Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 14, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258781 | 4.3 | 警告 | マイクロソフト | - | Microsoft Internet Explorer における同一生成元ポリシーを回避される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0494 | 2010-04-19 19:19 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258782 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer の mstime.dll における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0492 | 2010-04-19 19:19 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258783 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0490 | 2010-04-19 19:18 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258784 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0807 | 2010-04-19 19:18 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258785 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-362
競合状態 |
CVE-2010-0489 | 2010-04-19 19:18 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258786 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0267 | 2010-04-19 19:18 | 2010-03-30 | Show | GitHub Exploit DB Packet Storm |
| 258787 | 10 | 危険 | アップル | - | Apple Mac OS X の xar におけるパッケージ署名の検証処理に関する脆弱性 |
CWE-DesignError
|
CVE-2010-0055 | 2010-04-16 16:59 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 258788 | 0 | 注意 | アップル | - | Apple Mac OS X の Wiki サーバにおけるコンテンツを公開される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0534 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 258789 | 5 | 警告 | アップル | - | Apple Mac OS X の Wiki サーバにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0523 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
| 258790 | 9 | 危険 | アップル | - | Apple Mac OS X のサーバ管理における管理者権限の処理に関する脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0522 | 2010-04-16 16:58 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 15, 2026, 4:10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 247651 | 5.4 |
MEDIUM
Network |
hotel_booking_script_project | hotel_booking_script | PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field. |
CWE-79
Cross-site Scripting |
CVE-2018-15190 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247652 | 5.4 |
MEDIUM
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile. |
CWE-79
Cross-site Scripting |
CVE-2018-15189 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247653 | 6.5 |
MEDIUM
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote attackers to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile. |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2018-15188 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247654 | 8.0 |
HIGH
Network |
advanced_real_estate_script_project | advanced_real_estate_script | PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via edit-profile.php. |
CWE-352
Origin Validation Error |
CVE-2018-15187 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247655 | 8.8 |
HIGH
Network |
chartered_accountant_\ | _auditor_website_project | PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has CSRF via client/auditor/updprofile.php. |
CWE-352
Origin Validation Error |
CVE-2018-15186 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247656 | 6.5 |
MEDIUM
Network |
naukri_clone_script_project | naukri_clone_script | PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows remote attackers to cause a denial of service (page update outage) via crafted PHP and JavaScript code in the "Current Position" fi… |
CWE-20
Improper Input Validation |
CVE-2018-15185 | 2024-11-21 12:50 | 2018-08-11 | Show | GitHub Exploit DB Packet Storm |
| 247657 | 5.4 |
MEDIUM
Network |
naukri_clone_script_project | naukri_clone_script | PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795. |
CWE-79
Cross-site Scripting |
CVE-2018-15184 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247658 | 6.1 |
MEDIUM
Network |
myperfectresume_\/_jobhero_\/_resume_clone_script_project | myperfectresume_\/_jobhero_\/_resume_clone_script | PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 has Stored XSS via the Full Name and Title fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15183 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247659 | 5.4 |
MEDIUM
Network |
car_rental_script_project | car_rental_script | PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15182 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |
| 247660 | 6.5 |
MEDIUM
Network |
jio | 4g_hotspot_m2s_firmware | JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields. |
CWE-79
Cross-site Scripting |
CVE-2018-15181 | 2024-11-21 12:50 | 2018-08-10 | Show | GitHub Exploit DB Packet Storm |