Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258641 3.6 注意 サン・マイクロシステムズ
オラクル		 - Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0895 2010-05-14 18:42 2010-04-13 Show GitHub Exploit DB Packet Storm
258642 4.3 警告 オラクル - Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0893 2010-05-14 18:42 2010-04-13 Show GitHub Exploit DB Packet Storm
258643 4.9 警告 サン・マイクロシステムズ
オラクル		 - Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0453 2010-05-14 18:42 2010-02-3 Show GitHub Exploit DB Packet Storm
258644 4.9 警告 サン・マイクロシステムズ
オラクル		 - Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0889 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258645 5.8 警告 オラクル - Oracle Sun Product Suite の Sun Management Center コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0891 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258646 5.8 警告 オラクル - Oracle Sun Product Suite の Sun Java System Access Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0894 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258647 6.8 警告 オラクル - Oracle Sun Product Suite の Sun Java System Communications Express コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0885 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258648 7.1 危険 オラクル - Oracle Sun Product Suite の Sun Convergence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0896 2010-05-14 18:41 2010-04-13 Show GitHub Exploit DB Packet Storm
258649 7.2 危険 サン・マイクロシステムズ
オラクル		 - Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0882 2010-05-14 18:40 2010-04-13 Show GitHub Exploit DB Packet Storm
258650 7.5 危険 オラクル - Oracle Sun Product Suite の Sun Java System Directory Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0897 2010-05-14 18:40 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249781 9.8 CRITICAL
Network 		palemoon pale_moon A use-after-free vulnerability exists in DOMProxyHandler::EnsureExpandoObject in Pale Moon before 27.9.3. CWE-416
 Use After Free 		CVE-2018-12292 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249782 7.5 HIGH
Network 		matrix synapse The on_get_missing_events function in handlers/federation.py in Matrix Synapse before 0.31.1 has a security bug in the get_missing_events federation API where event visibility rules were not applied … NVD-CWE-noinfo
CVE-2018-12291 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249783 6.1 MEDIUM
Network 		yii2-statemachine yii2-statemachine The Yii2-StateMachine extension v2.x.x for Yii2 has XSS. CWE-79
Cross-site Scripting 		CVE-2018-12290 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249784 6.1 MEDIUM
Network 		ximdex ximdex The /edit URI in the DMS component in Ximdex 4.0 has XSS via the Ciudad or Nombre parameter. CWE-79
Cross-site Scripting 		CVE-2018-12273 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249785 6.1 MEDIUM
Network 		ximdex ximdex xowl/request.php in Ximdex 4.0 has XSS via the content parameter. CWE-79
Cross-site Scripting 		CVE-2018-12272 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249786 9.8 CRITICAL
Network 		acccheck_project acccheck.pl acccheck.pl in acccheck 0.2.1 allows Command Injection via shell metacharacters in a username or password file, as demonstrated by injection into an smbclient command line. CWE-78
OS Command  		CVE-2018-12268 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249787 6.1 MEDIUM
Network 		hongcms_project hongcms system\errors\404.php in HongCMS 3.0.0 has XSS via crafted input that triggers a 404 HTTP status code. CWE-79
Cross-site Scripting 		CVE-2018-12266 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249788 8.8 HIGH
Network 		exiv2
debian
canonical 		exiv2
debian_linux
ubuntu_linux 		Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp. CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2018-12265 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249789 8.8 HIGH
Network 		exiv2
debian
canonical 		exiv2
debian_linux
ubuntu_linux 		Exiv2 0.26 has integer overflows in LoaderTiff::getData() in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp. CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2018-12264 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm
249790 8.8 HIGH
Network 		portfoliocms_project portfoliocms portfolioCMS 1.0.5 allows upload of arbitrary .php files via the admin/portfolio.php?newpage=true URI. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-12263 2024-11-21 12:44 2018-06-13 Show GitHub Exploit DB Packet Storm