Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 5, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 257651 | 10 | 危険 | マイクロソフト | - | Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0239 | 2010-03-1 11:36 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 257652 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の SMB クライアント実装における権限昇格の脆弱性 |
CWE-362
競合状態 |
CVE-2010-0017 | 2010-03-1 11:35 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 257653 | 9.3 | 危険 | マイクロソフト | - | Microsoft Windows の SMB クライアント実装における任意のコードを実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-0016 | 2010-03-1 11:35 | 2010-02-9 | Show | GitHub Exploit DB Packet Storm |
| 257654 | 5 | 警告 | 日立 | - | uCosminexus Portal Framework におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
- | 2010-02-26 11:36 | 2010-01-29 | Show | GitHub Exploit DB Packet Storm |
| 257655 | 2.6 | 注意 | tDiary開発プロジェクト | - | tDiary 付属のプラグイン tb-send.rb におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0726 | 2010-02-25 15:03 | 2010-02-25 | Show | GitHub Exploit DB Packet Storm |
| 257656 | 4.3 | 警告 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server における HTTP リクエストを非表示にされる脆弱性 |
CWE-Other
その他 |
CVE-2003-1578 | 2010-02-25 12:36 | 2003-11-14 | Show | GitHub Exploit DB Packet Storm |
| 257657 | 2.6 | 注意 | サン・マイクロシステムズ | - | Sun ONE/iPlanet Web Server におけるログファイルに任意のテキストを挿入される脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2003-1577 | 2010-02-25 12:36 | 2003-11-14 | Show | GitHub Exploit DB Packet Storm |
| 257658 | 5 | 警告 | IBM | - | IBM WebSphere Application Server の Single Sign-on 機能における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0563 | 2010-02-25 12:35 | 2010-02-5 | Show | GitHub Exploit DB Packet Storm |
| 257659 | 5 | 警告 | アップル | - | Apple Safari の WebKit における任意の Web サイトにリクエストされる脆弱性 |
CWE-Other
その他 |
CVE-2009-2841 | 2010-02-25 12:33 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
| 257660 | 10 | 危険 | アップル | - | Apple Safari の WebKit における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2009-3384 | 2010-02-25 12:33 | 2009-11-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 5, 2026, 4:11 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246691 | 9.8 |
CRITICAL
Network |
lantronix | mss_firmware | Baseon Lantronix MSS devices do not require a password for TELNET access. |
CWE-521
Weak Password Requirements |
CVE-2018-12925 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246692 | 9.8 |
CRITICAL
Network |
eztcp |
cie-h10_firmware cie-h12_firmware cie-h14_firmware cse-m53n_firmware cse-m32_firmware cse-m24_firmware cse-m73_firmware cse-b63n2_firmware |
Sollae Serial-Ethernet-Module and Remote-I/O-Device-Server devices have a default password of sollae for the TELNET service. |
CWE-798
Use of Hard-coded Credentials |
CVE-2018-12924 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246693 | 7.5 |
HIGH
Network |
bwssystems | ha_bridge | BWS Systems HA-Bridge devices allow remote attackers to obtain potentially sensitive information via a direct request for the #!/system URI. |
CWE-200
Information Exposure |
CVE-2018-12923 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246694 | 7.5 |
HIGH
Network |
vertiv | liebert_intellislot_firmware | Emerson Liebert IntelliSlot Web Card devices allow remote attackers to reconfigure access control via the config/configUser.htm or config/configTelnet.htm URI. |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2018-12922 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246695 | 7.5 |
HIGH
Network |
electroind | gaugetech_nexus_firmware | Electro Industries GaugeTech Nexus devices allow remote attackers to obtain potentially sensitive information via a direct request for the meter_information.htm, diag_system.htm, or diag_dnp_lan_wan.… |
CWE-200
Information Exposure |
CVE-2018-12921 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246696 | 7.5 |
HIGH
Network |
flir | brickstream_2300_firmware | Brickstream 2300 devices allow remote attackers to obtain potentially sensitive information via a direct request for the basic.html#ipsettings or basic.html#datadelivery URI. |
CWE-200
Information Exposure |
CVE-2018-12920 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246697 | 6.1 |
MEDIUM
Network |
craftedweb_project | craftedweb | In CraftedWeb through 2013-09-24, aasp_includes/pages/notice.php allows XSS via the e parameter. |
CWE-79
Cross-site Scripting |
CVE-2018-12919 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246698 | 9.8 |
CRITICAL
Network |
pbc_project | pbc | In libpbc.a in PBC through 2017-03-02, there is a Segmentation fault in _pbcB_register_fields in bootstrap.c. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-12918 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246699 | 9.8 |
CRITICAL
Network |
pbc_project | pbc | In libpbc.a in PBC through 2017-03-02, there is a heap-based buffer over-read in _pbcM_ip_new in map.c. |
CWE-125
Out-of-bounds Read |
CVE-2018-12917 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |
| 246700 | 9.8 |
CRITICAL
Network |
pbc_project | pbc | In libpbc.a in PBC through 2017-03-02, there is a Segmentation fault in _pbcP_message_default in proto.c. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-12916 | 2024-11-21 12:46 | 2018-06-28 | Show | GitHub Exploit DB Packet Storm |