Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258281	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1749	2010-06-24 15:38	2010-06-10	Show	GitHub Exploit DB Packet Storm

258282	7.8	危険	日立	-	JP1/ServerConductor/Deployment Manager における不正にシャットダウンまたはリブートを実行する脆弱性	CWE-noinfo 情報不足	-	2010-06-22 17:28	2010-06-4	Show	GitHub Exploit DB Packet Storm

258283	6.8	警告	pon software	-	Explzh におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2434	2010-06-22 14:01	2010-06-22	Show	GitHub Exploit DB Packet Storm

258284	4.3	警告	アップル	-	Apple Safari の WebKit における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2010-1388	2010-06-21 16:56	2010-06-10	Show	GitHub Exploit DB Packet Storm

258285	9.3	危険	アップル	-	Apple Safari における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1750	2010-06-18 18:21	2010-06-10	Show	GitHub Exploit DB Packet Storm

258286	9.3	危険	アップル	-	Apple Safari における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1385	2010-06-18 18:20	2010-06-10	Show	GitHub Exploit DB Packet Storm

258287	9.3	危険	OpenOffice.org Project レッドハット	-	OpenOffice.org における任意の Python コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0395	2010-06-17 18:34	2010-06-10	Show	GitHub Exploit DB Packet Storm

258288	-	-	Accoria Networks	-	Accoria Rock Web Server に複数の脆弱性	-	-	2010-06-17 18:33	2010-06-3	Show	GitHub Exploit DB Packet Storm

258289	5	警告	富士通	-	Interstage Portalworks および Interstage Interaction Manager のポータル機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-06-17 18:33	2010-05-28	Show	GitHub Exploit DB Packet Storm

258290	10	危険	シスコシステムズ	-	Cisco Mediator Framework におけるパスワードおよびアカウントの詳細を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0600	2010-06-16 18:32	2010-05-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249891	5.4	MEDIUM Network	moderator_log_notes_project	moderator_log_notes	An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. The XSS is located in the mod notes textarea.	CWE-79 Cross-site Scripting	CVE-2018-11430	2024-11-21 12:43	2018-05-29	Show	GitHub Exploit DB Packet Storm

249892	9.8	CRITICAL Network	membermouse	membermouse	Blind SQL injection in coupon_code in the MemberMouse plugin 2.2.8 and prior for WordPress allows an unauthenticated attacker to dump the WordPress MySQL database via an applyCoupon action in an admi…	CWE-89 SQL Injection	CVE-2018-11309	2024-11-21 12:43	2018-05-29	Show	GitHub Exploit DB Packet Storm

249893	9.8	CRITICAL Network	gvectors	wpforo	The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter.	CWE-89 SQL Injection	CVE-2018-11515	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

249894	8.8	HIGH Network	naukri_clone_script_project	naukri_clone_script	PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in edit_resume_det.php, as demonstrated by changing .docx to .php.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-11514	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

249895	4.8	MEDIUM Network	creatiwity	witycms	Stored cross-site scripting (XSS) vulnerability in the "Website's name" field found in the "Settings" page under the "General" menu in Creatiwity wityCMS 0.6.1 allows remote attackers to inject arbit…	CWE-79 Cross-site Scripting	CVE-2018-11512	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

249896	5.5	MEDIUM Local	linux canonical	linux_kernel ubuntu_linux	The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.	CWE-200 Information Exposure	CVE-2018-11508	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

249897	6.5	MEDIUM Network	flif	flif	An issue was discovered in Free Lossless Image Format (FLIF) 0.3. An attacker can trigger a long loop in image_load_pnm in image/image-pnm.cpp.	CWE-834 Excessive Iteration	CVE-2018-11507	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

249898	7.8	HIGH Local	linux canonical debian	linux_kernel ubuntu_linux debian_linux	The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified othe…	CWE-787 Out-of-bounds Write	CVE-2018-11506	2024-11-21 12:43	2018-05-28	Show	GitHub Exploit DB Packet Storm

249899	7.5	HIGH Network	werewolf_online_project	werewolf_online	The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output.	CWE-200 Information Exposure	CVE-2018-11505	2024-11-21 12:43	2018-05-27	Show	GitHub Exploit DB Packet Storm

249900	5.5	MEDIUM Local	discount_project debian	discount debian_linux	The islist function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2htm…	CWE-125 Out-of-bounds Read	CVE-2018-11504	2024-11-21 12:43	2018-05-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed