Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259001	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

259002	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

259003	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246801	7.5	HIGH Network	adobe	coldfusion	Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a use of a component with a known vulnerability vulnerability. Successful exploitatio…	CWE-20 Improper Input Validation	CVE-2018-15960	2024-11-21 12:51	2018-09-25	Show	GitHub Exploit DB Packet Storm

246802	9.8	CRITICAL Network	adobe	coldfusion	Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15959	2024-11-21 12:51	2018-09-25	Show	GitHub Exploit DB Packet Storm

246803	9.8	CRITICAL Network	adobe	coldfusion	Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15958	2024-11-21 12:51	2018-09-25	Show	GitHub Exploit DB Packet Storm

246804	9.8	CRITICAL Network	adobe	coldfusion	Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15957	2024-11-21 12:51	2018-09-25	Show	GitHub Exploit DB Packet Storm

246805	4.4	MEDIUM Local	avaya	call_management_system_supervisor	A vulnerability in the Supervisor component of Avaya Call Management System allows local administrative user to extract sensitive information from users connecting to a remote CMS host. Affected vers…	CWE-200 Information Exposure	CVE-2018-15615	2024-11-21 12:51	2018-09-24	Show	GitHub Exploit DB Packet Storm

246806	6.1	MEDIUM Network	avaya	aura_orchestration_designer	A cross-site scripting (XSS) vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could result in malicious content being returned to the user. Affected versions of Avay…	CWE-79 Cross-site Scripting	CVE-2018-15613	2024-11-21 12:51	2018-09-22	Show	GitHub Exploit DB Packet Storm

246807	8.8	HIGH Network	avaya	orchestration_designer	A CSRF vulnerability in the Runtime Config component of Avaya Aura Orchestration Designer could allow an attacker to add, change, or remove administrative settings. Affected versions of Avaya Aura Or…	CWE-352 Origin Validation Error	CVE-2018-15612	2024-11-21 12:51	2018-09-22	Show	GitHub Exploit DB Packet Storm

246808	8.8	HIGH Network	ubisoft	uplay	upc.exe in Ubisoft Uplay Desktop Client versions 63.0.5699.0 allows remote attackers to execute arbitrary code. User interaction is required to exploit this vulnerability in that the target must visi…	CWE-20 Improper Input Validation	CVE-2018-15832	2024-11-21 12:51	2018-09-21	Show	GitHub Exploit DB Packet Storm

246809	6.1	MEDIUM Network	accusoft	prizmdoc	Accusoft PrizmDoc version 13.3 and earlier contains a Stored Cross-Site Scripting issue through a crafted PDF file.	CWE-79 Cross-site Scripting	CVE-2018-15546	2024-11-21 12:51	2018-09-19	Show	GitHub Exploit DB Packet Storm

246810	8.8	HIGH Network	avaya	ip_office	A vulnerability in the one-X Portal component of Avaya IP Office allows an authenticated attacker to read and delete arbitrary files on the system. Affected versions of Avaya IP Office include 9.1 th…	CWE-22 Path Traversal	CVE-2018-15610	2024-11-21 12:51	2018-09-13	Show	GitHub Exploit DB Packet Storm