Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 11, 2026, 12:01 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258201 | 5 | 警告 | オラクル | - | Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0856 | 2010-05-12 15:18 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258202 | 5 | 警告 | オラクル | - | Oracle Fusion Middleware の Oracle Internet Directory コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0872 | 2010-05-12 15:18 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258203 | 2.1 | 注意 | オラクル | - | Oracle Database の Audit コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0854 | 2010-05-12 15:18 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258204 | 3.6 | 注意 | オラクル | - | Oracle Database の Change Data Capture コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0870 | 2010-05-12 15:18 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258205 | 4 | 警告 | オラクル | - | Oracle Database の XML DB コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0851 | 2010-05-12 15:17 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258206 | 4 | 警告 | オラクル | - | Oracle Database の JavaVM コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0867 | 2010-05-12 15:17 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258207 | 5.5 | 警告 | オラクル | - | Oracle Database の XML DB コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0852 | 2010-05-12 15:17 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258208 | 6.5 | 警告 | オラクル | - | Oracle Database の JavaVM コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0866 | 2010-05-12 15:17 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258209 | 7.1 | 危険 | オラクル | - | Oracle Database の Core RDBMS コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0860 | 2010-05-12 15:16 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 258210 | 7.5 | 危険 | オラクル | - | 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0853 | 2010-05-12 15:16 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 11, 2026, 5:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 247041 | 5.4 |
MEDIUM
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile. |
CWE-79
Cross-site Scripting |
CVE-2018-15189 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247042 | 6.5 |
MEDIUM
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote attackers to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-15188 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247043 | 8.0 |
HIGH
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via edit-profile.php. |
CWE-352
Origin Validation Error |
CVE-2018-15187 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247044 | 8.8 |
HIGH
Network |
chartered_accountant_\ | _auditor_website_project | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has CSRF via client/auditor/updprofile.php. |
CWE-352
Origin Validation Error |
CVE-2018-15186 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247045 | 6.5 |
MEDIUM
Network |
naukri_clone_script_project | naukri_clone_script | PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service (page update outage) via crafted PHP and JavaScript code in the "Current Position" fi… |
CWE-20
Improper Input Validation |
CVE-2018-15185 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247046 | 5.4 |
MEDIUM
Network |
naukri_clone_script_project | naukri_clone_script | PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795. |
CWE-79
Cross-site Scripting |
CVE-2018-15184 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247047 | 6.1 |
MEDIUM
Network |
myperfectresume_\/_jobhero_\/_resume_clone_script_project | myperfectresume_\/_jobhero_\/_resume_clone_script | PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15183 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247048 | 5.4 |
MEDIUM
Network |
car_rental_script_project | car_rental_script | PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15182 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247049 | 6.5 |
MEDIUM
Network |
jio | 4g_hotspot_m2s_firmware | JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15181 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247050 | 8.1 |
HIGH
Network |
laravel | laravel | In Laravel Framework through 5.5.40 and 5.6.x through 5.6.29, remote code execution might occur as a result of an unserialize call on a potentially untrusted X-XSRF-TOKEN value. This involves the dec… |
CWE-502
Deserialization of Untrusted Data |
CVE-2018-15133 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |