Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258791	5	警告	アップル	-	Apple Mac OS X のサーバ管理における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-0521	2010-04-16 16:58	2010-03-29	Show	GitHub Exploit DB Packet Storm

258792	4.3	警告	アップル Ruby on Rails project	-	Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4214	2010-04-16 16:58	2009-12-7	Show	GitHub Exploit DB Packet Storm

258793	4.3	警告	アップル Ruby on Rails project	-	Ruby on Rails におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3009	2010-04-16 16:58	2009-09-8	Show	GitHub Exploit DB Packet Storm

258794	7.5	危険	アップル Ruby on Rails project	-	Ruby on Rails のダイジェスト認証における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-2422	2010-04-16 16:57	2009-07-10	Show	GitHub Exploit DB Packet Storm

258795	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0526	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

258796	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0520	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

258797	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0519	2010-04-16 16:57	2010-03-29	Show	GitHub Exploit DB Packet Storm

258798	6.8	警告	アップル	-	Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0518	2010-04-16 16:56	2010-03-29	Show	GitHub Exploit DB Packet Storm

258799	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0517	2010-04-16 16:56	2010-03-29	Show	GitHub Exploit DB Packet Storm

258800	6.8	警告	アップル	-	Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0516	2010-04-15 18:39	2010-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248271	7.5	HIGH Network	lica	minicmts_e8k_firmware	LICA miniCMTS E8K(u/i/...) devices allow remote attackers to obtain sensitive information via a direct POST request for the inc/user.ini file, leading to discovery of a password hash.	CWE-200 Information Exposure	CVE-2018-14083	2024-11-21 12:48	2018-07-26	Show	GitHub Exploit DB Packet Storm

248272	6.5	MEDIUM Network	freedesktop canonical debian redhat	poppler ubuntu_linux debian_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server openshift_container_platform ansible_tower	Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corr…	CWE-125 Out-of-bounds Read	CVE-2018-13988	2024-11-21 12:48	2018-07-26	Show	GitHub Exploit DB Packet Storm

248273	6.5	MEDIUM Network	h2database	h2	An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files (outside of their permissions) via a symlink to a fake database…	CWE-59 Link Following	CVE-2018-14335	2024-11-21 12:48	2018-07-24	Show	GitHub Exploit DB Packet Storm

248274	9.8	CRITICAL Network	brynamics	online_trade	Brynamics "Online Trade - Online trading and cryptocurrency investment system" allows remote attackers to obtain sensitive information via a direct request for /dashboard/addplan, /dashboard/paywithc…	CWE-200 Information Exposure	CVE-2018-14328	2024-11-21 12:48	2018-07-24	Show	GitHub Exploit DB Packet Storm

248275	7.5	HIGH Network	tp-link	wr840n	TP-Link WR840N devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses.	CWE-20 Improper Input Validation	CVE-2018-14336	2024-11-21 12:48	2018-07-20	Show	GitHub Exploit DB Packet Storm

248276	5.5	MEDIUM Local	clementine-player	clementine	An issue was discovered in Clementine Music Player 1.3.1. Clementine.exe is vulnerable to a user mode write access violation due to a NULL pointer dereference in the Init call in the MoodbarPipeline:…	CWE-476 NULL Pointer Dereference	CVE-2018-14332	2024-11-21 12:48	2018-07-20	Show	GitHub Exploit DB Packet Storm

248277	7.5	HIGH Network	axmldec_project	axmldec	axmldec 1.2.0 has an out-of-bounds write in the jitana::axml_parser::parse_start_namespace function in lib/jitana/util/axml_parser.cpp.	CWE-787 Out-of-bounds Write	CVE-2018-14402	2024-11-21 12:48	2018-07-19	Show	GitHub Exploit DB Packet Storm

248278	7.5	HIGH Network	axml_parser_project	axml_parser	CopyData in AxmlParser.c in AXML Parser through 2018-01-04 has an out-of-bounds read.	CWE-125 Out-of-bounds Read	CVE-2018-14401	2024-11-21 12:48	2018-07-19	Show	GitHub Exploit DB Packet Storm

248279	9.8	CRITICAL Network	phpcms_project	phpcms	libs\classes\attachment.class.php in PHPCMS 9.6.0 allows remote attackers to upload and execute arbitrary PHP code via a .txt?.php#.jpg URI in the SRC attribute of an IMG element within info[content]…	CWE-94 Code Injection	CVE-2018-14399	2024-11-21 12:48	2018-07-19	Show	GitHub Exploit DB Packet Storm

248280	6.5	MEDIUM Network	debian ffmpeg	debian_linux ffmpeg	libavformat/movenc.c in FFmpeg 3.2 and 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted audio file when converting to the M…	CWE-369 Divide By Zero	CVE-2018-14395	2024-11-21 12:48	2018-07-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed