Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257721	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257722	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249071	9.1	CRITICAL Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or upd…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-1000138	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

249072	8.8	HIGH Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a Cross site Request Forgery (CSRF) vulnerability in users.php that can result in the password of the admin being forced to be changed without the admini…	CWE-352 Origin Validation Error	CVE-2018-1000137	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

249073	8.1	HIGH Network	electronjs	electron	Electron version 1.7 up to 1.7.12; 1.8 up to 1.8.3 and 2.0.0 up to 2.0.0-beta.3 contains an improper handling of values vulnerability in Webviews that can result in remote code execution. This attack…	CWE-20 Improper Input Validation	CVE-2018-1000136	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

249074	7.5	HIGH Network	gnome canonical	networkmanager ubuntu_linux	GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure (CWE-200) vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, w…	CWE-200 Information Exposure	CVE-2018-1000135	2024-11-21 12:39	2018-03-20	Show	GitHub Exploit DB Packet Storm

249075	7.5	HIGH Network	secluded	trident	Pitchfork version 1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident Pitchfork components that can result in A standard unprivileged user could gain system administrator per…	CWE-269 Improper Privilege Management	CVE-2018-1000133	2024-11-21 12:39	2018-03-16	Show	GitHub Exploit DB Packet Storm

249076	9.8	CRITICAL Network	pingidentity	ldapsdk	UnboundID LDAP SDK version from commit 801111d8b5c732266a5dbd4b3bb0b6c7b94d7afb up to commit 8471904a02438c03965d21367890276bc25fa5a6, where the issue was reported and fixed contains an Incorrect Acc…	CWE-521 Weak Password Requirements	CVE-2018-1000134	2024-11-21 12:39	2018-03-16	Show	GitHub Exploit DB Packet Storm

249077	9.1	CRITICAL Network	debian canonical haxx redhat oracle	debian_linux ubuntu_linux curl enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_manager_ops_center peoplesoft_enterprise_peopletools co…	A buffer over-read exists in curl 7.20.0 to and including curl 7.58.0 in the RTSP+RTP handling code that allows an attacker to cause a denial of service or information leakage	CWE-125 Out-of-bounds Read	CVE-2018-1000122	2024-11-21 12:39	2018-03-15	Show	GitHub Exploit DB Packet Storm

249078	7.5	HIGH Network	debian canonical haxx redhat oracle	debian_linux ubuntu_linux curl enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_manager_ops_center peoplesoft_enterprise_peopletools co…	A NULL pointer dereference exists in curl 7.21.0 to and including curl 7.58.0 in the LDAP code that allows an attacker to cause a denial of service	CWE-476 NULL Pointer Dereference	CVE-2018-1000121	2024-11-21 12:39	2018-03-15	Show	GitHub Exploit DB Packet Storm

249079	9.8	CRITICAL Network	debian canonical haxx redhat oracle	debian_linux ubuntu_linux curl enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_manager_ops_center peoplesoft_enterprise_peopletools co…	A buffer overflow exists in curl 7.12.3 to and including curl 7.58.0 in the FTP URL handling that allows an attacker to cause a denial of service or worse.	CWE-787 Out-of-bounds Write	CVE-2018-1000120	2024-11-21 12:39	2018-03-15	Show	GitHub Exploit DB Packet Storm

249080	7.0	HIGH Local	microsoft	windows_10 windows_server_2016	Windows Storage Services in Windows 10 versions 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects a…	NVD-CWE-noinfo	CVE-2018-0983	2024-11-21 12:39	2018-03-15	Show	GitHub Exploit DB Packet Storm