Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257371	9.3	危険	マイクロソフト	-	複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2506	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

257372	9	危険	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2509	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

257373	6.9	警告	マイクロソフト	-	Microsoft Windows の Active Directory フェデレーションサービスのシングルサインオン実装における認証情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-2508	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

257374	6.8	警告	マイクロソフト	-	Microsoft Windows の LSASS におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3675	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

257375	9.3	危険	マイクロソフト	-	Microsoft Project における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-0102	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

257376	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3673	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

257377	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer におけるメモリ破損の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3671	2010-01-22 10:26	2009-12-8	Show	GitHub Exploit DB Packet Storm

257378	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおけるネットワークリソースにアクセスされる脆弱性	CWE-255 CWE-94	CVE-2009-3677	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

257379	10	危険	マイクロソフト	-	Microsoft Windows のインターネット認証サービスにおける任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-2505	2010-01-22 10:24	2009-12-8	Show	GitHub Exploit DB Packet Storm

257380	6.9	警告	acpid	-	acpid の umask におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4235	2010-01-21 11:44	2009-12-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246511	9.8	CRITICAL Network	ntp	ntp	Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IP…	CWE-787 Out-of-bounds Write	CVE-2018-12327	2024-11-21 12:44	2018-06-20	Show	GitHub Exploit DB Packet Storm

246512	8.8	HIGH Network	webkit	webkitgtk\+	WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.2, is vulnerable to a use after free for a WebCore::TextureMapperLayer object.	CWE-416 Use After Free	CVE-2018-12294	2024-11-21 12:44	2018-06-20	Show	GitHub Exploit DB Packet Storm

246513	8.8	HIGH Network	canonical webkitgtk wpewebkit	ubuntu_linux webkitgtk\+ wpe_webkit	The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo/ImageBufferCairo.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.3 and WPE WebKit prior to versio…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2018-12293	2024-11-21 12:44	2018-06-20	Show	GitHub Exploit DB Packet Storm

246514	5.5	MEDIUM Local	liblnk_project	liblnk	The liblnk_data_block_read function in liblnk_data_block.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted lnk file…	CWE-200 CWE-125 Information Exposure Out-of-bounds Read	CVE-2018-12098	2024-11-21 12:44	2018-06-20	Show	GitHub Exploit DB Packet Storm

246515	5.5	MEDIUM Local	liblnk_project	liblnk	The liblnk_location_information_read_data function in liblnk_location_information.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-rea…	CWE-200 CWE-125 Information Exposure Out-of-bounds Read	CVE-2018-12097	2024-11-21 12:44	2018-06-20	Show	GitHub Exploit DB Packet Storm

246516	5.5	MEDIUM Local	liblnk_project	liblnk	The liblnk_data_string_get_utf8_string_size function in liblnk_data_string.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via …	CWE-125 Out-of-bounds Read	CVE-2018-12096	2024-11-21 12:44	2018-06-20	Show	GitHub Exploit DB Packet Storm

246517	6.1	MEDIUM Network	airbnb	knowledge_repo	Cross-site scripting (XSS) vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the pos…	CWE-79 Cross-site Scripting	CVE-2018-12104	2024-11-21 12:44	2018-06-18	Show	GitHub Exploit DB Packet Storm

246518	5.3	MEDIUM Adjacent	eminent-online	em4544	An issue was discovered on Eminent EM4544 9.10 devices. The device does not require the user's current password to set a new one within the web interface. Therefore, it is possible to exploit this is…	CWE-79 Cross-site Scripting	CVE-2018-12073	2024-11-21 12:44	2018-06-18	Show	GitHub Exploit DB Packet Storm

246519	9.8	CRITICAL Network	cloudmedia	popcorn_a-200_firmware	An issue was discovered in Cloud Media Popcorn A-200 03-05-130708-21-POP-411-000 firmware. It is configured to provide TELNET remote access (without a password) that pops a shell as root. If an attac…	NVD-CWE-noinfo	CVE-2018-12072	2024-11-21 12:44	2018-06-18	Show	GitHub Exploit DB Packet Storm

246520	9.8	CRITICAL Network	codeigniter	codeigniter	A Session Fixation issue exists in CodeIgniter before 3.1.9 because session.use_strict_mode in the Session Library was mishandled.	CWE-384 Session Fixation	CVE-2018-12071	2024-11-21 12:44	2018-06-18	Show	GitHub Exploit DB Packet Storm