Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258131	5.5	警告	Drupal サイバートラスト株式会社	-	Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3092	2010-10-7 16:37	2010-08-11	Show	GitHub Exploit DB Packet Storm

258132	9.3	危険	アップル	-	Apple QuickTime の IPersistPropertyBag2::Read における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1818	2010-10-6 16:57	2010-08-31	Show	GitHub Exploit DB Packet Storm

258133	9.3	危険	IBM	-	IBM Lotus Domino サーバの MailCheck821Address 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3407	2010-10-6 16:57	2010-09-16	Show	GitHub Exploit DB Packet Storm

258134	6.8	警告	マイクロソフト	-	Microsoft Outlook Web Access におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3213	2010-10-6 16:56	2010-09-7	Show	GitHub Exploit DB Packet Storm

258135	6.9	警告	マイクロソフト	-	Microsoft Windows の Win32 サブシステム内にある CSRSS における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1891	2010-10-6 16:56	2010-09-14	Show	GitHub Exploit DB Packet Storm

258136	9	危険	マイクロソフト	-	Microsoft Windows の LSASS におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0820	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

258137	9.3	危険	マイクロソフト	-	Microsoft Windows の WordPad Text Converters における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2563	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

258138	9.3	危険	マイクロソフト	-	Microsoft Windows の RPC クライアント実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2567	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

258139	6.8	警告	マイクロソフト	-	Windows 上で稼働する Microsoft Internet Information Services におけるアクセス制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-2731	2010-10-6 16:54	2010-09-14	Show	GitHub Exploit DB Packet Storm

258140	9.3	危険	マイクロソフト	-	Microsoft Internet Information Services におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2730	2010-10-5 19:00	2010-09-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247711	8.8	HIGH Network	flowpaper	pdf2json	An issue has been found in PDF2JSON 0.69. The HtmlString class in ImgOutputDev.cc has Mismatched Memory Management Routines (malloc versus operator delete).	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-14946	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

247712	7.8	HIGH Local	jpeg_encoder_project	jpeg_encoder	An issue has been found in jpeg_encoder through 2015-11-27. It is a heap-based buffer overflow in the function readFromBMP in jpeg_encoder.cpp.	CWE-787 Out-of-bounds Write	CVE-2018-14945	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

247713	7.8	HIGH Local	jpeg_encoder_project	jpeg_encoder	An issue has been found in jpeg_encoder through 2015-11-27. It is a SEGV in the function readFromBMP in jpeg_encoder.cpp. The signal is caused by an out-of-bounds write.	CWE-787 Out-of-bounds Write	CVE-2018-14944	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

247714	9.8	CRITICAL Network	harmonicinc	nsg_9000_firmware	Harmonic NSG 9000 devices have a default password of nsgadmin for the admin account, a default password of nsgguest for the guest account, and a default password of nsgconfig for the config account.	CWE-798 Use of Hard-coded Credentials	CVE-2018-14943	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

247715	8.8	HIGH Network	harmonicinc	nsg_9000_firmware	Harmonic NSG 9000 devices allow remote authenticated users to conduct directory traversal attacks, as demonstrated by "POST /PY/EMULATION_GET_FILE" or "POST /PY/EMULATION_EXPORT" with FileName=../../…	CWE-22 Path Traversal	CVE-2018-14942	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

247716	6.5	MEDIUM Network	harmonicinc	nsg_9000	Harmonic NSG 9000 devices allow remote authenticated users to read the webapp.py source code via a direct request for the /webapp.py URI.	CWE-200 Information Exposure	CVE-2018-14941	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

247717	7.5	HIGH Network	phpcms	phpcms	PHPCMS 9 allows remote attackers to cause a denial of service (resource consumption) via large font_size, height, and width parameters in an api.php?op=checkcode request.	CWE-400 Uncontrolled Resource Consumption	CVE-2018-14940	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

247718	9.8	CRITICAL Network	libreoffice	libreoffice	The get_app_path function in desktop/unx/source/start.c in LibreOffice through 6.0.5 mishandles the realpath function in certain environments such as FreeBSD libc, which might allow attackers to caus…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-14939	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

247719	9.1	CRITICAL Network	digitalcorpora canonical	tcpflow ubuntu_linux	An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, on…	CWE-125 CWE-190 Out-of-bounds Read Integer Overflow or Wraparound	CVE-2018-14938	2024-11-21 12:50	2018-08-5	Show	GitHub Exploit DB Packet Storm

247720	4.8	MEDIUM Network	mylittleforum	my_little_forum	The Add page option in my little forum 2.4.12 allows XSS via the Menu Link field.	CWE-79 Cross-site Scripting	CVE-2018-14937	2024-11-21 12:50	2018-08-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed