Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258101 7.5 危険 OpenBSD
FreeBSD
オラクル
NetBSD		 - 複数の製品の ftpd におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-4247 2010-08-3 19:19 2008-09-25 Show GitHub Exploit DB Packet Storm
258102 7.5 危険 ターボリナックス
MySQL AB		 - MySQL で使用される yaSSL における複数のスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4484 2010-08-3 18:59 2009-12-30 Show GitHub Exploit DB Packet Storm
258103 2.1 注意 オラクル - Oracle Database Server の Export コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0901 2010-08-2 19:32 2010-07-13 Show GitHub Exploit DB Packet Storm
258104 2.6 注意 オラクル - Windows 上で稼働する Oracle Database Server の Network Layer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0900 2010-08-2 19:32 2010-07-13 Show GitHub Exploit DB Packet Storm
258105 4.3 警告 オラクル - Oracle Database Server の Application Express コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0892 2010-08-2 19:32 2010-07-13 Show GitHub Exploit DB Packet Storm
258106 6 警告 オラクル - Oracle Database Server の Oracle OLAP コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0902 2010-08-2 19:31 2010-07-13 Show GitHub Exploit DB Packet Storm
258107 7.8 危険 オラクル - Windows 上で稼働する Oracle Database Server の Net Foundation Layer コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0903 2010-08-2 19:31 2010-07-13 Show GitHub Exploit DB Packet Storm
258108 7.8 危険 オラクル - Oracle Database Server の Listener コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0911 2010-08-2 19:30 2010-07-13 Show GitHub Exploit DB Packet Storm
258109 5.5 警告 PostgreSQL.org
サイバートラスト株式会社
サン・マイクロシステムズ
レッドハット		 - PostgreSQL における任意のパラメータ設定を削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1975 2010-08-2 17:13 2010-05-19 Show GitHub Exploit DB Packet Storm
258110 5 警告 MySQL AB - MySQL の mysql_uninstall_plugin 関数における任意のプラグインを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1621 2010-08-2 17:13 2010-04-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247011 7.5 HIGH
Network 		mxq_project mxq_tv_box_firmware The MXQ TV Box 4.4.2 Android device with a build fingerprint of MBX/m201_N/m201_N:4.4.2/KOT49H/20160106:user/test-keys contains the Android framework with a package name of android (versionCode=19, v… CWE-20
 Improper Input Validation  		CVE-2018-14988 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247012 7.1 HIGH
Local 		mxq_project mxq_tv_box_firmware The MXQ TV Box 4.4.2 Android device with a build fingerprint of MBX/m201_N/m201_N:4.4.2/KOT49H/20160106:user/test-keys contains the Android framework with a package name of android (versionCode=19, v… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-14987 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247013 7.5 HIGH
Network 		leagoo z5c_firmware The Leagoo Z5C Android device with a build fingerprint of sp7731c_1h10_32v4_bird:6.0/MRA58K/android.20170629.214736:user/release-keys contains a pre-installed app with a package name of com.android.m… CWE-200
Information Exposure 		CVE-2018-14986 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247014 7.1 HIGH
Local 		leagoo z5c_firmware The Leagoo Z5C Android device with a build fingerprint of sp7731c_1h10_32v4_bird:6.0/MRA58K/android.20170629.214736:user/release-keys contains a pre-installed platform app with a package name of com.… NVD-CWE-noinfo
CWE-862
 Missing Authorization 		CVE-2018-14985 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247015 7.5 HIGH
Network 		leagoo z5c_firmware The Leagoo Z5C Android device with a build fingerprint of sp7731c_1h10_32v4_bird:6.0/MRA58K/android.20170629.214736:user/release-keys contains a pre-installed app with a package name of com.android.m… CWE-200
Information Exposure 		CVE-2018-14984 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247016 4.7 MEDIUM
Local 		asus zenfone_3_max_firmware The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0/NRD90M/US_Phone-14.14.1711.92-20171208:user/release-keys contains a pre-installed app with a package na… CWE-200
Information Exposure 		CVE-2018-14979 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247017 5.9 MEDIUM
Network 		f5 big-ip_access_policy_manager When APM 13.0.0-13.1.x is deployed as an OAuth Resource Server, APM becomes a client application to an external OAuth authorization server. In certain cases when communication between the BIG-IP APM … NVD-CWE-noinfo
CVE-2018-15335 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247018 4.3 MEDIUM
Network 		f5 big-ip_access_policy_manager A cross-site request forgery (CSRF) vulnerability in the APM webtop 11.2.1 or greater may allow attacker to force an APM webtop session to log out and require re-authentication. CWE-352
 Origin Validation Error 		CVE-2018-15334 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247019 5.5 MEDIUM
Local 		f5 big-ip_local_traffic_manager
big-ip_advanced_firewall_manager
big-ip_application_acceleration_manager
big-ip_analytics
big-ip_access_policy_manager
big-ip_domain_name_system
big-ip_… 		On versions 11.2.1. and greater, unrestricted Snapshot File Access allows BIG-IP system's user with any role, including Guest Role, to have access and download previously generated and available snap… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-15333 2024-11-21 12:50 2018-12-29 Show GitHub Exploit DB Packet Storm
247020 8.8 HIGH
Network 		qt
debian
opensuse 		qt
debian_linux
leap 		QXmlStream in Qt 5.x before 5.11.3 has a double-free or corruption during parsing of a specially crafted illegal XML document. CWE-415
 Double Free 		CVE-2018-15518 2024-11-21 12:50 2018-12-27 Show GitHub Exploit DB Packet Storm