Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257601	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3216	2010-10-26 15:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

257602	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-3215	2010-10-26 15:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

257603	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2750	2010-10-26 15:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

257604	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2748	2010-10-26 15:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

257605	9.3	危険	マイクロソフト	-	Microsoft Word および Microsoft Office における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2747	2010-10-26 15:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

257606	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2741	2010-10-26 15:31	2010-10-12	Show	GitHub Exploit DB Packet Storm

257607	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の OpenType Font フォーマットドライバにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2740	2010-10-26 15:29	2010-10-12	Show	GitHub Exploit DB Packet Storm

257608	7.2	危険	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2744	2010-10-26 15:28	2010-10-12	Show	GitHub Exploit DB Packet Storm

257609	4.9	警告	マイクロソフト	-	複数の Microsoft 製品のカーネルモードドライバにおける権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2549	2010-10-26 15:28	2010-10-12	Show	GitHub Exploit DB Packet Storm

257610	6.5	警告	IBM	-	Linux 上で稼働する IBM DB2 におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0462	2010-10-26 15:24	2010-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246161	5.3	MEDIUM Network	open_source_real-estate_script_project	open_source_real-estate_script	PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote attackers to list the wp-content/themes/template_dp_dec2015/img directory.	CWE-22 Path Traversal	CVE-2018-16457	2024-11-21 12:52	2018-10-5	Show	GitHub Exploit DB Packet Storm

246162	6.1	MEDIUM Network	phpscriptsmall	website_seller_script	PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a keyword. NOTE: This may overlap with CVE-2018-6870 which has XSS via the Listings Search feature.	CWE-79 Cross-site Scripting	CVE-2018-16456	2024-11-21 12:52	2018-10-5	Show	GitHub Exploit DB Packet Storm

246163	6.1	MEDIUM Network	marketplace_script_project	marketplace_script	PHP Scripts Mall Market Place Script 1.0.1 allows XSS via a keyword.	CWE-79 Cross-site Scripting	CVE-2018-16455	2024-11-21 12:52	2018-10-5	Show	GitHub Exploit DB Packet Storm

246164	6.1	MEDIUM Network	domain_lookup_script_project	domain_lookup_script	PHP Scripts Mall Domain Lookup Script 3.0.5 allows XSS in the search bar.	CWE-79 Cross-site Scripting	CVE-2018-16453	2024-11-21 12:52	2018-10-5	Show	GitHub Exploit DB Packet Storm

246165	6.1	MEDIUM Network	phpscriptsmall	olx_clone	PHP Scripts Mall Olx Clone 3.4.2 has XSS.	CWE-79 Cross-site Scripting	CVE-2018-16326	2024-11-21 12:52	2018-10-5	Show	GitHub Exploit DB Packet Storm

246166	6.5	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Orphaned Upload Files Exposure.	CWE-200 Information Exposure	CVE-2018-16051	2024-11-21 12:52	2018-10-4	Show	GitHub Exploit DB Packet Storm

246167	6.1	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.5 and 11.2.x before 11.2.2. There is Persistent XSS in the Merge Request Changes View.	CWE-79 Cross-site Scripting	CVE-2018-16050	2024-11-21 12:52	2018-10-4	Show	GitHub Exploit DB Packet Storm

246168	9.8	CRITICAL Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Sensitive Data Disclosure in Sidekiq Logs through an Error M…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2018-16049	2024-11-21 12:52	2018-10-4	Show	GitHub Exploit DB Packet Storm

246169	4.3	MEDIUM Network	otrs debian	open_ticket_request_system debian_linux	In Open Ticket Request System (OTRS) 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a logged in user opens it, the e…	NVD-CWE-noinfo	CVE-2018-16586	2024-11-21 12:52	2018-09-28	Show	GitHub Exploit DB Packet Storm

246170	5.4	MEDIUM Network	xwiki	xwiki	The Image Import function in XWiki through 10.7 has XSS.	CWE-79 Cross-site Scripting	CVE-2018-16277	2024-11-21 12:52	2018-09-28	Show	GitHub Exploit DB Packet Storm