Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258141 9.3 危険 マイクロソフト - Microsoft Office における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3337 2010-12-6 15:44 2010-08-23 Show GitHub Exploit DB Packet Storm
258142 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3335 2010-12-6 15:36 2010-11-9 Show GitHub Exploit DB Packet Storm
258143 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3334 2010-12-6 15:30 2010-11-9 Show GitHub Exploit DB Packet Storm
258144 4.3 警告 Zope Foundation - Zope Object Database の ZEO/StorageServer.py におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態 		CVE-2010-3495 2010-12-6 15:20 2010-10-19 Show GitHub Exploit DB Packet Storm
258145 4.3 警告 マイクロソフト - 複数の Microsoft 製品の toStaticHTML 関数 および SafeHTML 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3324 2010-12-3 14:05 2010-10-12 Show GitHub Exploit DB Packet Storm
258146 6.8 警告 アップル - Apple Mac OS X の xar におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3798 2010-12-3 13:13 2010-11-16 Show GitHub Exploit DB Packet Storm
258147 3.5 注意 アップル - Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3797 2010-12-3 13:12 2010-11-16 Show GitHub Exploit DB Packet Storm
258148 4.3 警告 アップル - Apple Mac OS X の Safari RSS における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-3796 2010-12-3 13:10 2010-11-16 Show GitHub Exploit DB Packet Storm
258149 6 警告 PostgreSQL.org
サイバートラスト株式会社
ターボリナックス
レッドハット		 - PostgreSQL の PL/perl および PL/Tcl 実装における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3433 2010-12-2 17:11 2010-10-4 Show GitHub Exploit DB Packet Storm
258150 6.8 警告 アップル
サイバートラスト株式会社
ターボリナックス
FreeType Project
オラクル
レッドハット		 - FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2808 2010-12-2 17:08 2010-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246081 7.8 HIGH
Local 		advantech webaccess WebAccess Versions 8.3.2 and prior. During installation, the application installer disables user access control and does not re-enable it after the installation is complete. This could allow an attac… CWE-284
Improper Access Control 		CVE-2018-17908 2024-11-21 12:55 2018-10-30 Show GitHub Exploit DB Packet Storm
246082 6.1 MEDIUM
Network 		geovap reliance_4 Reliance 4 SCADA/HMI, Version 4.7.3 Update 3 and prior. This vulnerability could allow an unauthorized attacker to inject arbitrary code. CWE-79
Cross-site Scripting 		CVE-2018-17904 2024-11-21 12:55 2018-10-26 Show GitHub Exploit DB Packet Storm
246083 6.9 MEDIUM
Physics 		sagaradio saga1-l8b_firmware SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that an attacker with physical access to the product may able to reprogram it. CWE-287
Improper Authentication 		CVE-2018-17923 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
246084 8.8 HIGH
Adjacent 		sagaradio saga1-l8b_firmware SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to an attack that may allow an attacker to force-pair the device without human interaction. NVD-CWE-Other
CVE-2018-17921 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
246085 9.1 CRITICAL
Network 		sagaradio saga1-l8b_firmware SAGA1-L8B with any firmware versions prior to A0.10 are vulnerable to a replay attack and command forgery. CWE-294
Authentication Bypass by Capture-replay  		CVE-2018-17903 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
246086 7.8 HIGH
Local 		citrix xenmobile_server * Lack of authentication in Citrix Xen Mobile through 10.8 allows low-privileged local users to execute system commands as root by making requests to private services listening on ports 8000, 30000 a… CWE-287
Improper Authentication 		CVE-2018-18014 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
246087 7.8 HIGH
Local 		citrix xenmobile_server * Xen Mobile through 10.8.0 includes a service listening on port 5001 within its firewall that accepts unauthenticated input. If this service is supplied with raw serialised Java objects, it deserial… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-18013 2024-11-21 12:55 2018-10-25 Show GitHub Exploit DB Packet Storm
246088 8.1 HIGH
Adjacent 		telecrane f25-2s_firmware
f25-2d_firmware
f25-4s_firmware
f25-4d_firmware
f25-6s_firmware
f25-6d_firmware
f25-8s_firmware
f25-8d_firmware
f25-10s_firmware
f25-10d_firmware
f25-60_… 		All versions of Telecrane F25 Series Radio Controls before 00.0A use fixed codes that are reproducible by sniffing and re-transmission. This can lead to unauthorized replay of a command, spoofing of … CWE-294
Authentication Bypass by Capture-replay  		CVE-2018-17935 2024-11-21 12:55 2018-10-24 Show GitHub Exploit DB Packet Storm
246089 9.8 CRITICAL
Network 		zohocorp manageengine_opmanager Zoho ManageEngine OpManager before 12.3 build 123214 allows Unrestricted Arbitrary File Upload. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-18475 2024-11-21 12:55 2018-10-24 Show GitHub Exploit DB Packet Storm
246090 7.5 HIGH
Network 		conversations conversations An issue was discovered in Daniel Gultsch Conversations 2.3.4. It is possible to spoof a custom message to an existing opened conversation by sending an intent. CWE-200
Information Exposure 		CVE-2018-18467 2024-11-21 12:55 2018-10-24 Show GitHub Exploit DB Packet Storm