Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257691 6.8 警告 アップル
GNU Project
サン・マイクロシステムズ
サイバートラスト株式会社
レッドハット		 - GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4131 2010-01-18 12:21 2007-08-23 Show GitHub Exploit DB Packet Storm
257692 4.6 警告 IBM - IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4150 2010-01-15 14:10 2009-12-2 Show GitHub Exploit DB Packet Storm
257693 2.1 注意 サン・マイクロシステムズ - Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4080 2010-01-15 14:10 2009-11-24 Show GitHub Exploit DB Packet Storm
257694 5 警告 サン・マイクロシステムズ - Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4075 2010-01-15 14:09 2009-11-23 Show GitHub Exploit DB Packet Storm
257695 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
257696 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
257697 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
257698 10 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の Provider クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-2721 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
257699 5 警告 有限会社シースリー - WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0348 2010-01-12 15:01 2010-01-12 Show GitHub Exploit DB Packet Storm
257700 4.3 警告 有限会社シースリー - WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0349 2010-01-12 15:00 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246801 4.3 MEDIUM
Adjacent 		google chromecast_firmware
home_firmware 		The API service on Google Home and Chromecast devices before mid-July 2018 does not prevent DNS rebinding attacks from reading the scan_results JSON data, which allows remote attackers to determine t… CWE-200
Information Exposure 		CVE-2018-12716 2024-11-21 12:45 2018-06-25 Show GitHub Exploit DB Packet Storm
246802 9.8 CRITICAL
Network 		linux linux_kernel An issue was discovered in the Linux kernel through 4.17.2. The filter parsing in kernel/trace/trace_events_filter.c could be called with no filter, which is an N=0 case when it expected at least one… CWE-787
 Out-of-bounds Write 		CVE-2018-12714 2024-11-21 12:45 2018-06-25 Show GitHub Exploit DB Packet Storm
246803 9.8 CRITICAL
Network 		digisol dg-br4000ng_firmware DIGISOL DG-BR4000NG devices have a Buffer Overflow via a long Authorization HTTP header. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12706 2024-11-21 12:45 2018-06-25 Show GitHub Exploit DB Packet Storm
246804 6.1 MEDIUM
Network 		digisol dg-br4000ng_firmware DIGISOL DG-BR4000NG devices have XSS via the SSID (it is validated only on the client side). CWE-79
Cross-site Scripting 		CVE-2018-12705 2024-11-21 12:45 2018-06-25 Show GitHub Exploit DB Packet Storm
246805 9.1 CRITICAL
Network 		gimp gimp GIMP through 2.10.2 makes g_get_tmp_dir calls to establish temporary filenames, which may result in a filename that already exists, as demonstrated by the gimp_write_and_read_file function in app/tes… NVD-CWE-noinfo
CVE-2018-12713 2024-11-21 12:45 2018-06-25 Show GitHub Exploit DB Packet Storm
246806 9.8 CRITICAL
Network 		gnu
canonical 		binutils
ubuntu_linux 		finish_stab in stabs.c in GNU Binutils 2.30 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact, as demonstrated by an out-of-bounds w… CWE-787
 Out-of-bounds Write 		CVE-2018-12699 2024-11-21 12:45 2018-06-24 Show GitHub Exploit DB Packet Storm
246807 7.5 HIGH
Network 		gnu
canonical 		binutils
ubuntu_linux 		demangle_template in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30, allows attackers to trigger excessive memory consumption (aka OOM) during the "Create an array for saving the t… NVD-CWE-noinfo
CVE-2018-12698 2024-11-21 12:45 2018-06-24 Show GitHub Exploit DB Packet Storm
246808 7.5 HIGH
Network 		gnu
canonical 		binutils
ubuntu_linux 		A NULL pointer dereference (aka SEGV on unknown address 0x000000000000) was discovered in work_stuff_copy_to_from in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. This can occur … CWE-476
 NULL Pointer Dereference 		CVE-2018-12697 2024-11-21 12:45 2018-06-24 Show GitHub Exploit DB Packet Storm
246809 9.8 CRITICAL
Network 		insteon 2864-222_firmware The webService binary on Insteon HD IP Camera White 2864-222 devices has a Buffer Overflow via a crafted pid, pwd, or usr key in a GET request on port 34100. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12640 2024-11-21 12:45 2018-06-24 Show GitHub Exploit DB Packet Storm
246810 6.1 MEDIUM
Network 		mao10 mao10cms mao10cms 6 allows XSS via the article page. CWE-79
Cross-site Scripting 		CVE-2018-12696 2024-11-21 12:45 2018-06-24 Show GitHub Exploit DB Packet Storm