHub Exploit DB Packet Storm
246117 5.9 MEDIUM
Network 		lenovo system_management_module_firmware In System Management Module (SMM) versions prior to 1.06, the SMM records hashed passwords to a debug log when user authentication fails. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2018-16095 2024-11-21 12:52 2018-11-27 Show GitHub Exploit DB Packet Storm
246118 8.1 HIGH
Network 		lenovo system_management_module_firmware In System Management Module (SMM) versions prior to 1.06, an internal SMM function that retrieves configuration settings is prone to a buffer overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16094 2024-11-21 12:52 2018-11-27 Show GitHub Exploit DB Packet Storm
246119 8.1 HIGH
Network 		lenovo system_management_module_firmware In System Management Module (SMM) versions prior to 1.06, the FFDC feature includes the collection of SMM system files containing sensitive information; notably, the SMM user account credentials and … NVD-CWE-noinfo
CVE-2018-16092 2024-11-21 12:52 2018-11-27 Show GitHub Exploit DB Packet Storm
246120 8.1 HIGH
Network 		lenovo system_management_module_firmware In System Management Module (SMM) versions prior to 1.06, the SMM certificate creation and parsing logic is vulnerable to several buffer overflows. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16091 2024-11-21 12:52 2018-11-27 Show GitHub Exploit DB Packet Storm