Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258151 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPIX.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2870 2010-09-10 15:17 2010-08-24 Show GitHub Exploit DB Packet Storm
258152 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2869 2010-09-10 15:16 2010-08-24 Show GitHub Exploit DB Packet Storm
258153 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2868 2010-09-10 15:16 2010-08-24 Show GitHub Exploit DB Packet Storm
258154 4.3 警告 futomi - futomi's CGI Cafe 製高機能アクセス解析CGI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2366 2010-09-10 12:01 2010-09-10 Show GitHub Exploit DB Packet Storm
258155 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPIX.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2867 2010-09-9 13:35 2010-08-24 Show GitHub Exploit DB Packet Storm
258156 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI モジュールにおける整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2866 2010-09-9 13:34 2010-08-24 Show GitHub Exploit DB Packet Storm
258157 5 警告 アドビシステムズ - Adobe Shockwave Player におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-2865 2010-09-9 13:34 2010-08-24 Show GitHub Exploit DB Packet Storm
258158 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2864 2010-09-9 13:34 2010-08-24 Show GitHub Exploit DB Packet Storm
258159 10 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2863 2010-09-9 13:34 2010-08-24 Show GitHub Exploit DB Packet Storm
258160 6.4 警告 アップル - Apple Mac OS X の libsecurity における SSL サーバになりすまされる脆弱性 CWE-287
不適切な認証 		CVE-2010-1802 2010-09-8 15:52 2010-08-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247601 9.8 CRITICAL
Network 		yandex clickhouse Incorrect configuration in deb package in ClickHouse before 1.1.54131 could lead to unauthorized use of the database. CWE-285
Improper Authorization 		CVE-2018-14670 2024-11-21 12:49 2019-08-16 Show GitHub Exploit DB Packet Storm
247602 7.5 HIGH
Network 		yandex clickhouse ClickHouse MySQL client before versions 1.1.54390 had "LOAD DATA LOCAL INFILE" functionality enabled that allowed a malicious MySQL database read arbitrary files from the connected ClickHouse server. CWE-200
Information Exposure 		CVE-2018-14669 2024-11-21 12:49 2019-08-16 Show GitHub Exploit DB Packet Storm
247603 8.8 HIGH
Network 		yandex clickhouse In ClickHouse before 1.1.54388, "remote" table function allowed arbitrary symbols in "user", "password" and "default_database" fields which led to Cross Protocol Request Forgery Attacks. CWE-352
 Origin Validation Error 		CVE-2018-14668 2024-11-21 12:49 2019-08-16 Show GitHub Exploit DB Packet Storm
247604 4.9 MEDIUM
Network 		damicms damicms An arbitrary file read vulnerability in DamiCMS v6.0.0 allows remote authenticated administrators to read any files in the server via a crafted /admin.php?s=Tpl/Add/id/ URI. CWE-200
Information Exposure 		CVE-2018-14831 2024-11-21 12:49 2019-07-11 Show GitHub Exploit DB Packet Storm
247605 9.8 CRITICAL
Network 		vivotek fd8136_firmware Vivotek FD8136 devices allow remote memory corruption and remote code execution because of a stack-based buffer overflow, related to sprintf, vlocal_buff_4326, and set_getparam.cgi. NOTE: The vendor … CWE-787
 Out-of-bounds Write 		CVE-2018-14496 2024-11-21 12:49 2019-07-10 Show GitHub Exploit DB Packet Storm
247606 9.8 CRITICAL
Network 		vivotek fd8136_firmware Vivotek FD8136 devices allow Remote Command Injection, aka "another command injection vulnerability in our target device," a different issue than CVE-2018-14494. NOTE: The vendor has disputed this as… CWE-78
OS Command  		CVE-2018-14495 2024-11-21 12:49 2019-07-10 Show GitHub Exploit DB Packet Storm
247607 9.8 CRITICAL
Network 		vivotek fd8136_firmware Vivotek FD8136 devices allow Remote Command Injection, related to BusyBox and wget. NOTE: the vendor sent a clarification on 2019-09-17 explaining that, although this CVE was first populated in July … CWE-78
OS Command  		CVE-2018-14494 2024-11-21 12:49 2019-07-10 Show GitHub Exploit DB Packet Storm
247608 8.8 HIGH
Network 		libpng
oracle
netapp 		libpng
mysql_workbench
hyperion_infrastructure_technology
oncommand_api_services
active_iq_unified_manager 		An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function get_token in pnm2png.c in pnm2png. CWE-787
 Out-of-bounds Write 		CVE-2018-14550 2024-11-21 12:49 2019-07-10 Show GitHub Exploit DB Packet Storm
247609 5.9 MEDIUM
Network 		intuit lacerte Intuit Lacerte 2017 has Incorrect Access Control. CWE-284
Improper Access Control 		CVE-2018-14833 2024-11-21 12:49 2019-07-9 Show GitHub Exploit DB Packet Storm
247610 7.5 HIGH
Network 		odoo odoo The Odoo Community Association (OCA) dbfilter_from_header module makes Odoo 8.x, 9.x, 10.x, and 11.x vulnerable to ReDoS (regular expression denial of service) under certain circumstances. CWE-20
 Improper Input Validation  		CVE-2018-14733 2024-11-21 12:49 2019-07-6 Show GitHub Exploit DB Packet Storm