Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258821 6.8 警告 アップル
サイバートラスト株式会社
LibTIFF
レッドハット		 - LibTIFF の FAX3 デコーダの Fax3SetupState 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1411 2010-08-24 13:44 2010-06-10 Show GitHub Exploit DB Packet Storm
258822 2.6 注意 アップル - Apple Safari の AutoFill 機能におけるアドレスブックカードの情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1796 2010-08-20 18:24 2010-07-30 Show GitHub Exploit DB Packet Storm
258823 4.3 警告 アップル - Apple Safari におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1778 2010-08-20 18:24 2010-07-30 Show GitHub Exploit DB Packet Storm
258824 7.5 危険 金子 勇 - Winny におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2360 2010-08-20 12:02 2010-08-20 Show GitHub Exploit DB Packet Storm
258825 7.5 危険 金子 勇 - Winny におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2360 2010-08-20 12:02 2010-08-20 Show GitHub Exploit DB Packet Storm
258826 5 警告 金子 勇 - Winny におけるノード情報の処理に関する脆弱性 CWE-Other
その他 		CVE-2010-2362 2010-08-20 12:01 2010-08-20 Show GitHub Exploit DB Packet Storm
258827 5 警告 金子 勇 - Winny における BBS 情報の処理に関する脆弱性 CWE-Other
その他 		CVE-2010-2361 2010-08-20 12:01 2010-08-20 Show GitHub Exploit DB Packet Storm
258828 10 危険 シマンテック
IBM		 - Autonomy KeyView Filter SDK の kvolefio.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-3032 2010-08-19 18:22 2010-03-5 Show GitHub Exploit DB Packet Storm
258829 5 警告 The PHP Group - PHP の phar 拡張における重要な情報を取得される脆弱性 CWE-134
書式文字列の問題 		CVE-2010-2094 2010-08-18 18:26 2010-05-14 Show GitHub Exploit DB Packet Storm
258830 7.5 危険 The PHP Group - PHP の sqlite_single_query および sqlite_array_query 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1868 2010-08-18 18:26 2010-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250091 7.4 HIGH
Network 		ecos system_management_appliance Authentication Bypass by Spoofing vulnerability in ECOS System Management Appliance (aka SMA) 5.2.68 allows a man-in-the-middle attacker to compromise authentication keys and configurations via IP sp… CWE-290
 Authentication Bypass by Spoofing 		CVE-2018-12331 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
250092 8.1 HIGH
Network 		ecos secure_boot_stick_firmware Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to compromise authentication and encryption keys via compromised firmware. NVD-CWE-noinfo
CVE-2018-12330 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
250093 5.9 MEDIUM
Network 		ecos secure_boot_stick_firmware Protection Mechanism Failure in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows a local attacker to duplicate an authentication factor via cloning. CWE-200
Information Exposure 		CVE-2018-12329 2024-11-21 12:45 2018-06-18 Show GitHub Exploit DB Packet Storm
250094 7.5 HIGH
Network 		1000guess 1000_guess The _addguess function of a simplelottery smart contract implementation for 1000 Guess, an Ethereum gambling game, generates a random value with publicly readable variables such as the current block … CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2018-12454 2024-11-21 12:45 2018-06-17 Show GitHub Exploit DB Packet Storm
250095 7.5 HIGH
Network 		redislabs redis Type confusion in the xgroupCommand function in t_stream.c in redis-server in Redis before 5.0 allows remote attackers to cause denial-of-service via an XGROUP command in which the key is not a strea… CWE-704
 Incorrect Type Conversion or Cast 		CVE-2018-12453 2024-11-21 12:45 2018-06-17 Show GitHub Exploit DB Packet Storm
250096 7.5 HIGH
Network 		tinyexr_project tinyexr tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h. CWE-617
 Reachable Assertion 		CVE-2018-12504 2024-11-21 12:45 2018-06-17 Show GitHub Exploit DB Packet Storm
250097 9.8 CRITICAL
Network 		tinyexr_project tinyexr tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h. CWE-125
Out-of-bounds Read 		CVE-2018-12503 2024-11-21 12:45 2018-06-17 Show GitHub Exploit DB Packet Storm
250098 6.1 MEDIUM
Network 		nagios fusion Nagios Fusion before 4.1.4 has XSS, aka TPS#13332-13335. CWE-79
Cross-site Scripting 		CVE-2018-12501 2024-11-21 12:45 2018-06-16 Show GitHub Exploit DB Packet Storm
250099 9.8 CRITICAL
Network 		icmsdev icms spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do=batch request to admincp.php. CWE-89
SQL Injection 		CVE-2018-12498 2024-11-21 12:45 2018-06-16 Show GitHub Exploit DB Packet Storm
250100 5.5 MEDIUM
Local 		discount_project
debian 		discount
debian_linux 		The quoteblock function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file. CWE-125
Out-of-bounds Read 		CVE-2018-12495 2024-11-21 12:45 2018-06-16 Show GitHub Exploit DB Packet Storm