Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258301 7.6 危険 GNOME Project
レッドハット		 - Evince の AFM フォントパーサにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2642 2011-01-26 15:30 2011-01-5 Show GitHub Exploit DB Packet Storm
258302 7.6 危険 GNOME Project
レッドハット		 - Evince の VF フォントパーサにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2641 2011-01-26 15:21 2011-01-5 Show GitHub Exploit DB Packet Storm
258303 7.6 危険 GNOME Project
レッドハット		 - Evince の PK フォントパーサにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2640 2011-01-26 15:10 2011-01-5 Show GitHub Exploit DB Packet Storm
258304 5 警告 MODX - MODx Evolution におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3930 2011-01-26 14:02 2011-01-26 Show GitHub Exploit DB Packet Storm
258305 7.5 危険 MODX - MODx Evolution における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-3929 2011-01-26 14:01 2011-01-26 Show GitHub Exploit DB Packet Storm
258306 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4042 2011-01-26 13:28 2010-10-19 Show GitHub Exploit DB Packet Storm
258307 6.8 警告 Google - Linux 上で稼働する Google Chrome のサンドボックス実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4041 2011-01-26 13:26 2010-10-19 Show GitHub Exploit DB Packet Storm
258308 9.3 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-4040 2011-01-26 13:23 2010-10-19 Show GitHub Exploit DB Packet Storm
258309 7.5 危険 Google - Linux 上で稼働する Google Chrome における脆弱性 CWE-DesignError
CWE-noinfo
CVE-2010-4039 2011-01-26 13:17 2010-10-19 Show GitHub Exploit DB Packet Storm
258310 4.3 警告 Google - Google Chrome の Web Sockets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4038 2011-01-26 13:12 2010-10-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246941 9.8 CRITICAL
Network 		dlink dir-816_a2_firmware An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction in the handler function of the /goform/Diagnosis route. This could lead… CWE-78
OS Command  		CVE-2018-17068 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246942 9.8 CRITICAL
Network 		dlink dir-816_a2_firmware An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. A very long password to /goform/formLogin could lead to a stack-based buffer overflow and overwrite the return address. CWE-787
 Out-of-bounds Write 		CVE-2018-17067 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246943 9.8 CRITICAL
Network 		dlink dir-816_a2_firmware An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction in the handler function of the /goform/form2systime.cgi route. This cou… CWE-78
OS Command  		CVE-2018-17066 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246944 9.8 CRITICAL
Network 		dlink dir-816_a2_firmware An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. Within the handler function of the /goform/DDNS route, a very long password could lead to a stack-based buffer overflow and overwrite th… CWE-787
 Out-of-bounds Write 		CVE-2018-17065 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246945 9.8 CRITICAL
Network 		dlink dir-816_a2_firmware An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/sylogapply route. This could… CWE-78
OS Command  		CVE-2018-17064 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246946 9.8 CRITICAL
Network 		dlink dir-816_a2_firmware An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in command string construction within the handler function of the /goform/NTPSyncWithHost route. This … CWE-78
OS Command  		CVE-2018-17063 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246947 6.1 MEDIUM
Network 		bullguard safe_browsing BullGuard Safe Browsing before 18.1.355.9 allows XSS on Google, Bing, and Yahoo! pages via domains indexed in search results. CWE-79
Cross-site Scripting 		CVE-2018-17061 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246948 7.5 HIGH
Network 		lg supersign_cms LG SuperSign CMS allows TVs to be rebooted remotely without authentication via a direct HTTP request to /qsr_server/device/reboot on port 9080. CWE-425
 Direct Request ('Forced Browsing') 		CVE-2018-16706 2024-11-21 12:53 2018-09-15 Show GitHub Exploit DB Packet Storm
246949 9.8 CRITICAL
Network 		tecnick
limesurvey 		tcpdf
limesurvey 		An issue was discovered in TCPDF before 6.2.22. Attackers can trigger deserialization of arbitrary data via the phar:// wrapper. CWE-502
 Deserialization of Untrusted Data 		CVE-2018-17057 2024-11-21 12:53 2018-09-15 Show GitHub Exploit DB Packet Storm
246950 6.1 MEDIUM
Network 		knet cisco_configuration_manager K-Net Cisco Configuration Manager through 2014-11-19 has XSS via devices.php. CWE-79
Cross-site Scripting 		CVE-2018-17051 2024-11-21 12:53 2018-09-14 Show GitHub Exploit DB Packet Storm