Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257631	7.2	危険	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-Other その他	CVE-2010-0233	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

257632	6.3	警告	マイクロソフト	-	Microsoft Windows の KDC におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0035	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

257633	7.1	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-0021	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

257634	10	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるアクセス権を取得される脆弱性	CWE-264 CWE-310	CVE-2010-0231	2010-03-3 11:54	2010-02-9	Show	GitHub Exploit DB Packet Storm

257635	7.8	危険	マイクロソフト	-	Microsoft Windows の SMB 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0022	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

257636	9	危険	マイクロソフト	-	Microsoft Windows の SMB 実装における任意のコードを実行される脆弱性	CWE-20 CWE-94	CVE-2010-0020	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

257637	6.9	警告	マイクロソフト	-	Microsoft Windows の Client/Server Run-time Subsystem における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0023	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

257638	4	警告	マイクロソフト	-	Microsoft Windows の Hyper-V サーバ実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0026	2010-03-3 11:53	2010-02-9	Show	GitHub Exploit DB Packet Storm

257639	9.3	危険	日本電気アップル富士通古河電気工業ヒューレット・パッカードインターネットイニシアティブアラクサラネットワークス日立	-	IPv6 NDP 実装における Neighbor Discovery メッセージの送信元検証処理に関する脆弱性	CWE-20 不適切な入力確認	CVE-2008-2476	2010-03-3 11:43	2008-10-3	Show	GitHub Exploit DB Packet Storm

257640	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0034	2010-03-2 11:29	2010-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
250431	7.8	HIGH Local	cisco	application_policy_infrastructure_controller_enterprise_module	A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an authenticated, local attacker to access sensitive information on an affected system. The vulnerability is due to insu…	NVD-CWE-noinfo	CVE-2018-0368	2024-11-21 12:38	2018-07-17	Show	GitHub Exploit DB Packet Storm

250432	6.1	MEDIUM Network	cisco	web_security_appliance	A vulnerability in the web-based management interface of Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack ag…	CWE-79 Cross-site Scripting	CVE-2018-0366	2024-11-21 12:38	2018-07-17	Show	GitHub Exploit DB Packet Storm

250433	9.8	CRITICAL Network	haxx canonical	curl ubuntu_linux	Curl_smtp_escape_eob in lib/smtp.c in curl 7.54.1 to and including curl 7.60.0 has a heap-based buffer overflow that might be exploitable by an attacker who can control the data that curl transmits o…	CWE-787 Out-of-bounds Write	CVE-2018-0500	2024-11-21 12:38	2018-07-11	Show	GitHub Exploit DB Packet Storm

250434	6.1	MEDIUM Network	xapian canonical	xapian-core ubuntu_linux	A cross-site scripting vulnerability in queryparser/termgenerator_internal.cc in Xapian xapian-core before 1.4.6 exists due to incomplete HTML escaping by Xapian::MSet::snippet().	CWE-79 Cross-site Scripting	CVE-2018-0499	2024-11-21 12:38	2018-07-2	Show	GitHub Exploit DB Packet Storm

250435	6.1	MEDIUM Network	5000_trillion_yen_converter_project	5000_trillion_yen_converter	Cross-site scripting vulnerability in 5000 trillion yen converter v1.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2018-0612	2024-11-21 12:38	2018-06-26	Show	GitHub Exploit DB Packet Storm

250436	7.4	HIGH Network	ana	ana	The ANA App for iOS version 4.0.22 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a cr…	CWE-295 Improper Certificate Validation	CVE-2018-0611	2024-11-21 12:38	2018-06-26	Show	GitHub Exploit DB Packet Storm

250437	7.2	HIGH Network	zenphoto	zenphoto	Local file inclusion vulnerability in Zenphoto 1.4.14 and earlier allows a remote attacker with an administrative privilege to execute arbitrary code or obtain sensitive information.	CWE-269 Improper Privilege Management	CVE-2018-0610	2024-11-21 12:38	2018-06-26	Show	GitHub Exploit DB Packet Storm

250438	7.8	HIGH Local	linecorp	line	Untrusted search path vulnerability in LINE for Windows versions before 5.8.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.	CWE-426 Untrusted Search Path	CVE-2018-0609	2024-11-21 12:38	2018-06-26	Show	GitHub Exploit DB Packet Storm

250439	9.8	CRITICAL Network	dena	h2o	Buffer overflow in H2O version 2.2.4 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (DoS) via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-0608	2024-11-21 12:38	2018-06-26	Show	GitHub Exploit DB Packet Storm

250440	7.2	HIGH Network	pixelpost	pixelpost	SQL injection vulnerability in the Pixelpost v1.7.3 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2018-0606	2024-11-21 12:38	2018-06-26	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed