Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259411 9.3 危険 マイクロソフト - Microsoft Windows の MPEG-4 コーデックにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0818 2010-10-5 18:58 2010-09-14 Show GitHub Exploit DB Packet Storm
259412 9.3 危険 マイクロソフト - Microsoft Windows の Print Spooler サービスにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2729 2010-10-5 18:57 2010-09-14 Show GitHub Exploit DB Packet Storm
259413 1.7 注意 IBM - IBM AIX の sa_snap におけるファイルを削除される脆弱性 CWE-noinfo
情報不足 		CVE-2010-3406 2010-10-5 18:57 2010-08-6 Show GitHub Exploit DB Packet Storm
259414 6.8 警告 IBM - IBM AIX および VIOS の sa_snap におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3405 2010-10-5 18:56 2010-08-6 Show GitHub Exploit DB Packet Storm
259415 4.3 警告 有限会社 のれんずプロ - AD-EDIT2 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2367 2010-10-5 11:02 2010-10-5 Show GitHub Exploit DB Packet Storm
259416 9.3 危険 アップル - iPhone および iPod touch 上で稼動する Apple iOS の ImageIO におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1817 2010-10-4 17:59 2010-09-8 Show GitHub Exploit DB Packet Storm
259417 5.8 警告 アップル - iPhone および iPod touch 上で稼動する Apple iOS の FaceTime における通話をリダイレクトされる脆弱性 CWE-Other
その他 		CVE-2010-1810 2010-10-4 17:55 2010-09-8 Show GitHub Exploit DB Packet Storm
259418 10 危険 アップル - iPhone および iPod touch 上で稼動する Apple iOS の Accessibility コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-1809 2010-10-4 17:55 2010-09-8 Show GitHub Exploit DB Packet Storm
259419 4 警告 ISC, Inc.
IBM
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
ヒューレット・パッカード
レッドハット		 - BIND 9 の DNSSEC 検証処理における脆弱性 CWE-noinfo
情報不足 		CVE-2009-4022 2010-10-1 17:39 2009-12-2 Show GitHub Exploit DB Packet Storm
259420 4 警告 ISC, Inc.
サイバートラスト株式会社
ターボリナックス
ヒューレット・パッカード
レッドハット		 - ISC BIND における DNS キャッシュ汚染の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0290 2010-10-1 17:39 2010-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246751 7.5 HIGH
Network 		openstack
redhat 		octavia
openstack 		In a default Red Hat Openstack Platform Director installation, openstack-octavia before versions openstack-octavia 2.0.2-5 and openstack-octavia-3.0.1-0.20181009115732 creates log files that are read… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2018-16856 2024-11-21 12:53 2019-03-27 Show GitHub Exploit DB Packet Storm
246752 9.8 CRITICAL
Network 		libreoffice libreoffice It was found that libreoffice before versions 6.0.7 and 6.1.3 was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could… CWE-22
Path Traversal 		CVE-2018-16858 2024-11-21 12:53 2019-03-26 Show GitHub Exploit DB Packet Storm
246753 5.4 MEDIUM
Network 		fedoraproject
redhat 		sssd
enterprise_linux 		A flaw was found in sssd Group Policy Objects implementation. When the GPO is not readable by SSSD due to a too strict permission settings on the server side, SSSD will allow all authenticated users … CWE-269
 Improper Privilege Management 		CVE-2018-16838 2024-11-21 12:53 2019-03-26 Show GitHub Exploit DB Packet Storm
246754 5.4 MEDIUM
Network 		printeron printeron PrinterOn Enterprise 4.1.4 suffers from multiple authenticated stored XSS vulnerabilities via the (1) "Machine Host Name" or "Server Serial Number" field in the clustering configuration, (2) "name" f… CWE-79
Cross-site Scripting 		CVE-2018-17167 2024-11-21 12:53 2019-03-22 Show GitHub Exploit DB Packet Storm
246755 7.5 HIGH
Network 		shellinabox_project shellinabox libhttp/url.c in shellinabox through 2.20 has an implementation flaw in the HTTP request parsing logic. By sending a crafted multipart/form-data HTTP request, an attacker could exploit this to force … CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2018-16789 2024-11-21 12:53 2019-03-22 Show GitHub Exploit DB Packet Storm
246756 9.8 CRITICAL
Network 		dolibarr dolibarr An issue was discovered in Dolibarr through 7.0.0. expensereport/card.php in the expense reports module allows SQL injection via the integer parameters qty and value_unit. CWE-89
SQL Injection 		CVE-2018-16809 2024-11-21 12:53 2019-03-8 Show GitHub Exploit DB Packet Storm
246757 6.1 MEDIUM
Network 		dolibarr dolibarr An issue was discovered in Dolibarr through 7.0.0. There is Stored XSS in expensereport/card.php in the expense reports plugin via the comments parameter, or a public or private note. CWE-79
Cross-site Scripting 		CVE-2018-16808 2024-11-21 12:53 2019-03-8 Show GitHub Exploit DB Packet Storm
246758 6.1 MEDIUM
Network 		ucms_project ucms An issue was discovered in UCMS 1.4.6. There is XSS in the title bar, as demonstrated by a do=list request. CWE-79
Cross-site Scripting 		CVE-2018-16804 2024-11-21 12:53 2019-03-8 Show GitHub Exploit DB Packet Storm
246759 7.5 HIGH
Network 		haxx
canonical
debian
netapp
siemens
oracle
redhat
f5 		libcurl
ubuntu_linux
debian_linux
clustered_data_ontap
sinema_remote_connect_client
http_server
secure_global_desktop
communications_operations_monitor
enterprise_linux
big… 		libcurl versions from 7.36.0 to before 7.64.0 is vulnerable to a heap buffer out-of-bounds read. The function handling incoming NTLM type-2 messages (`lib/vauth/ntlm.c:ntlm_decode_type2_target`) does… CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2018-16890 2024-11-21 12:53 2019-02-7 Show GitHub Exploit DB Packet Storm
246760 7.0 HIGH
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		A flaw was found in the Linux kernel's handle_rx() function in the [vhost_net] driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds write in a kmalloc-8 slab on … CWE-787
 Out-of-bounds Write 		CVE-2018-16880 2024-11-21 12:53 2019-01-30 Show GitHub Exploit DB Packet Storm