Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 2:07 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257501	9.3	危険	アップル Google レッドハット	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1780	2011-02-4 14:28	2010-07-30	Show	GitHub Exploit DB Packet Storm

257502	5.8	警告	アップルレッドハット	-	Apple Safari の WebKit における DNS 先読み設定を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3813	2011-02-4 14:26	2010-11-22	Show	GitHub Exploit DB Packet Storm

257503	9.3	危険	アップルレッドハット	-	Apple Safari の WebKit における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-3812	2011-02-4 14:25	2010-11-22	Show	GitHub Exploit DB Packet Storm

257504	7.5	危険	Objectivity	-	Objectivity/DB 管理用ツールに認証不備の問題	CWE-287 不適切な認証	CVE-2011-0489	2011-02-4 14:16	2011-01-14	Show	GitHub Exploit DB Packet Storm

257505	6.8	警告	ICQ	-	ICQ 7のアップデートに検証不備の問題	CWE-94 コード・インジェクション	CVE-2011-0487	2011-02-4 14:14	2011-01-14	Show	GitHub Exploit DB Packet Storm

257506	-	-	Google	-	Google Chrome における複数の脆弱性	-	-	2011-02-4 14:11	2011-01-14	Show	GitHub Exploit DB Packet Storm

257507	5	警告	Wireshark	-	Wireshark の ASN.1 BER 解析部におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0445	2011-02-4 14:09	2011-01-11	Show	GitHub Exploit DB Packet Storm

257508	6.9	警告	サイバートラスト株式会社 Python Software Foundation レッドハット	-	Python の PySys_SetArgv API 関数における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2008-5983	2011-02-4 13:58	2009-04-14	Show	GitHub Exploit DB Packet Storm

257509	2.6	注意	サイバートラスト株式会社 FastJar レッドハット	-	FastJar の jartool.c 内にある extract_jar 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2322	2011-02-3 14:55	2010-06-18	Show	GitHub Exploit DB Packet Storm

257510	5.8	警告	サイバートラスト株式会社 FastJar レッドハット	-	FastJar の jartool.c 内にある extract_jar 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0831	2011-02-3 14:52	2010-06-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249221	8.1	HIGH Network	debian linuxmint	debian_linux cinnamon	An issue was discovered in Cinnamon 1.9.2 through 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of (for example) other users' icon files in _on_face_browse_menuitem_…	CWE-59 Link Following	CVE-2018-13054	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249222	3.3	LOW Local	linux canonical debian	linux_kernel ubuntu_linux debian_linux	The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used.	CWE-190 Integer Overflow or Wraparound	CVE-2018-13053	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249223	9.8	CRITICAL Network	zohocorp	manageengine_applications_manager	A SQL Injection vulnerability exists in Zoho ManageEngine Applications Manager 13.x before build 13800 via the j_username parameter in a /j_security_check POST request.	CWE-89 SQL Injection	CVE-2018-13050	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249224	8.8	HIGH Network	glpi-project	glpi	The constructSQL function in inc/search.class.php in GLPI 9.2.x through 9.3.0 allows SQL Injection, as demonstrated by triggering a crafted LIMIT clause to front/computer.php.	CWE-89 SQL Injection	CVE-2018-13049	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249225	9.8	CRITICAL Network	debian canonical	devscripts ubuntu_linux	scripts/grep-excuses.pl in Debian devscripts through 2.18.3 allows code execution through unsafe YAML loading because YAML::Syck is used without a configuration that prevents unintended blessing.	CWE-94 Code Injection	CVE-2018-13043	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249226	7.5	HIGH Network	linktoken_project	linktoken	The mint function of a smart contract implementation for Link Platform (LNK), an Ethereum ERC20 token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary…	CWE-190 Integer Overflow or Wraparound	CVE-2018-13041	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249227	8.8	HIGH Network	opendesa	opensid	OpenSID 18.06-pasca has a CSRF vulnerability. This vulnerability can add an account (at the admin level) via the index.php/man_user/insert URI.	CWE-352 Origin Validation Error	CVE-2018-13040	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249228	6.1	MEDIUM Network	opendesa	opensid	OpenSID 18.06-pasca has reflected Cross Site Scripting (XSS) via the cari parameter, aka an index.php/first?cari= URI.	CWE-79 Cross-site Scripting	CVE-2018-13039	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249229	9.8	CRITICAL Network	opendesa	opensid	OpenSID 18.06-pasca has an Unrestricted File Upload vulnerability via an Attachment Document in the article feature. This vulnerability leads to uploading arbitrary PHP code via a .php filename with …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-13038	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

249230	7.8	HIGH Local	jpeg-compressor_project	jpeg_compressor	An issue was discovered in jpeg-compressor 0.1. The bmp_load function in stb_image.c allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibl…	CWE-787 Out-of-bounds Write	CVE-2018-13037	2024-11-21 12:46	2018-07-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed