Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258221	5	警告	アップル	-	Apple Mac OS X の AFP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1828	2010-11-25 15:17	2010-11-15	Show	GitHub Exploit DB Packet Storm

258222	4.3	警告	アップル	-	Apple Mac OS X の Time Machine における重要な情報を取得される脆弱性	CWE-DesignError	CVE-2010-1803	2010-11-25 15:16	2010-11-15	Show	GitHub Exploit DB Packet Storm

258223	7.5	危険	アップル	-	Apple Mac OS X の OpenSSL における X.509 証明書の認証を回避される脆弱性	CWE-310 暗号の問題	CVE-2010-1378	2010-11-25 15:15	2010-11-12	Show	GitHub Exploit DB Packet Storm

258224	4.9	警告	アップル	-	Apple Mac OS X の hfs 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-0105	2010-11-25 15:15	2010-04-27	Show	GitHub Exploit DB Packet Storm

258225	9.3	危険	アップルアドビシステムズレッドハット	-	Adobe Flash の ActionScript の処理に脆弱性	CWE-94 コード・インジェクション	CVE-2010-0209	2010-11-25 15:14	2010-08-11	Show	GitHub Exploit DB Packet Storm

258226	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-399 CWE-noinfo	CVE-2009-3793	2010-11-25 15:13	2010-06-10	Show	GitHub Exploit DB Packet Storm

258227	6.8	警告	アップル GNU Project ターボリナックスサイバートラスト株式会社レッドハット	-	GNU gzip における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-0001	2010-11-25 15:12	2010-01-29	Show	GitHub Exploit DB Packet Storm

258228	2.6	注意	アップルサン・マイクロシステムズ Apache Software Foundation	-	Apache HTTP Server 用 mod_perl の Status.pm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0796	2010-11-25 15:12	2009-04-7	Show	GitHub Exploit DB Packet Storm

258229	6.8	警告	アップルサイバートラスト株式会社 WebDAV レッドハット	-	neon における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-2474	2010-11-25 15:11	2009-08-18	Show	GitHub Exploit DB Packet Storm

258230	4.3	警告	アップルサイバートラスト株式会社 WebDAV レッドハット	-	neon におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-2473	2010-11-25 15:11	2009-08-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246121	5.5	MEDIUM Local	xpdfreader	xpdf	The function DCTStream::readScan in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted pdf file, as demonstrated by pdftoppm.	CWE-476 NULL Pointer Dereference	CVE-2018-18457	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246122	5.5	MEDIUM Local	xpdfreader	xpdf	The function Object::isName() in Object.h (called from Gfx::opSetFillColorN) in Xpdf 4.00 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted pdf file, a…	CWE-125 Out-of-bounds Read	CVE-2018-18456	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246123	5.5	MEDIUM Local	xpdfreader	xpdf	The GfxImageColorMap class in GfxState.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.	CWE-125 Out-of-bounds Read	CVE-2018-18455	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246124	5.5	MEDIUM Local	xpdfreader	xpdf	CCITTFaxStream::readRow() in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.	CWE-125 Out-of-bounds Read	CVE-2018-18454	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246125	9.8	CRITICAL Network	pbootcms	pbootcms	apps\admin\controller\content\SingleController.php in PbootCMS before V1.3.0 build 2018-11-12 has SQL Injection, as demonstrated by the POST data to the admin.php/Single/mod/mcode/1/id/3 URI.	CWE-89 SQL Injection	CVE-2018-18450	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246126	3.3	LOW Local	linux canonical	linux_kernel ubuntu_linux	drivers/tty/n_tty.c in the Linux kernel before 4.14.11 allows local attackers (who are able to access pseudo terminals) to hang/block further usage of any pseudo terminal devices due to an EXTPROC ve…	CWE-704 Incorrect Type Conversion or Cast	CVE-2018-18386	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246127	7.8	HIGH Local	linux canonical redhat	linux_kernel ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus enterprise_linux_s…	In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min…	CWE-125 Out-of-bounds Read	CVE-2018-18445	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246128	8.8	HIGH Network	ilm	openexr	makeMultiView.cpp in exrmultiview in OpenEXR 2.3.0 has an out-of-bounds write, leading to an assertion failure or possibly unspecified other impact.	CWE-787 Out-of-bounds Write	CVE-2018-18444	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246129	4.3	MEDIUM Network	ilm	openexr	OpenEXR 2.3.0 has a memory leak in ThreadPool in IlmBase/IlmThread/IlmThreadPool.cpp, as demonstrated by exrmultiview.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-18443	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246130	5.4	MEDIUM Network	schiocco	support_board_-_chat_and_help_desk	In the Schiocco "Support Board - Chat And Help Desk" plugin 1.2.3 for WordPress, a Stored XSS vulnerability has been discovered in file upload areas in the Chat and Help Desk sections via the msg par…	CWE-79 Cross-site Scripting	CVE-2018-18373	2024-11-21 12:55	2018-10-17	Show	GitHub Exploit DB Packet Storm