Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257621	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の filter/ww8/ww8par2.cxx におけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3302	2010-03-5 10:33	2010-02-12	Show	GitHub Exploit DB Packet Storm

257622	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の filter/ww8/ww8par2.cxx における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3301	2010-03-5 10:33	2010-02-12	Show	GitHub Exploit DB Packet Storm

257623	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の GIFLZWDecompressor::GIFLZWDecompressor 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2950	2010-03-5 10:32	2010-02-12	Show	GitHub Exploit DB Packet Storm

257624	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org の XPMReader::ReadXPM 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2949	2010-03-5 10:32	2010-02-12	Show	GitHub Exploit DB Packet Storm

257625	4.3	警告	アドビシステムズ	-	Adobe BlazeDS における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-3960	2010-03-5 10:32	2010-02-11	Show	GitHub Exploit DB Packet Storm

257626	6.8	警告	Linux レッドハット	-	KVM の pit_ioport_read 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-16 環境設定	CVE-2010-0309	2010-03-4 13:41	2010-02-9	Show	GitHub Exploit DB Packet Storm

257627	4.1	警告	Linux レッドハット	-	KVM の x86 エミュレータにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0306	2010-03-4 13:41	2010-02-9	Show	GitHub Exploit DB Packet Storm

257628	5	警告	レッドハットリアルネットワークス	-	RealNetworks HelixPlayer および RealPlayer におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0417	2010-03-4 13:40	2010-02-18	Show	GitHub Exploit DB Packet Storm

257629	7.5	危険	レッドハットリアルネットワークス	-	RealNetworks HelixPlayer および RealPlayer の Unescape 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0416	2010-03-4 13:40	2010-02-18	Show	GitHub Exploit DB Packet Storm

257630	9.3	危険	マイクロソフト	-	Microsoft Windows の Microsoft Paint における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0028	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247171	5.5	MEDIUM Local	realnetworks	realone_player	RealOne Player 2.0 Build 6.0.11.872 allows remote attackers to cause a denial of service (array out-of-bounds access and application crash) via a crafted .aiff file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-13121	2024-11-21 12:46	2018-07-4	Show	GitHub Exploit DB Packet Storm

247172	9.8	CRITICAL Network	zzcms	zzcms	/user/del.php in zzcms 8.3 allows SQL injection via the tablename parameter after leveraging use of the zzcms_ask table.	CWE-89 SQL Injection	CVE-2018-13116	2024-11-21 12:46	2018-07-4	Show	GitHub Exploit DB Packet Storm

247173	7.5	HIGH Network	easy_trading_token_project	easy_trading_token	The transfer and transferFrom functions of a smart contract implementation for Easy Trading Token (ETT), an Ethereum token, have an integer overflow. NOTE: this has been disputed by a third party.	CWE-190 Integer Overflow or Wraparound	CVE-2018-13113	2024-11-21 12:46	2018-07-4	Show	GitHub Exploit DB Packet Storm

247174	7.5	HIGH Network	broadcom	tcpreplay	get_l2len in common/get.c in Tcpreplay 4.3.0 beta1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packets, as demonstrated by tcp…	CWE-125 Out-of-bounds Read	CVE-2018-13112	2024-11-21 12:46	2018-07-4	Show	GitHub Exploit DB Packet Storm

247175	4.8	MEDIUM Network	clippercms	clippercms	ClipperCMS 1.3.3 has stored XSS via the "Tools -> Configuration" screen of the manager/ URI.	CWE-79 Cross-site Scripting	CVE-2018-13106	2024-11-21 12:46	2018-07-4	Show	GitHub Exploit DB Packet Storm

247176	7.8	HIGH Local	anydesk	anydesk	AnyDesk before "12.06.2018 - 4.1.3" on Windows 7 SP1 has a DLL preloading vulnerability.	CWE-426 Untrusted Search Path	CVE-2018-13102	2024-11-21 12:46	2018-07-4	Show	GitHub Exploit DB Packet Storm

247177	9.8	CRITICAL Network	redswimmer	kiosksimple	KioskSimpleService.exe in RedSwimmer KioskSimple 1.4.7.0 suffers from a privilege escalation vulnerability in the WCF endpoint. The exposed methods allow read and write access to the Windows registry…	NVD-CWE-noinfo	CVE-2018-13101	2024-11-21 12:46	2018-07-3	Show	GitHub Exploit DB Packet Storm

247178	6.1	MEDIUM Network	trustwave	modsecurity	ModSecurity 3.0.0 has XSS via an onerror attribute of an IMG element. NOTE: a third party has disputed this issue because it may only apply to environments without a Core Rule Set configured	CWE-79 Cross-site Scripting	CVE-2018-13065	2024-11-21 12:46	2018-07-3	Show	GitHub Exploit DB Packet Storm

247179	5.5	MEDIUM Local	linux debian	linux_kernel debian_linux	An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secs_per_zone in a corrupted f2fs image, as demonstrated by a divide-by-zero error.	CWE-369 Divide By Zero	CVE-2018-13100	2024-11-21 12:46	2018-07-3	Show	GitHub Exploit DB Packet Storm

247180	5.5	MEDIUM Local	linux debian opensuse canonical	linux_kernel debian_linux leap ubuntu_linux	An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. A denial of service (out-of-bounds memory access and BUG) can occur for a modified f2fs filesystem image in which an inlin…	CWE-125 Out-of-bounds Read	CVE-2018-13099	2024-11-21 12:46	2018-07-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed