Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258381	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2212	2010-07-21 16:31	2010-06-29	Show	GitHub Exploit DB Packet Storm

258382	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2211	2010-07-21 16:31	2010-06-29	Show	GitHub Exploit DB Packet Storm

258383	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2210	2010-07-21 16:31	2010-06-29	Show	GitHub Exploit DB Packet Storm

258384	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2209	2010-07-21 16:30	2010-06-29	Show	GitHub Exploit DB Packet Storm

258385	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2208	2010-07-21 16:30	2010-06-29	Show	GitHub Exploit DB Packet Storm

258386	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2207	2010-07-21 16:30	2010-06-29	Show	GitHub Exploit DB Packet Storm

258387	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat の AcroForm.api における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2010-2206	2010-07-21 16:29	2010-06-29	Show	GitHub Exploit DB Packet Storm

258388	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-94 CWE-Other	CVE-2010-2205	2010-07-21 16:29	2010-06-29	Show	GitHub Exploit DB Packet Storm

258389	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-2204	2010-07-21 16:28	2010-06-29	Show	GitHub Exploit DB Packet Storm

258390	6.8	警告	アドビシステムズレッドハット	-	UNIX 上で稼動する Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2203	2010-07-21 16:27	2010-06-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246061	6.5	MEDIUM Network	xunfeng_project	xunfeng	CSRF in the anti-csrf decorator in xunfeng 0.2.0 allows an attacker to modify the configuration via a Flash file because views/lib/AntiCSRF.py can overwrite the request.host value with the content of…	CWE-352 Origin Validation Error	CVE-2018-16832	2024-11-21 12:53	2018-09-11	Show	GitHub Exploit DB Packet Storm

246062	5.9	MEDIUM Network	smarty	smarty	Smarty before 3.1.33-dev-4 allows attackers to bypass the trusted_dir protection mechanism via a file:./../ substring in an include statement.	CWE-22 Path Traversal	CVE-2018-16831	2024-11-21 12:53	2018-09-11	Show	GitHub Exploit DB Packet Storm

246063	7.5	HIGH Network	bro	bro	In Bro through 2.5.5, there is a memory leak potentially leading to DoS in scripts/base/protocols/krb/main.bro in the Kerberos protocol parser.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-16807	2024-11-21 12:53	2018-09-11	Show	GitHub Exploit DB Packet Storm

246064	6.5	MEDIUM Adjacent	pektron	passive_keyless_entry_and_start_system_firmware	A Pektron Passive Keyless Entry and Start (PKES) system, as used on the Tesla Model S and possibly other vehicles, relies on the DST40 cipher, which makes it easier for attackers to obtain access via…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2018-16806	2024-11-21 12:53	2018-09-11	Show	GitHub Exploit DB Packet Storm

246065	4.8	MEDIUM Network	b3log	solo	In b3log Solo 2.9.3, XSS in the Input page under the Publish Articles menu, with an ID of linkAddress stored in the link JSON field, allows remote attackers to inject arbitrary Web scripts or HTML vi…	CWE-79 Cross-site Scripting	CVE-2018-16805	2024-11-21 12:53	2018-09-11	Show	GitHub Exploit DB Packet Storm

246066	9.8	CRITICAL Network	furuno	felcom_250_firmware felcom_500_firmware	FURUNO FELCOM 250 and 500 devices allow unauthenticated access to the xml/permission.xml file containing all of the system's usernames and passwords. This includes the Admin and Service user accounts…	CWE-200 Information Exposure	CVE-2018-16705	2024-11-21 12:53	2018-09-11	Show	GitHub Exploit DB Packet Storm

246067	9.8	CRITICAL Network	furuno	felcom_250_firmware felcom_500_firmware	FURUNO FELCOM 250 and 500 devices allow unauthenticated users to change the password for the Admin, Log and Service accounts, as well as the password for the protected "SMS" panel via /cgi-bin/sm_cha…	CWE-862 Missing Authorization	CVE-2018-16591	2024-11-21 12:53	2018-09-11	Show	GitHub Exploit DB Packet Storm

246068	7.8	HIGH Local	artifex debian canonical redhat	ghostscript debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus ent…	An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stack during exception handling could be used by attackers able to supply…	NVD-CWE-noinfo	CVE-2018-16802	2024-11-21 12:53	2018-09-11	Show	GitHub Exploit DB Packet Storm

246069	7.8	HIGH Local	kakaocorp	potplayer	A heap-based buffer overflow in PotPlayerMini.exe in PotPlayer 1.7.8556 allows remote attackers to execute arbitrary code via a .wav file with large BytesPerSec and SamplesPerSec values, and a small …	CWE-787 Out-of-bounds Write	CVE-2018-16797	2024-11-21 12:53	2018-09-10	Show	GitHub Exploit DB Packet Storm

246070	8.8	HIGH Network	monstra	monstra	In Monstra CMS 3.0.4, an attacker with 'Editor' privileges can change the password of the administrator via an admin/index.php?id=users&action=edit&user_id=1, Insecure Direct Object Reference (IDOR).	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2018-16608	2024-11-21 12:53	2018-09-10	Show	GitHub Exploit DB Packet Storm