Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258371	7.5	危険	オラクル	-	複数の Oracle 製品の Database Control コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2390	2010-10-29 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

258372	7.5	危険	マイクロソフト	-	Microsoft Windows Server の Microsoft Cluster Service 内にあるユーザインターフェイスにおけるディスク上のデータを読まれるまたは編集される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3223	2010-10-29 16:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

258373	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の UpdateFrameTitleForDocument メソッドにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3227	2010-10-29 16:31	2010-10-12	Show	GitHub Exploit DB Packet Storm

258374	7.1	危険	マイクロソフト	-	複数の Microsoft 製品の Secure Channel におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3229	2010-10-29 16:30	2010-10-12	Show	GitHub Exploit DB Packet Storm

258375	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の Remote Procedure Call Subsystem におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3222	2010-10-29 16:30	2010-10-12	Show	GitHub Exploit DB Packet Storm

258376	9.3	危険	マイクロソフト	-	Microsoft Windows Media Player における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2745	2010-10-29 16:27	2010-10-12	Show	GitHub Exploit DB Packet Storm

258377	4.3	警告	トランスウエア	-	Active! mail 6 における HTTP ヘッダインジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2010-3913	2010-10-29 16:01	2010-10-29	Show	GitHub Exploit DB Packet Storm

258378	6.8	警告	Schezo	-	Lhaplus における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3158	2010-10-28 16:55	2010-10-15	Show	GitHub Exploit DB Packet Storm

258379	7.6	危険	マイクロソフト	-	複数の Microsoft 製品の Comctl32.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2746	2010-10-28 16:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

258380	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3240	2010-10-28 16:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247081	5.5	MEDIUM Local	artifex	mupdf	In Artifex MuPDF 1.13.0, the pdf_get_xref_entry function in pdf/pdf-xref.c allows remote attackers to cause a denial of service (segmentation fault in fz_write_data in fitz/output.c) via a crafted pd…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-16647	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247082	6.5	MEDIUM Network	freedesktop debian canonical	poppler debian_linux ubuntu_linux	In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2018-16646	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247083	9.8	CRITICAL Network	furuno	felcom_250_firmware felcom_500_firmware	FURUNO FELCOM 250 and 500 devices use only client-side JavaScript in login.js for authentication.	CWE-287 Improper Authentication	CVE-2018-16590	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247084	6.5	MEDIUM Network	imagemagick debian canonical	imagemagick debian_linux ubuntu_linux	There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and ReadDIBImage of coders/dib.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial o…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2018-16645	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247085	6.5	MEDIUM Network	imagemagick debian canonical	imagemagick debian_linux ubuntu_linux	There is a missing check for length in the functions ReadDCMImage of coders/dcm.c and ReadPICTImage of coders/pict.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of servic…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-16644	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247086	6.5	MEDIUM Network	imagemagick debian canonical	imagemagick debian_linux ubuntu_linux	The functions ReadDCMImage in coders/dcm.c, ReadPWPImage in coders/pwp.c, ReadCALSImage in coders/cals.c, and ReadPICTImage in coders/pict.c in ImageMagick 7.0.8-4 do not check the return value of th…	CWE-252 Unchecked Return Value	CVE-2018-16643	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247087	6.5	MEDIUM Network	imagemagick debian canonical	imagemagick debian_linux ubuntu_linux	The function InsertRow in coders/cut.c in ImageMagick 7.0.7-37 allows remote attackers to cause a denial of service via a crafted image file due to an out-of-bounds write.	CWE-787 Out-of-bounds Write	CVE-2018-16642	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247088	6.5	MEDIUM Network	imagemagick	imagemagick	ImageMagick 7.0.8-6 has a memory leak vulnerability in the TIFFWritePhotoshopLayers function in coders/tiff.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-16641	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247089	6.5	MEDIUM Network	imagemagick canonical	imagemagick ubuntu_linux	ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-16640	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm

247090	5.4	MEDIUM Network	html-js	doracms	Multiple cross-site scripting (XSS) vulnerabilities in /api/content/addOne in DoraCMS v2.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) discription or (2) comments fiel…	CWE-79 Cross-site Scripting	CVE-2018-16622	2024-11-21 12:53	2018-09-7	Show	GitHub Exploit DB Packet Storm