Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258721 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1564 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258722 10 危険 VMware - VMware Remote Console の vmware-vmrc.exe build 158248 における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3732 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258723 7.2 危険 VMware - 複数の VMware 製品の vmrun における権限昇格の脆弱性 CWE-134
書式文字列の問題 		CVE-2010-1139 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258724 5 警告 VMware - 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1138 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258725 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258726 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1141 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258727 5 警告 アップル
サイバートラスト株式会社
レッドハット
ターボリナックス
CUPS		 - CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0949 2010-05-7 16:55 2009-06-3 Show GitHub Exploit DB Packet Storm
258728 6.8 警告 レッドハット
サイバートラスト株式会社
ターボリナックス
CUPS		 - CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0163 2010-05-7 16:51 2009-04-16 Show GitHub Exploit DB Packet Storm
258729 4.6 警告 GNU Project
サイバートラスト株式会社
レッドハット		 - GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2005-4268 2010-05-7 16:51 2005-12-15 Show GitHub Exploit DB Packet Storm
258730 4.3 警告 日本電気
Apache Software Foundation		 - Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1885 2010-05-6 13:47 2009-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250011 9.8 CRITICAL
Network 		netgear wc7500_firmware
wc7520_firmware
wc7600v1_firmware
wc7600v2_firmware
wc9500_firmware 		NETGEAR has released fixes for a pre-authentication command injection in request_handler.php security vulnerability on the following product models: WC7500, running firmware versions prior to 6.5.3.5… CWE-77
Command Injection 		CVE-2018-11106 2024-11-21 12:42 2020-04-2 Show GitHub Exploit DB Packet Storm
250012 5.4 MEDIUM
Network 		redhat cloudforms_management_engine cloudforms version, cloudforms 5.8 and cloudforms 5.9, is vulnerable to a cross-site-scripting. A flaw was found in CloudForms's v2v infrastructure mapping delete feature. A stored cross-site scripti… - CVE-2018-10854 2024-11-21 12:42 2019-11-22 Show GitHub Exploit DB Packet Storm
250013 6.1 MEDIUM
Network 		acquia mautic An issue was discovered in Mautic 2.13.1. It has Stored XSS via the company name field. CWE-79
Cross-site Scripting 		CVE-2018-11200 2024-11-21 12:42 2019-09-21 Show GitHub Exploit DB Packet Storm
250014 6.1 MEDIUM
Network 		acquia mautic An issue was discovered in Mautic 2.13.1. There is Stored XSS via the authorUrl field in config.json. CWE-79
Cross-site Scripting 		CVE-2018-11198 2024-11-21 12:42 2019-09-7 Show GitHub Exploit DB Packet Storm
250015 8.8 HIGH
Network 		jolokia
redhat 		jolokia
openstack 		A flaw was found in Jolokia versions from 1.2 to before 1.6.1. Affected versions are vulnerable to a system-wide CSRF. This holds true for properly configured instances with strict checking for origi… CWE-352
 Origin Validation Error 		CVE-2018-10899 2024-11-21 12:42 2019-08-1 Show GitHub Exploit DB Packet Storm
250016 8.8 HIGH
Network 		open-xchange ox_guard OX Guard 2.8.0 has CSRF. CWE-352
 Origin Validation Error 		CVE-2018-10986 2024-11-21 12:42 2019-07-4 Show GitHub Exploit DB Packet Storm
250017 6.1 MEDIUM
Network 		monstra monstra_cms Monstra CMS 3.0.4 and earlier has XSS via index.php. CWE-79
Cross-site Scripting 		CVE-2018-11227 2024-11-21 12:42 2019-07-4 Show GitHub Exploit DB Packet Storm
250018 9.8 CRITICAL
Network 		cloudera data_science_workbench Remote code execution is possible in Cloudera Data Science Workbench version 1.3.0 and prior releases via unspecified attack vectors. CWE-200
CWE-78
Information Exposure
OS Command  		CVE-2018-11215 2024-11-21 12:42 2019-07-4 Show GitHub Exploit DB Packet Storm
250019 3.1 LOW
Adjacent 		polycom realpresence_debut_firmware An issue was discovered in versions earlier than 1.3.2 for Polycom RealPresence Debut where the admin cookie is reset only after a Debut is rebooted. CWE-20
 Improper Input Validation  		CVE-2018-10947 2024-11-21 12:42 2019-06-14 Show GitHub Exploit DB Packet Storm
250020 6.8 MEDIUM
Adjacent 		polycom realpresence_debut_firmware An issue was discovered in versions earlier than 1.3.0-66872 for Polycom RealPresence Debut that allows attackers to arbitrarily read the admin user's password via the admin web UI. CWE-200
Information Exposure 		CVE-2018-10946 2024-11-21 12:42 2019-06-14 Show GitHub Exploit DB Packet Storm