Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258691 6.8 警告 VMware - 複数の VMware 製品における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1361 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
258692 7.1 危険 VMware - 複数の VMware 製品の Virtual Machine Communication Interface (VMCI) におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1340 2010-09-13 15:55 2008-03-17 Show GitHub Exploit DB Packet Storm
258693 6.9 警告 VMware - 複数の VMware 製品におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0923 2010-09-13 15:54 2008-02-26 Show GitHub Exploit DB Packet Storm
258694 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2882 2010-09-13 15:46 2010-08-24 Show GitHub Exploit DB Packet Storm
258695 9.3 危険 アドビシステムズ - Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2881 2010-09-13 15:46 2010-08-24 Show GitHub Exploit DB Packet Storm
258696 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-2880 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258697 9.3 危険 アドビシステムズ - Adobe Shockwave Player の TextXtra.x32 モジュールにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2879 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258698 9.3 危険 アドビシステムズ - Adobe Shockwave Player の DIRAPIX.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2878 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258699 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2877 2010-09-13 15:45 2010-08-24 Show GitHub Exploit DB Packet Storm
258700 9.3 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2876 2010-09-13 15:44 2010-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246931 6.1 MEDIUM
Network 		seacms seacms An issue was discovered in SeaCMS 6.64. XSS exists in admin_video.php via the action, area, type, yuyan, jqtype, v_isunion, v_recycled, v_ismoney, or v_ispsd parameter. CWE-79
Cross-site Scripting 		CVE-2018-17062 2024-11-21 12:53 2018-09-17 Show GitHub Exploit DB Packet Storm
246932 6.1 MEDIUM
Network 		php
debian
netapp 		php
debian_linux
storage_automation_store 		The Apache2 component in PHP before 5.6.38, 7.0.x before 7.0.32, 7.1.x before 7.1.22, and 7.2.x before 7.2.10 allows XSS via the body of a "Transfer-Encoding: chunked" request, because the bucket bri… CWE-79
Cross-site Scripting 		CVE-2018-17082 2024-11-21 12:53 2018-09-17 Show GitHub Exploit DB Packet Storm
246933 6.1 MEDIUM
Network 		yiqicms_project yiqicms An issue was discovered in yiqicms through 2016-11-20. There is stored XSS in comment.php because a length limit can be bypassed. CWE-79
Cross-site Scripting 		CVE-2018-17077 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246934 8.8 HIGH
Network 		logological general-purpose_preprocessor GPP through 2.25 will try to use more memory space than is available on the stack, leading to a segmentation fault or possibly unspecified other impact via a crafted file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-17076 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246935 7.5 HIGH
Network 		golang
fedoraproject 		net
fedora 		The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of <template><object>, <template><applet>, or <te… CWE-476
 NULL Pointer Dereference 		CVE-2018-17075 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246936 6.1 MEDIUM
Network 		feed_statistics_project feed_statistics The Feed Statistics plugin before 4.0 for WordPress has an Open Redirect via the feed-stats-url parameter. CWE-601
Open Redirect 		CVE-2018-17074 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246937 7.5 HIGH
Network 		bitmap_project bitmap wernsey/bitmap before 2018-08-18 allows a NULL pointer dereference via a 4-bit image. CWE-476
 NULL Pointer Dereference 		CVE-2018-17073 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246938 9.8 CRITICAL
Network 		json\+\+_project json\+\+ JSON++ through 2016-06-15 has a buffer over-read in yyparse() in json.y. CWE-125
Out-of-bounds Read 		CVE-2018-17072 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246939 6.5 MEDIUM
Network 		unlcms unlcms An issue was discovered in UNL-CMS 7.59. A CSRF attack can update the website settings via ?q=admin%2Fconfig%2Fsystem%2Fsite-information&render=overlay&render=overlay. CWE-352
 Origin Validation Error 		CVE-2018-17070 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm
246940 6.5 MEDIUM
Network 		unlcms unlcms An issue was discovered in UNL-CMS 7.59. A CSRF attack can create new content via ?q=node%2Fadd%2Farticle&render=overlay&render=overlay. CWE-352
 Origin Validation Error 		CVE-2018-17069 2024-11-21 12:53 2018-09-16 Show GitHub Exploit DB Packet Storm