Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258421	2.6	注意	アップル	-	Apple Safari の AutoFill 機能におけるアドレスブックカードの情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1796	2010-08-20 18:24	2010-07-30	Show	GitHub Exploit DB Packet Storm

258422	4.3	警告	アップル	-	Apple Safari におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1778	2010-08-20 18:24	2010-07-30	Show	GitHub Exploit DB Packet Storm

258423	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

258424	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

258425	5	警告	金子勇	-	Winny におけるノード情報の処理に関する脆弱性	CWE-Other その他	CVE-2010-2362	2010-08-20 12:01	2010-08-20	Show	GitHub Exploit DB Packet Storm

258426	5	警告	金子勇	-	Winny における BBS 情報の処理に関する脆弱性	CWE-Other その他	CVE-2010-2361	2010-08-20 12:01	2010-08-20	Show	GitHub Exploit DB Packet Storm

258427	10	危険	シマンテック IBM	-	Autonomy KeyView Filter SDK の kvolefio.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3032	2010-08-19 18:22	2010-03-5	Show	GitHub Exploit DB Packet Storm

258428	5	警告	The PHP Group	-	PHP の phar 拡張における重要な情報を取得される脆弱性	CWE-134 書式文字列の問題	CVE-2010-2094	2010-08-18 18:26	2010-05-14	Show	GitHub Exploit DB Packet Storm

258429	7.5	危険	The PHP Group	-	PHP の sqlite_single_query および sqlite_array_query 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1868	2010-08-18 18:26	2010-05-7	Show	GitHub Exploit DB Packet Storm

258430	7.5	危険	The PHP Group	-	PHP の dechunk フィルタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-1866	2010-08-18 18:26	2010-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249451	9.8	CRITICAL Network	microsoft	forefront_unified_access_gateway	uniquesig0/InternalSite/InitParams.aspx in Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of UR…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-12571	2024-11-21 12:45	2018-07-6	Show	GitHub Exploit DB Packet Storm

249452	8.1	HIGH Network	ntop	ntopng	An issue was discovered in ntopng 3.4 before 3.4.180617. The PRNG involved in the generation of session IDs is not seeded at program startup. This results in deterministic session IDs being allocated…	CWE-335 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)	CVE-2018-12520	2024-11-21 12:45	2018-07-6	Show	GitHub Exploit DB Packet Storm

249453	6.8	MEDIUM Network	onosproject	onos	Time-of-check to time-of-use (TOCTOU) race condition in org.onosproject.acl (aka the access control application) in ONOS v1.13 and earlier allows attackers to bypass network access control via data p…	CWE-362 Race Condition	CVE-2018-12691	2024-11-21 12:45	2018-07-6	Show	GitHub Exploit DB Packet Storm

249454	9.8	CRITICAL Network	3cx	live_chat	The WP Live Chat Support Pro plugin before 8.0.07 for WordPress is vulnerable to unauthenticated Remote Code Execution due to client-side validation of allowed file types, as demonstrated by a v1/rem…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-12426	2024-11-21 12:45	2018-07-3	Show	GitHub Exploit DB Packet Storm

249455	8.8	HIGH Network	tp-link	tl-wr841n_firmware	The Ping and Traceroute features on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices allow authenticated blind Command Injection.	CWE-78 OS Command	CVE-2018-12577	2024-11-21 12:45	2018-07-3	Show	GitHub Exploit DB Packet Storm

249456	4.3	MEDIUM Network	tp-link	tl-wr841n_firmware	TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices allow clickjacking.	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2018-12576	2024-11-21 12:45	2018-07-3	Show	GitHub Exploit DB Packet Storm

249457	9.8	CRITICAL Network	tp-link	tl-wr841n_firmware	On TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 171019 Rel.55346n devices, all actions in the web interface are affected by bypass of authentication via an HTTP request.	CWE-287 Improper Authentication	CVE-2018-12575	2024-11-21 12:45	2018-07-3	Show	GitHub Exploit DB Packet Storm

249458	8.8	HIGH Network	tp-link	tl-wr841n_firmware	CSRF exists for all actions in the web interface on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices.	CWE-352 Origin Validation Error	CVE-2018-12574	2024-11-21 12:45	2018-07-3	Show	GitHub Exploit DB Packet Storm

249459	8.8	HIGH Network	intex	n150_firmware	An issue was discovered on Intex N150 devices. The router firmware suffers from multiple CSRF injection point vulnerabilities including changing user passwords and router settings.	CWE-352 Origin Validation Error	CVE-2018-12529	2024-11-21 12:45	2018-07-3	Show	GitHub Exploit DB Packet Storm

249460	8.1	HIGH Network	intex	n150_firmware	An issue was discovered on Intex N150 devices. The backup/restore option does not check the file extension uploaded for importing a configuration files backup, which can lead to corrupting the router…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-12528	2024-11-21 12:45	2018-07-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed