Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258611	4.3	警告	アップル	-	Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1762	2010-07-14 16:44	2010-06-10	Show	GitHub Exploit DB Packet Storm

258612	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1761	2010-07-14 16:44	2010-06-10	Show	GitHub Exploit DB Packet Storm

258613	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1759	2010-07-14 16:42	2010-06-10	Show	GitHub Exploit DB Packet Storm

258614	5	警告	アップル	-	Apple Safari の WebKit における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-1413	2010-07-14 16:40	2010-06-10	Show	GitHub Exploit DB Packet Storm

258615	5.8	警告	アップル	-	Apple Safari の WebKit における IRC を経由してデータを公開される脆弱性	CWE-Other その他	CVE-2010-1409	2010-07-14 16:39	2010-06-10	Show	GitHub Exploit DB Packet Storm

258616	4.3	警告	アップル	-	Apple Safari の WebKit における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1406	2010-07-14 16:38	2010-06-10	Show	GitHub Exploit DB Packet Storm

258617	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1404	2010-07-14 16:37	2010-06-10	Show	GitHub Exploit DB Packet Storm

258618	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1402	2010-07-14 16:36	2010-06-10	Show	GitHub Exploit DB Packet Storm

258619	9.3	危険	アップル	-	Apple Safari の WebKit の Cascading Style Sheets 実装における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1401	2010-07-14 16:35	2010-06-10	Show	GitHub Exploit DB Packet Storm

258620	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1400	2010-07-14 16:35	2010-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246461	6.5	MEDIUM Network	oracle	webcenter_interaction	The AjaxControl component of Oracle WebCenter Interaction Portal 10.3.3 does not validate the names of pages when processing page rename requests. Pages can be renamed to include characters unsupport…	CWE-20 Improper Input Validation	CVE-2018-16956	2024-11-21 12:53	2018-09-18	Show	GitHub Exploit DB Packet Storm

246462	8.8	HIGH Network	oracle	webcenter_interaction	The Oracle WebCenter Interaction Portal 10.3.3 does not implement protection against Cross-site Request Forgery in its design. The impact is sensitive actions in the portal (such as changing a portal…	CWE-352 Origin Validation Error	CVE-2018-16952	2024-11-21 12:53	2018-09-18	Show	GitHub Exploit DB Packet Storm

246463	7.5	HIGH Network	golang fedoraproject	net fedora	The html package (aka x/net/html) through 2018-09-17 in Go mishandles <template><tBody><isindex/action=0>, leading to a "panic: runtime error" in inBodyIM in parse.go during an html.Parse call.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-17143	2024-11-21 12:53	2018-09-17	Show	GitHub Exploit DB Packet Storm

246464	7.5	HIGH Network	golang fedoraproject	net fedora	The html package (aka x/net/html) through 2018-09-17 in Go mishandles <math><template><mo><template>, leading to a "panic: runtime error" in parseCurrentToken in parse.go during an html.Parse call.	CWE-476 NULL Pointer Dereference	CVE-2018-17142	2024-11-21 12:53	2018-09-17	Show	GitHub Exploit DB Packet Storm

246465	5.4	MEDIUM Network	vms-studio	quizlord	The Quizlord plugin through 2.0 for WordPress is prone to Stored XSS via the title parameter in a ql_insert action to wp-admin/admin.php.	CWE-79 Cross-site Scripting	CVE-2018-17140	2024-11-21 12:53	2018-09-17	Show	GitHub Exploit DB Packet Storm

246466	8.8	HIGH Network	ultimatefosters	ultimatepos	UltimatePOS 2.5 allows users to upload arbitrary files, which leads to remote command execution by posting to a /products URI with PHP code in a .php file with the image/jpeg content type.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-17139	2024-11-21 12:53	2018-09-17	Show	GitHub Exploit DB Packet Storm

246467	5.4	MEDIUM Network	nickelpro	jibu_pro	The Jibu Pro plugin through 1.7 for WordPress is prone to Stored XSS via the wp-content/plugins/jibu-pro/quiz_action.php name (aka Quiz Name) field.	CWE-79 Cross-site Scripting	CVE-2018-17138	2024-11-21 12:53	2018-09-17	Show	GitHub Exploit DB Packet Storm

246468	9.8	CRITICAL Network	prezi	next	Prezi Next 1.3.101.11 has a documented purpose of creating HTML5 presentations but has SE_DEBUG_PRIVILEGE on Windows, which might allow attackers to bypass intended access restrictions.	NVD-CWE-noinfo	CVE-2018-17137	2024-11-21 12:53	2018-09-17	Show	GitHub Exploit DB Packet Storm

246469	9.8	CRITICAL Network	zzcms	zzcms	zzcms 8.3 contains a SQL Injection vulnerability in /user/check.php via a Client-Ip HTTP header.	CWE-89 SQL Injection	CVE-2018-17136	2024-11-21 12:53	2018-09-17	Show	GitHub Exploit DB Packet Storm

246470	7.2	HIGH Network	phpmywind	phpmywind	admin/web_config.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the cfg_author field in conjunction with a crafted cfg_webpath field.	CWE-94 Code Injection	CVE-2018-17134	2024-11-21 12:53	2018-09-17	Show	GitHub Exploit DB Packet Storm