Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257591	3.5	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3797	2010-12-3 13:12	2010-11-16	Show	GitHub Exploit DB Packet Storm

257592	4.3	警告	アップル	-	Apple Mac OS X の Safari RSS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3796	2010-12-3 13:10	2010-11-16	Show	GitHub Exploit DB Packet Storm

257593	6	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスレッドハット	-	PostgreSQL の PL/perl および PL/Tcl 実装における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3433	2010-12-2 17:11	2010-10-4	Show	GitHub Exploit DB Packet Storm

257594	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2808	2010-12-2 17:08	2010-08-19	Show	GitHub Exploit DB Packet Storm

257595	5	警告	アップルサイバートラスト株式会社 FreeType Project ターボリナックスレッドハット	-	FreeType の Standard Encoding Accented Character の呼び出しにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-3054	2010-12-2 16:34	2010-08-19	Show	GitHub Exploit DB Packet Storm

257596	4.3	警告	アップルターボリナックス FreeType Project	-	FreeType の bdf/bdflib.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3053	2010-12-2 16:28	2010-08-19	Show	GitHub Exploit DB Packet Storm

257597	5	警告	アップル	-	Apple Mac OS X の Printing におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-3784	2010-12-1 16:14	2010-11-16	Show	GitHub Exploit DB Packet Storm

257598	6.8	警告	アップル	-	Apple Mac OS X のパスワードサーバにおけるパスワードの認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3783	2010-12-1 16:12	2010-11-16	Show	GitHub Exploit DB Packet Storm

257599	6.8	警告	アップルターボリナックス FreeType Project オラクル	-	FreeType における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-2807	2010-12-1 16:00	2010-08-19	Show	GitHub Exploit DB Packet Storm

257600	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の t42_parse_sfnts 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-2806	2010-12-1 15:58	2010-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246621	8.8	HIGH Network	netgate	pfsense	An authenticated command injection vulnerability exists in status_interfaces.php via dhcp_relinquish_lease() in pfSense before 2.4.4 due to its passing user input from the $_POST parameters "ifdescr"…	CWE-78 OS Command	CVE-2018-16055	2024-11-21 12:52	2018-09-27	Show	GitHub Exploit DB Packet Storm

246622	8.1	HIGH Network	zohocorp	manageengine_applications_manager	A serialization vulnerability in Zoho ManageEngine Applications Manager before build 13740 allows for remote code execution on Windows via a payload on an SMB share.	CWE-502 Deserialization of Untrusted Data	CVE-2018-16364	2024-11-21 12:52	2018-09-27	Show	GitHub Exploit DB Packet Storm

246623	7.5	HIGH Network	strongswan debian canonical	strongswan debian_linux ubuntu_linux	In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorit…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2018-16152	2024-11-21 12:52	2018-09-27	Show	GitHub Exploit DB Packet Storm

246624	7.5	HIGH Network	strongswan debian canonical	strongswan debian_linux ubuntu_linux	In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded al…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2018-16151	2024-11-21 12:52	2018-09-27	Show	GitHub Exploit DB Packet Storm

246625	7.5	HIGH Network	localize_my_post_project	localize_my_post	The Localize My Post plugin 1.0 for WordPress allows Directory Traversal via the ajax/include.php file parameter.	CWE-22 Path Traversal	CVE-2018-16299	2024-11-21 12:52	2018-09-25	Show	GitHub Exploit DB Packet Storm

246626	9.8	CRITICAL Network	wechat_brodcast_project	wechat_brodcast	The Wechat Broadcast plugin 1.2.0 and earlier for WordPress allows Directory Traversal via the Image.php url parameter.	CWE-22 Path Traversal	CVE-2018-16283	2024-11-21 12:52	2018-09-25	Show	GitHub Exploit DB Packet Storm

246627	9.8	CRITICAL Network	deiser	profields-project_custom_fields	The DEISER "Profields - Project Custom Fields" app before 6.0.2 for Jira has Incorrect Access Control.	NVD-CWE-noinfo	CVE-2018-16281	2024-11-21 12:52	2018-09-22	Show	GitHub Exploit DB Packet Storm

246628	8.8	HIGH Network	moxa	edr-810_firmware	A command injection vulnerability in the web server functionality of Moxa EDR-810 V4.2 build 18041013 allows remote attackers to execute arbitrary OS commands with root privilege via the caname param…	CWE-78 OS Command	CVE-2018-16282	2024-11-21 12:52	2018-09-21	Show	GitHub Exploit DB Packet Storm

246629	8.8	HIGH Network	matrix debian	synapse debian_linux	Matrix Synapse before 0.33.3.1 allows remote attackers to spoof events and possibly have unspecified other impacts by leveraging improper transaction and event signature validation.	CWE-347 Improper Verification of Cryptographic Signature	CVE-2018-16515	2024-11-21 12:52	2018-09-19	Show	GitHub Exploit DB Packet Storm

246630	6.5	MEDIUM Adjacent	qbeecam swisscom	qbee_multi-sensor_camera_firmware swisscom_home_app qbeecam	The QBee MultiSensor Camera through 4.16.4 accepts unencrypted network traffic from clients (such as the QBee Cam application through 1.0.5 for Android and the Swisscom Home application up to 10.7.2 …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2018-16225	2024-11-21 12:52	2018-09-19	Show	GitHub Exploit DB Packet Storm