Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257531	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer において任意のコードが実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0249	2010-02-19 14:21	2010-01-15	Show	GitHub Exploit DB Packet Storm

257532	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-0227	2010-02-19 11:37	2008-01-10	Show	GitHub Exploit DB Packet Storm

257533	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL における複数のバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0226	2010-02-19 11:32	2008-01-10	Show	GitHub Exploit DB Packet Storm

257534	7.5	危険	Linux レッドハット	-	Linux kernel の do_coredump 関数における任意のファイルを改ざんされる脆弱性	-	CVE-2006-6304	2010-02-18 14:28	2006-12-14	Show	GitHub Exploit DB Packet Storm

257535	7.8	危険	Linux レッドハット	-	Linux kernel の net/ipv4/route.c 用の特定のレッドハットパッチにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4272	2010-02-18 14:28	2010-01-19	Show	GitHub Exploit DB Packet Storm

257536	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4248	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

257537	9.3	危険	リアルネットワークス	-	Realnetworks RealPlayer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4246	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

257538	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer の smlrender.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4257	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

257539	9.3	危険	レッドハットリアルネットワークス	-	Realnetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4245	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

257540	9.3	危険	リアルネットワークス	-	Realnetworks RealPlayer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-4244	2010-02-17 11:48	2010-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247441	8.8	HIGH Network	videolan	vlc_media_player	The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC media player 3.0.1 allows remote attackers to cause a denial of service (heap corruption and application crash) or possi…	CWE-416 Use After Free	CVE-2018-11516	2024-11-21 12:43	2018-05-29	Show	GitHub Exploit DB Packet Storm

247442	5.4	MEDIUM Network	moderator_log_notes_project	moderator_log_notes	An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. The XSS is located in the mod notes textarea.	CWE-79 Cross-site Scripting	CVE-2018-11430	2024-11-21 12:43	2018-05-29	Show	GitHub Exploit DB Packet Storm

247443	9.8	CRITICAL Network	membermouse	membermouse	Blind SQL injection in coupon_code in the MemberMouse plugin 2.2.8 and prior for WordPress allows an unauthenticated attacker to dump the WordPress MySQL database via an applyCoupon action in an admi…	CWE-89 SQL Injection	CVE-2018-11309	2024-11-21 12:43	2018-05-29	Show	GitHub Exploit DB Packet Storm

247444	9.8	CRITICAL Network	gvectors	wpforo	The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter.	CWE-89 SQL Injection	CVE-2018-11515	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

247445	8.8	HIGH Network	naukri_clone_script_project	naukri_clone_script	PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in edit_resume_det.php, as demonstrated by changing .docx to .php.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-11514	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

247446	4.8	MEDIUM Network	creatiwity	witycms	Stored cross-site scripting (XSS) vulnerability in the "Website's name" field found in the "Settings" page under the "General" menu in Creatiwity wityCMS 0.6.1 allows remote attackers to inject arbit…	CWE-79 Cross-site Scripting	CVE-2018-11512	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

247447	5.5	MEDIUM Local	linux canonical	linux_kernel ubuntu_linux	The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.	CWE-200 Information Exposure	CVE-2018-11508	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

247448	6.5	MEDIUM Network	flif	flif	An issue was discovered in Free Lossless Image Format (FLIF) 0.3. An attacker can trigger a long loop in image_load_pnm in image/image-pnm.cpp.	CWE-834 Excessive Iteration	CVE-2018-11507	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

247449	7.8	HIGH Local	linux canonical debian	linux_kernel ubuntu_linux debian_linux	The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified othe…	CWE-787 Out-of-bounds Write	CVE-2018-11506	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

247450	7.5	HIGH Network	werewolf_online_project	werewolf_online	The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output.	CWE-200 Information Exposure	CVE-2018-11505	2024-11-21 12:43	2018-05-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed