Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258641	3.6	注意	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0895	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

258642	4.3	警告	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0893	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

258643	4.9	警告	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-20 不適切な入力確認	CVE-2010-0453	2010-05-14 18:42	2010-02-3	Show	GitHub Exploit DB Packet Storm

258644	4.9	警告	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0889	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258645	5.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Management Center コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0891	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258646	5.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Java System Access Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0894	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258647	6.8	警告	オラクル	-	Oracle Sun Product Suite の Sun Java System Communications Express コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0885	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258648	7.1	危険	オラクル	-	Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0896	2010-05-14 18:41	2010-04-13	Show	GitHub Exploit DB Packet Storm

258649	7.2	危険	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0882	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

258650	7.5	危険	オラクル	-	Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0897	2010-05-14 18:40	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246461	4.3	MEDIUM Network	wisetail	learning_management_system	Wisetail Learning Ecosystem (LE) through v4.11.6 allows insecure direct object reference (IDOR) attacks to download non-purchased course files via a modified id parameter.	CWE-538 File and Directory Information Exposure	CVE-2018-16970	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm

246462	7.8	HIGH Local	webroot	secureanywhere	Webroot SecureAnywhere before 9.0.8.34 on macOS mishandles access to the driver by a process that lacks root privileges.	CWE-123 Write-what-where Condition	CVE-2018-16962	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm

246463	5.4	MEDIUM Network	pluck-cms	pluck	Pluck 4.7.7 allows XSS via an SVG file that contains Javascript in a SCRIPT element, and is uploaded via pages->manage under admin.php?action=files.	CWE-79 Cross-site Scripting	CVE-2018-16729	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm

246464	5.4	MEDIUM Network	feindura	feindura	feindura 2.0.7 allows XSS via the tags field of a new page created at index.php?category=0&page=new.	CWE-79 Cross-site Scripting	CVE-2018-16728	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm

246465	5.4	MEDIUM Network	razorcms	razorcms	razorCMS 3.4.7 allows Stored XSS via the keywords of the homepage within the settings component.	CWE-79 Cross-site Scripting	CVE-2018-16727	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm

246466	5.4	MEDIUM Network	razorcms	razorcms	razorCMS 3.4.7 allows HTML injection via the description of the homepage within the settings component.	CWE-79 Cross-site Scripting	CVE-2018-16726	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm

246467	5.4	MEDIUM Network	dlink	dir-600m_firmware	D-Link DIR-600M devices allow XSS via the Hostname and Username fields in the Dynamic DNS Configuration page.	CWE-79 Cross-site Scripting	CVE-2018-16605	2024-11-21 12:53	2018-09-13	Show	GitHub Exploit DB Packet Storm

246468	6.5	MEDIUM Adjacent	inteno	dg400_firmware	Inteno DG400 WU7U_ELION3.11.6-170614_1328 devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses, as demonstrated by macof.	NVD-CWE-noinfo	CVE-2018-16950	2024-11-21 12:53	2018-09-12	Show	GitHub Exploit DB Packet Storm

246469	8.0	HIGH Network	xunfeng_project	xunfeng	xunfeng 0.2.0 allows command execution via CSRF because masscan.py mishandles backquote characters, a related issue to CVE-2018-16832.	CWE-352 Origin Validation Error	CVE-2018-16951	2024-11-21 12:53	2018-09-12	Show	GitHub Exploit DB Packet Storm

246470	7.5	HIGH Network	openafs debian	openafs debian_linux	An issue was discovered in OpenAFS before 1.6.23 and 1.8.x before 1.8.2. Several data types used as RPC input variables were implemented as unbounded array types, limited only by the inherent 32-bit …	CWE-400 Uncontrolled Resource Consumption	CVE-2018-16949	2024-11-21 12:53	2018-09-12	Show	GitHub Exploit DB Packet Storm