Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259501 7.2 危険 GNU Project
VMware
サイバートラスト株式会社
レッドハット
- GNU C library の ld.so における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3856 2011-01-25 15:48 2010-10-25 Show GitHub Exploit DB Packet Storm
259502 5.8 警告 Mozilla Foundation
オラクル
- Mozilla Firefox の JavaScript 実装内にある js_InitRandom 関数におけるシード値を推測される脆弱性 CWE-310
暗号の問題
CVE-2010-3400 2011-01-25 15:15 2010-09-15 Show GitHub Exploit DB Packet Storm
259503 4.3 警告 Mozilla Foundation
オラクル
- Mozilla Firefox におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-2117 2011-01-25 15:13 2010-06-1 Show GitHub Exploit DB Packet Storm
259504 6.8 警告 アップル - Apple Mac OS X における脆弱性に対するアップデート CWE-134
書式文字列の問題
CVE-2010-4013 2011-01-25 15:10 2011-01-7 Show GitHub Exploit DB Packet Storm
259505 5 警告 GNU Project - GNU C Library の regcomp 実装におけるスタック消費の脆弱性 CWE-399
リソース管理の問題
CVE-2010-4052 2011-01-21 16:37 2011-01-13 Show GitHub Exploit DB Packet Storm
259506 5 警告 GNU Project - GNU C Library の regcomp 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2010-4051 2011-01-21 16:35 2011-01-13 Show GitHub Exploit DB Packet Storm
259507 - - (複数のベンダ) - 侵入検知システム (IDS) および侵入防止システム (IPS) の機能を回避可能な問題 - - 2011-01-21 16:30 2010-12-16 Show GitHub Exploit DB Packet Storm
259508 6.9 警告 Ecava - Ecava IntegraXor における権限昇格の脆弱性 CWE-Other
その他
CVE-2010-4599 2011-01-21 15:52 2010-12-17 Show GitHub Exploit DB Packet Storm
259509 5 警告 Ecava - Ecava IntegraXor におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2010-4598 2011-01-21 15:38 2011-01-12 Show GitHub Exploit DB Packet Storm
259510 6.8 警告 Lunascape - Lunascape における DLL 読み込みに関する脆弱性 CWE-Other
その他
CVE-2010-3927 2011-01-21 11:02 2011-01-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250071 9.9 CRITICAL
Network
qduoj onlinejudge In OnlineJudge 2.0, the sandbox has an incorrect access control vulnerability that can write a file anywhere. A user can write a directory listing to /tmp, and can leak file data with a #include. CWE-22
Path Traversal
CVE-2018-16367 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250072 8.8 HIGH
Network
idreamsoft icms An issue was discovered in idreamsoft iCMS V7.0.10. admincp.php?app=user&do=save allows CSRF. CWE-352
 Origin Validation Error
CVE-2018-16366 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250073 8.8 HIGH
Network
idreamsoft icms An issue was discovered in idreamsoft iCMS V7.0.10. admincp.php?app=group&do=save allows CSRF. CWE-352
 Origin Validation Error
CVE-2018-16365 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250074 6.1 MEDIUM
Network
mantisbt source_integration An issue was discovered in the Source Integration plugin before 1.5.9 and 2.x before 2.1.5 for MantisBT. A cross-site scripting (XSS) vulnerability in the Manage Repository and Changesets List pages … CWE-79
Cross-site Scripting
CVE-2018-16362 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250075 6.8 MEDIUM
Network
google gvisor Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS. NVD-CWE-noinfo
CVE-2018-16359 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250076 5.4 MEDIUM
Network
dotclear dotclear A cross-site scripting (XSS) vulnerability in inc/core/class.dc.core.php in the media manager in Dotclear through 2.14.1 allows remote authenticated users to upload HTML content containing an XSS pay… CWE-79
Cross-site Scripting
CVE-2018-16358 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250077 9.8 CRITICAL
Network
fhcrm_project fhcrm An issue was discovered in FHCRM through 2018-02-11. There is a SQL injection via the index.php/User/read limit parameter. CWE-89
SQL Injection
CVE-2018-16354 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250078 9.8 CRITICAL
Network
fhcrm_project fhcrm An issue was discovered in FHCRM through 2018-02-11. There is a SQL injection via the /index.php/Customer/read limit parameter. CWE-89
SQL Injection
CVE-2018-16353 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250079 9.8 CRITICAL
Network
weaselcms_project weaselcms There is a PHP code upload vulnerability in WeaselCMS 0.3.6 via index.php because code can be embedded at the end of a .png file when the image/png content type is used. CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2018-16352 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250080 6.1 MEDIUM
Network
wuzhi_cms_project wuzhi_cms WUZHI CMS 4.1.0 has XSS via the index.php?m=core&f=set&v=basic form[statcode] parameter. CWE-79
Cross-site Scripting
CVE-2018-16350 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm