Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259211 5.8 警告 サン・マイクロシステムズ
GNOME Project
レッドハット		 - Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0582 2010-05-14 18:37 2009-03-14 Show GitHub Exploit DB Packet Storm
259212 1.2 注意 日本電気
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
OpenSSL Project
レッドハット		 - RSA key reconstruction vulnerability - CVE-2007-3108 2010-05-14 18:37 2007-08-16 Show GitHub Exploit DB Packet Storm
259213 5 警告 ヒューレット・パッカード
サイバートラスト株式会社
OpenSSL Project
ターボリナックス
レッドハット		 - OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4355 2010-05-13 17:21 2010-01-13 Show GitHub Exploit DB Packet Storm
259214 9.3 危険 日立 - XMAP3 における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-13 15:14 2010-04-12 Show GitHub Exploit DB Packet Storm
259215 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0863 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
259216 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0864 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
259217 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0862 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
259218 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
259219 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
259220 4.3 警告 オラクル - Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0874 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247371 7.8 HIGH
Local 		debian
artifex
canonical
redhat 		debian_linux
ghostscript
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_eus
ent… 		An issue was discovered in Artifex Ghostscript before 9.24. A type confusion in "ztype" could be used by remote attackers able to supply crafted PostScript to crash the interpreter or possibly have u… CWE-704
 Incorrect Type Conversion or Cast 		CVE-2018-16511 2024-11-21 12:52 2018-09-5 Show GitHub Exploit DB Packet Storm
247372 7.8 HIGH
Local 		artifex
canonical 		ghostscript
ubuntu_linux
gpl_ghostscript 		An issue was discovered in Artifex Ghostscript before 9.24. Incorrect exec stack handling in the "CS" and "SC" PDF primitives could be used by remote attackers able to supply crafted PDFs to crash th… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-16510 2024-11-21 12:52 2018-09-5 Show GitHub Exploit DB Packet Storm
247373 7.8 HIGH
Local 		debian
artifex
canonical
redhat 		debian_linux
ghostscript
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
gpl_ghostscript 		An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafte… NVD-CWE-noinfo
CVE-2018-16509 2024-11-21 12:52 2018-09-5 Show GitHub Exploit DB Packet Storm
247374 6.5 MEDIUM
Network 		baigo baigo_cms An issue was discovered in baigo CMS v2.1.1. There is an index.php?m=article&c=request CSRF that can cause publication of any article. CWE-352
 Origin Validation Error 		CVE-2018-16458 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247375 6.1 MEDIUM
Network 		craftedweb_project craftedweb CraftedWeb through 2013-09-24 has reflected XSS via the p parameter. CWE-79
Cross-site Scripting 		CVE-2018-16450 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247376 6.5 MEDIUM
Network 		onethink onethink OneThink 1.1.141212 allows CSRF for adding a page via admin.php?s=/Channel/add.html, adding a blog via admin.php?s=/Article/update.html, and setting the audit state via admin.php?s=/Article/setStatus… CWE-352
 Origin Validation Error 		CVE-2018-16449 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247377 8.8 HIGH
Network 		chshcms cscms Cscms 4 allows CSRF for creating a member via upload/admin.php/user/save, authenticating vip members via upload/admin.php/user/init/tid and upload/admin.php/user/init/rzid, and creating a super admin… CWE-352
 Origin Validation Error 		CVE-2018-16448 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247378 8.8 HIGH
Network 		frogcms_project frogcms Frog CMS 0.9.5 has admin/?/user/edit/1 CSRF. CWE-352
 Origin Validation Error 		CVE-2018-16447 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247379 7.5 HIGH
Network 		seamcms seacms An issue was discovered in SeaCMS through 6.61. adm1n/admin_database.php allows remote attackers to delete arbitrary files via directory traversal sequences in the bakfiles parameter. This can allow … CWE-22
Path Traversal 		CVE-2018-16446 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm
247380 9.8 CRITICAL
Network 		seacms seacms An issue was discovered in SeaCMS through 6.61. SQL injection exists via the tid parameter in an adm1n/admin_topic_vod.php request. CWE-89
SQL Injection 		CVE-2018-16445 2024-11-21 12:52 2018-09-4 Show GitHub Exploit DB Packet Storm