Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258691	7.1	危険	オラクル	-	Oracle Database の Core RDBMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0860	2010-05-12 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

258692	7.5	危険	オラクル	-	複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0853	2010-05-12 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

258693	2.6	注意	シックス・アパート株式会社	-	Movable Type におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1985	2010-05-12 12:01	2010-05-12	Show	GitHub Exploit DB Packet Storm

258694	10	危険	日立	-	複数の EUR Form 製品および EUR 製品における任意のコードが実行される脆弱性	CWE-noinfo 情報不足	-	2010-05-11 15:16	2010-03-31	Show	GitHub Exploit DB Packet Storm

258695	6.4	警告	マイクロソフト	-	Microsoft Windows における ISATAP パケットの処理に関する IPv4 ソースアドレスの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0812	2010-05-11 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

258696	7.6	危険	マイクロソフト	-	Microsoft Office Visio における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0256	2010-05-11 15:16	2010-04-13	Show	GitHub Exploit DB Packet Storm

258697	7.6	危険	マイクロソフト	-	Microsoft Office Visio における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0254	2010-05-11 15:15	2010-04-13	Show	GitHub Exploit DB Packet Storm

258698	5	警告	マイクロソフト	-	Microsoft Windows の SMTP コンポーネントにおける情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2010-0025	2010-05-11 15:15	2010-04-13	Show	GitHub Exploit DB Packet Storm

258699	5	警告	マイクロソフト	-	Microsoft Windows の SMTP コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0024	2010-05-11 15:15	2010-04-13	Show	GitHub Exploit DB Packet Storm

258700	9.3	危険	マイクロソフト	-	Microsoft Office Publisher におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0479	2010-05-11 15:14	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249441	5.4	MEDIUM Network	clippercms	clippercms	CMS Clipper 1.3.3 has XSS in the Security tab search, User Groups, Resource Groups, and User/Resource Group Links fields.	CWE-79 Cross-site Scripting	CVE-2018-12101	2024-11-21 12:44	2019-08-16	Show	GitHub Exploit DB Packet Storm

249442	7.2	HIGH Network	apache	virtual_computing_lab	Apache VCL versions 2.1 through 2.5 do not properly validate form input when adding and removing VMs to and from hosts. The form data is then used in SQL statements. This allows for an SQL injection …	CWE-89 SQL Injection	CVE-2018-11774	2024-11-21 12:44	2019-07-30	Show	GitHub Exploit DB Packet Storm

249443	9.8	CRITICAL Network	apache	virtual_computing_lab	Apache VCL versions 2.1 through 2.5 do not properly validate form input when processing a submitted block allocation. The form data is then used as an argument to the php built in function strtotime.…	CWE-20 Improper Input Validation	CVE-2018-11773	2024-11-21 12:44	2019-07-30	Show	GitHub Exploit DB Packet Storm

249444	7.2	HIGH Network	apache	virtual_computing_lab	Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node (if any) was previously selected in the privilege tree. The cookie data is then used in an SQL sta…	CWE-89 SQL Injection	CVE-2018-11772	2024-11-21 12:44	2019-07-30	Show	GitHub Exploit DB Packet Storm

249445	9.8	CRITICAL Network	apache	storm	In Apache Storm versions 1.1.0 to 1.2.2, when the user is using the storm-kafka-client or storm-kafka modules, it is possible to cause the Storm UI daemon to deserialize user provided bytes into a Ja…	CWE-502 Deserialization of Untrusted Data	CVE-2018-11779	2024-11-21 12:44	2019-07-26	Show	GitHub Exploit DB Packet Storm

249446	7.2	HIGH Network	elitecms	elite_cms	An issue was discovered in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection.	CWE-89 SQL Injection	CVE-2018-12250	2024-11-21 12:44	2019-07-4	Show	GitHub Exploit DB Packet Storm

249447	9.8	CRITICAL Network	qualcomm	mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmw…	Lack of check on length of reason-code fetched from payload may lead driver access the memory not allocated to the frame and results in out of bound read in Snapdragon Auto, Snapdragon Consumer Elect…	CWE-125 Out-of-bounds Read	CVE-2018-11955	2024-11-21 12:44	2019-06-15	Show	GitHub Exploit DB Packet Storm

249448	5.5	MEDIUM Local	qualcomm	ipq8064_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qca6174a_firmware qca6574au_firmware qca9377_firmwa…	The txrx stats req might be double freed in the pdev detach when the host driver is unloading in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Ind…	CWE-415 Double Free	CVE-2018-11947	2024-11-21 12:44	2019-06-15	Show	GitHub Exploit DB Packet Storm

249449	5.5	MEDIUM Local	qualcomm	ipq4019_firmware ipq8064_firmware ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8996au_firmware qcs405_firmware	Failure to initialize the reserved memory which is sent to the firmware might lead to exposure of 1 byte of uninitialized kernel SKB memory to FW in Snapdragon Auto, Snapdragon Consumer IOT, Snapdrag…	CWE-200 Information Exposure	CVE-2018-11942	2024-11-21 12:44	2019-06-15	Show	GitHub Exploit DB Packet Storm

249450	7.8	HIGH Local	qualcomm	mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware qca6574au_firmware sd_210_firmware sd_212_firmware sd_205_firmware	Use after issue in WLAN function due to multiple ACS scan requests at a time in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in MDM9150, MDM9206, MDM9607, MD…	CWE-416 Use After Free	CVE-2018-11939	2024-11-21 12:44	2019-06-15	Show	GitHub Exploit DB Packet Storm