Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257901	5	警告	The PHP Group アップルターボリナックスレッドハット	-	PHP の JSON_parser 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-1271	2010-10-19 15:16	2009-04-8	Show	GitHub Exploit DB Packet Storm

257902	7.5	危険	アップルサイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	FreeType2 における一つずれエラーの脆弱性	CWE-189 数値処理の問題	CVE-2008-1808	2010-10-19 15:15	2008-06-17	Show	GitHub Exploit DB Packet Storm

257903	7.5	危険	アップルサイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	FreeType2 におけるメモリ破壊の脆弱性	CWE-189 数値処理の問題	CVE-2008-1807	2010-10-19 15:15	2008-06-17	Show	GitHub Exploit DB Packet Storm

257904	7.5	危険	アップルサイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	FreeType2 におけるヒープベースのバッファオーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-1806	2010-10-19 15:15	2008-06-17	Show	GitHub Exploit DB Packet Storm

257905	2.6	注意	The PHP Group サイバートラスト株式会社ターボリナックスレッドハット	-	PHP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5814	2010-10-19 15:14	2008-12-19	Show	GitHub Exploit DB Packet Storm

257906	9.3	危険	Google	-	Google Chrome の Gears プラグインにおける任意のコードを実行される脆弱性	CWE-Other その他	CVE-2009-3932	2010-10-19 15:02	2009-11-5	Show	GitHub Exploit DB Packet Storm

257907	4.3	警告	Google	-	Google Chrome の src/webkit/glue/webframeloaderclient_impl.cc におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-3934	2010-10-19 15:02	2009-11-5	Show	GitHub Exploit DB Packet Storm

257908	9.3	危険	Google	-	Google Chrome のブラックリストにおける危険なファイルのダウンロードを強制される脆弱性	CWE-20 不適切な入力確認	CVE-2009-3931	2010-10-19 15:01	2009-11-5	Show	GitHub Exploit DB Packet Storm

257909	7.5	危険	Google	-	Google Chrome における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-3456	2010-10-19 15:01	2009-09-29	Show	GitHub Exploit DB Packet Storm

257910	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-7246	2010-10-19 15:01	2008-09-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246441	5.5	MEDIUM Local	nasm	netwide_assembler	Netwide Assembler (NASM) 2.14rc15 has an invalid memory write (segmentation fault) in expand_smacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file.	CWE-787 Out-of-bounds Write	CVE-2018-16999	2024-11-21 12:53	2018-09-14	Show	GitHub Exploit DB Packet Storm

246442	8.8	HIGH Network	hiscout	grc_suite	HiScout GRC Suite before 3.1.5 allows Unrestricted Upload of Files with Dangerous Types.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-16796	2024-11-21 12:53	2018-09-14	Show	GitHub Exploit DB Packet Storm

246443	7.8	HIGH Local	mgetty_project	mgetty	An issue was discovered in mgetty before 1.2.1. In fax_notify_mail() in faxrec.c, the mail_to parameter is not sanitized. It could allow a buffer overflow if long untrusted input can reach it.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-16745	2024-11-21 12:53	2018-09-14	Show	GitHub Exploit DB Packet Storm

246444	7.8	HIGH Local	mgetty_project	mgetty	An issue was discovered in mgetty before 1.2.1. In fax_notify_mail() in faxrec.c, the mail_to parameter is not sanitized. It could allow for command injection if untrusted input can reach it, because…	CWE-78 NVD-CWE-noinfo OS Command	CVE-2018-16744	2024-11-21 12:53	2018-09-14	Show	GitHub Exploit DB Packet Storm

246445	7.8	HIGH Local	mgetty_project	mgetty	An issue was discovered in mgetty before 1.2.1. In contrib/next-login/login.c, the command-line parameter username is passed unsanitized to strcpy(), which can cause a stack-based buffer overflow.	CWE-787 Out-of-bounds Write	CVE-2018-16743	2024-11-21 12:53	2018-09-14	Show	GitHub Exploit DB Packet Storm

246446	7.8	HIGH Local	mgetty_project	mgetty	An issue was discovered in mgetty before 1.2.1. In contrib/scrts.c, a stack-based buffer overflow can be triggered via a command-line parameter.	CWE-787 Out-of-bounds Write	CVE-2018-16742	2024-11-21 12:53	2018-09-14	Show	GitHub Exploit DB Packet Storm

246447	7.8	HIGH Local	mgetty_project debian	mgetty debian_linux	An issue was discovered in mgetty before 1.2.1. In fax/faxq-helper.c, the function do_activate() does not properly sanitize shell metacharacters to prevent command injection. It is possible to use th…	CWE-78 OS Command	CVE-2018-16741	2024-11-21 12:53	2018-09-14	Show	GitHub Exploit DB Packet Storm

246448	7.2	HIGH Network	squashtest	squash_tm	Squash TM through 1.18.0 presents the cleartext passwords of external services in the administration panel, as demonstrated by a ta-server-password field in the HTML source code.	CWE-522 Insufficiently Protected Credentials	CVE-2018-16987	2024-11-21 12:53	2018-09-14	Show	GitHub Exploit DB Packet Storm

246449	7.5	HIGH Network	lizard_project	lizard	In Lizard (formerly LZ5) 2.0, use of an invalid memory address was discovered in LZ5_compress_continue in lz5_compress.c, related to LZ5_compress_fastSmall and MEM_read32. The vulnerability causes a …	CWE-125 Out-of-bounds Read	CVE-2018-16985	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm

246450	9.8	CRITICAL Network	noscript torproject	noscript tor_browser	NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other products, allows attackers to bypass script blocking via the text/html;/json Content-Type value.	NVD-CWE-noinfo	CVE-2018-16983	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm