Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258691 7.1 危険 オラクル - Oracle Database の Core RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0860 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
258692 7.5 危険 オラクル - 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0853 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
258693 2.6 注意 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1985 2010-05-12 12:01 2010-05-12 Show GitHub Exploit DB Packet Storm
258694 10 危険 日立 - 複数の EUR Form 製品 および EUR 製品における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-11 15:16 2010-03-31 Show GitHub Exploit DB Packet Storm
258695 6.4 警告 マイクロソフト - Microsoft Windows における ISATAP パケットの処理に関する IPv4 ソースアドレスの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0812 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
258696 7.6 危険 マイクロソフト - Microsoft Office Visio における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0256 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
258697 7.6 危険 マイクロソフト - Microsoft Office Visio における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0254 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
258698 5 警告 マイクロソフト - Microsoft Windows の SMTP コンポーネントにおける情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2010-0025 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
258699 5 警告 マイクロソフト - Microsoft Windows の SMTP コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0024 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
258700 9.3 危険 マイクロソフト - Microsoft Office Publisher におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0479 2010-05-11 15:14 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246891 8.8 HIGH
Network 		fledrcms_project fledrcms An issue was discovered in fledrCMS through 2014-02-03. There is a CSRF vulnerability that can change the administrator's password via index.php?p=done&savedata=1. CWE-352
 Origin Validation Error 		CVE-2018-15846 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246892 8.8 HIGH
Network 		gleezcms gleez_cms There is a CSRF vulnerability that can add an administrator account in Gleez CMS 1.2.0 via admin/users/add. CWE-352
 Origin Validation Error 		CVE-2018-15845 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246893 8.8 HIGH
Network 		damicms damicms An issue was discovered in DamiCMS 6.0.0. There is an CSRF vulnerability that can revise the administrator account's password via /admin.php?s=/Admin/doedit. CWE-352
 Origin Validation Error 		CVE-2018-15844 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246894 4.8 MEDIUM
Network 		get-simple getsimple_cms GetSimple CMS 3.3.14 has XSS via the admin/edit.php "Add New Page" field. CWE-79
Cross-site Scripting 		CVE-2018-15843 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246895 4.8 MEDIUM
Network 		wolfcms wolf_cms WolfCMS 0.8.3.1 has XSS via the /?/admin/page/add slug parameter. CWE-79
Cross-site Scripting 		CVE-2018-15842 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246896 6.1 MEDIUM
Network 		dlink dir-615_firmware Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows attackers to inject JavaScript into the router's admin UPnP page via the description field in an AddPortMapping UPnP SO… CWE-79
Cross-site Scripting 		CVE-2018-15875 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246897 6.1 MEDIUM
Network 		dlink dir-615_firmware Cross-site scripting (XSS) vulnerability on D-Link DIR-615 routers 20.07 allows an attacker to inject JavaScript into the "Status -> Active Client Table" page via the hostname field in a DHCP request. CWE-79
Cross-site Scripting 		CVE-2018-15874 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246898 6.5 MEDIUM
Network 		libming libming An invalid memory address dereference was discovered in decompileSingleArgBuiltInFunctionCall in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-15871 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246899 6.5 MEDIUM
Network 		libming libming An invalid memory address dereference was discovered in decompileGETVARIABLE in libming 0.4.8 before 2018-03-12. The vulnerability causes a segmentation fault and application crash, which leads to de… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-15870 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
246900 5.3 MEDIUM
Network 		hashicorp packer An Amazon Web Services (AWS) developer who does not specify the --owners flag when describing images via AWS CLI, and therefore not properly validating source software per AWS recommended security be… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-15869 2024-11-21 12:51 2018-08-25 Show GitHub Exploit DB Packet Storm