Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259621	10	危険	日立 CA Technologies	-	CA ARCserve Backup および BrightStor ARCserve Backup における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	-	2010-06-3 15:19	2010-03-18	Show	GitHub Exploit DB Packet Storm

259622	6.4	警告	サイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	MySQL における SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2009-4028	2010-06-3 14:57	2009-11-4	Show	GitHub Exploit DB Packet Storm

259623	4	警告	富士通九州システムズ	-	e-Pares におけるセッション固定の脆弱性	CWE-Other その他	CVE-2010-2149	2010-06-2 15:05	2010-06-2	Show	GitHub Exploit DB Packet Storm

259624	2.6	注意	富士通九州システムズ	-	e-Pares におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2151	2010-06-2 15:04	2010-06-2	Show	GitHub Exploit DB Packet Storm

259625	4.3	警告	富士通九州システムズ	-	e-Pares におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2150	2010-06-2 15:02	2010-06-2	Show	GitHub Exploit DB Packet Storm

259626	2.1	注意	アドビシステムズ	-	Adobe ColdFusion における重要な情報を取得される脆弱性	CWE-200 CWE-noinfo	CVE-2010-1294	2010-06-2 12:14	2010-05-11	Show	GitHub Exploit DB Packet Storm

259627	4.3	警告	アドビシステムズ	-	Adobe ColdFusion の Administrator ページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1293	2010-06-2 12:14	2010-05-11	Show	GitHub Exploit DB Packet Storm

259628	4.3	警告	アドビシステムズ	-	Adobe ColdFusion におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3467	2010-06-2 12:13	2010-05-11	Show	GitHub Exploit DB Packet Storm

259629	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の pami RIFF chunk 構文解析における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1292	2010-06-2 12:13	2010-05-11	Show	GitHub Exploit DB Packet Storm

259630	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1291	2010-06-2 12:13	2010-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245931	6.1	MEDIUM Network	elementor	elementor_page_builder	The elementor-edit-template class in wp-admin/customize.php in the Elementor Pro plugin before 2.0.10 for WordPress has XSS.	CWE-79 Cross-site Scripting	CVE-2018-18379	2024-11-21 12:55	2019-10-7	Show	GitHub Exploit DB Packet Storm

245932	6.5	MEDIUM Network	broadcom	symantec_proxysg advanced_secure_gateway	The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. An information disclosure vulnerability in the WebFTP …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2018-18371	2024-11-21 12:55	2019-08-30	Show	GitHub Exploit DB Packet Storm

245933	6.1	MEDIUM Network	broadcom	symantec_proxysg advanced_secure_gateway	The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. A stored cross-site scripting (XSS) vulnerability in t…	CWE-79 Cross-site Scripting	CVE-2018-18370	2024-11-21 12:55	2019-08-30	Show	GitHub Exploit DB Packet Storm

245934	4.6	MEDIUM Physics	ti	tm4c123_firmware tm4c129_firmware	An issue was discovered in the Texas Instruments (TI) TM4C, MSP432E and MSP432P microcontroller series. The eXecute-Only-Memory (XOM) implementation prevents code read-outs on protected memory by gen…	CWE-200 Information Exposure	CVE-2018-18056	2024-11-21 12:55	2019-08-21	Show	GitHub Exploit DB Packet Storm

245935	6.8	MEDIUM Physics	intel	ssd_dc_s4500_firmware ssd_dc_s4600_firmware	Improper authentication in firmware for Intel(R) SSD DC S4500 Series and Intel(R) SSD DC S4600 Series before SCV10150 may allow an unprivileged user to potentially enable escalation of privilege via …	CWE-287 Improper Authentication	CVE-2018-18095	2024-11-21 12:55	2019-07-12	Show	GitHub Exploit DB Packet Storm

245936	7.5	HIGH Network	dnnsoftware	dotnetnuke	DNN (aka DotNetNuke) 9.2 through 9.2.2 incorrectly converts encryption key source values, resulting in lower than expected entropy. NOTE: this issue exists because of an incomplete fix for CVE-2018-1…	CWE-331 Insufficient Entropy	CVE-2018-18326	2024-11-21 12:55	2019-07-4	Show	GitHub Exploit DB Packet Storm

245937	9.8	CRITICAL Network	scriptzee	hotel_booking_engine	SQL injection exists in Scriptzee Hotel Booking Engine 1.0 via the hotels h_room_type parameter.	CWE-89 SQL Injection	CVE-2018-17842	2024-11-21 12:55	2019-06-20	Show	GitHub Exploit DB Packet Storm

245938	9.8	CRITICAL Network	flippa_marketplace_clone_project	flippa_marketplace_clone	SQL injection exists in Scriptzee Flippa Marketplace Clone 1.0 via the site-search sortBy or sortDir parameter.	CWE-89 SQL Injection	CVE-2018-17841	2024-11-21 12:55	2019-06-20	Show	GitHub Exploit DB Packet Storm

245939	9.8	CRITICAL Network	education_website_project	education_website	SQL injection exists in Scriptzee Education Website 1.0 via the college_list.html subject, city, or country parameter.	CWE-89 SQL Injection	CVE-2018-17840	2024-11-21 12:55	2019-06-20	Show	GitHub Exploit DB Packet Storm

245940	9.8	CRITICAL Network	westerndigital	my_book_live_firmware	Western Digital WD My Book Live and WD My Book Live Duo (all versions) have a root Remote Command Execution bug via shell metacharacters in the /api/1.0/rest/language_configuration language parameter…	CWE-78 OS Command	CVE-2018-18472	2024-11-21 12:55	2019-06-20	Show	GitHub Exploit DB Packet Storm