Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259931 7.6 危険 Mozilla Foundation - Mozilla Firefox の nsDocument::MaybePreLoadImage 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0168 2010-04-6 16:49 2010-03-23 Show GitHub Exploit DB Packet Storm
259932 9.3 危険 Mozilla Foundation - Mozilla Firefox の imgContainer::InternalAddFrameHelper 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0164 2010-04-6 16:49 2010-03-23 Show GitHub Exploit DB Packet Storm
259933 4.3 警告 Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0171 2010-04-5 14:54 2010-03-23 Show GitHub Exploit DB Packet Storm
259934 4.3 警告 Mozilla Foundation - Mozilla Firefox における同一生成元ポリシーを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0170 2010-04-5 14:53 2010-03-23 Show GitHub Exploit DB Packet Storm
259935 7.5 危険 Heartlogic - HL-SiteManager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1331 2010-04-2 15:02 2010-04-2 Show GitHub Exploit DB Packet Storm
259936 9.3 危険 Mozilla Foundation - Mozilla Firefox の Web Open Fonts Format デコーダ における整数オーバーフローの脆弱性 CWE-noinfo
情報不足 		CVE-2010-1028 2010-04-2 14:05 2010-03-19 Show GitHub Exploit DB Packet Storm
259937 5 警告 富士通
アクセラテクノロジ		 - Accela BizSearch のローカル収集におけるアクセス権限に関する脆弱性 CWE-200
情報漏えい 		- 2010-04-2 14:05 2010-03-10 Show GitHub Exploit DB Packet Storm
259938 1.9 注意 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel における SCSI ホストの属性に任意の変更を加えられる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3556 2010-04-2 14:02 2010-01-19 Show GitHub Exploit DB Packet Storm
259939 10 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の e1000e ドライバにおけるイーサネットフレームの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2009-4538 2010-04-2 14:02 2010-01-12 Show GitHub Exploit DB Packet Storm
259940 6.6 警告 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の poll_mode_io ファイルにおけるドライバの I/O モードを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-3939 2010-04-2 14:00 2009-11-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246781 6.1 MEDIUM
Network 		jenzabar jenzabar Cross-site scripting (XSS) vulnerability in Jenzabar v8.2.1 through 9.2.0 allows remote attackers to inject arbitrary web script or HTML via the query parameter (aka the Search Field). CWE-79
Cross-site Scripting 		CVE-2018-16778 2024-11-21 12:53 2018-12-22 Show GitHub Exploit DB Packet Storm
246782 6.1 MEDIUM
Network 		getkirby kirby panel/login in Kirby v2.5.12 allows Host header injection via the "forget password" feature. CWE-74
Injection 		CVE-2018-16627 2024-11-21 12:53 2018-12-21 Show GitHub Exploit DB Packet Storm
246783 5.5 MEDIUM
Local 		fedoraproject sssd sssd versions from 1.13.0 to before 2.0.0 did not properly restrict access to the infopipe according to the "allowed_uids" configuration parameter. If sensitive information were stored in the user di… CWE-200
Information Exposure 		CVE-2018-16883 2024-11-21 12:53 2018-12-19 Show GitHub Exploit DB Packet Storm
246784 8.0 HIGH
Adjacent 		linux
redhat
debian
canonical 		linux_kernel
enterprise_linux
enterprise_mrg
debian_linux
ubuntu_linux 		A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process() use wrong back-channel IDs and cause a use-af… - CVE-2018-16884 2024-11-21 12:53 2018-12-19 Show GitHub Exploit DB Packet Storm
246785 7.5 HIGH
Adjacent 		swisscom internet-box_standard_firmware
internet-box_light_firmware
internet-box_plus_firmware
internet-box_2_firmware 		A stack-based buffer overflow in the LAN UPnP service running on UDP port 1900 of Swisscom Internet-Box (2, Standard, and Plus) prior to v09.04.00 and Internet-Box light prior to v08.05.02 allows rem… CWE-787
 Out-of-bounds Write 		CVE-2018-16596 2024-11-21 12:53 2018-12-18 Show GitHub Exploit DB Packet Storm
246786 7.5 HIGH
Network 		golang
opensuse 		go
leap 		The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs … CWE-295
Improper Certificate Validation  		CVE-2018-16875 2024-11-21 12:53 2018-12-14 Show GitHub Exploit DB Packet Storm
246787 8.1 HIGH
Network 		golang
opensuse
suse
debian 		go
leap
linux_enterprise_server
backports_sle
debian_linux 		In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both … - CVE-2018-16874 2024-11-21 12:53 2018-12-14 Show GitHub Exploit DB Packet Storm
246788 8.1 HIGH
Network 		golang
opensuse
suse
debian 		go
leap
linux_enterprise_server
backports_sle
debian_linux 		In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package th… - CVE-2018-16873 2024-11-21 12:53 2018-12-14 Show GitHub Exploit DB Packet Storm
246789 5.3 MEDIUM
Network 		qemu
debian
fedoraproject
canonical
opensuse 		qemu
debian_linux
fedora
ubuntu_linux
leap 		A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn't consider that the… - CVE-2018-16872 2024-11-21 12:53 2018-12-14 Show GitHub Exploit DB Packet Storm
246790 7.8 HIGH
Local 		qemu
fedoraproject
canonical 		qemu
fedora
ubuntu_linux 		A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When … CWE-362
Race Condition 		CVE-2018-16867 2024-11-21 12:53 2018-12-12 Show GitHub Exploit DB Packet Storm