Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258401 5.8 警告 ブルーコートシステムズ - Blue Coat ProxySG の HTTP Host ヘッダにおけるアクセスコントロール回避の脆弱性 CWE-16
環境設定 		CVE-2009-1211 2010-08-27 16:02 2009-03-2 Show GitHub Exploit DB Packet Storm
258402 - - ウインドリバー株式会社 - Wind River Systems VxWorks の認証 API (loginLib) における問題 - - 2010-08-26 16:57 2010-08-3 Show GitHub Exploit DB Packet Storm
258403 - - ウインドリバー株式会社 - Wind River Systems VxWorks においてデバッグサービスがデフォルトで有効になっている問題 - - 2010-08-26 16:57 2010-08-3 Show GitHub Exploit DB Packet Storm
258404 7.5 危険 サイバートラスト株式会社
レッドハット
Alexander V. Lukyanov		 - LFTP の get1 コマンドにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2251 2010-08-26 16:57 2010-07-6 Show GitHub Exploit DB Packet Storm
258405 5 警告 日立 - JP1/Integrated Manager および JP1/Integrated Management 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2010-08-26 16:56 2010-07-30 Show GitHub Exploit DB Packet Storm
258406 5 警告 日立 - JP1/PAM におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2010-08-26 16:56 2010-07-30 Show GitHub Exploit DB Packet Storm
258407 5 警告 日立 - JP1/AJS の組み込みDB利用製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2010-08-26 16:55 2010-07-30 Show GitHub Exploit DB Packet Storm
258408 5 警告 日立 - JP1/ServerConductor/Control Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2010-08-26 16:55 2010-07-30 Show GitHub Exploit DB Packet Storm
258409 7.8 危険 日立 - Cosminexus 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		- 2010-08-26 16:55 2010-07-30 Show GitHub Exploit DB Packet Storm
258410 4.3 警告 サイバートラスト株式会社
レッドハット		 - Apache Tomcat のサンプル用 calendar アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2696 2010-08-25 17:05 2010-08-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246501 6.1 MEDIUM
Network 		blogcms_project blogcms BlogCMS through 2016-10-25 has XSS via a comment. CWE-79
Cross-site Scripting 		CVE-2018-16779 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246502 4.8 MEDIUM
Network 		creatiwity witycms wityCMS 0.6.2 has XSS via the "Site Name" field found in the "Contact" "Configuration" page. CWE-79
Cross-site Scripting 		CVE-2018-16776 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246503 4.8 MEDIUM
Network 		victor_cms_project victor_cms An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the site name in the "Categories" menu. CWE-79
Cross-site Scripting 		CVE-2018-16775 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246504 7.5 HIGH
Network 		hongcms_project hongcms HongCMS 3.0.0 allows arbitrary file deletion via a ../ in the file parameter to admin/index.php/language/ajax?action=delete. CWE-22
Path Traversal 		CVE-2018-16774 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246505 4.8 MEDIUM
Network 		easycms easycms EasyCMS 1.5 allows XSS via the index.php?s=/admin/fields/update/navTabId/listfields/callbackType/closeCurrent content field. CWE-79
Cross-site Scripting 		CVE-2018-16773 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246506 4.8 MEDIUM
Network 		hoosk hoosk Hoosk v1.7.0 allows XSS via the Navigation Title of a new page entered at admin/pages/new. CWE-79
Cross-site Scripting 		CVE-2018-16772 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246507 9.8 CRITICAL
Network 		hoosk hoosk Hoosk v1.7.0 allows PHP code execution via a SiteUrl that is provided during installation and mishandled in config.php. CWE-94
Code Injection 		CVE-2018-16771 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246508 8.8 HIGH
Network 		webassembly_virtual_machine_project webassembly_virtual_machine In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service (application crash) or possibly have unspecified other impact because a certain new_al… NVD-CWE-noinfo
CVE-2018-16770 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246509 8.8 HIGH
Network 		webassembly_virtual_machine_project webassembly_virtual_machine In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service (application crash) or possibly have unspecified other impact because libRuntime.so!ll… NVD-CWE-noinfo
CVE-2018-16769 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm
246510 8.8 HIGH
Network 		webassembly_virtual_machine_project webassembly_virtual_machine In WAVM through 2018-07-26, a crafted file sent to the WebAssembly Virtual Machine may cause a denial of service (application crash) or possibly have unspecified other impact because of an unspecifie… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16768 2024-11-21 12:53 2018-09-10 Show GitHub Exploit DB Packet Storm