Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
260091	9.3	危険	シマンテック	-	Symantec Workspace Streaming (旧 Symantec AppStream) に脆弱性	CWE-287 不適切な認証	CVE-2008-4389	2010-07-14 17:26	2010-06-22	Show	GitHub Exploit DB Packet Storm

260092	5.8	警告	アップル	-	Apple iOS の設定アプリケーションにおけるユーザを追跡可能な脆弱性	CWE-DesignError	CVE-2010-1756	2010-07-14 17:26	2010-06-22	Show	GitHub Exploit DB Packet Storm

260093	4.3	警告	アップル	-	Apple iOS の Safari におけるリモートの Web サーバがユーザを追跡可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1755	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

260094	1.9	注意	アップル	-	Apple iOS のパスコードロックにおける任意のデータにアクセスされる脆弱性	CWE-362 競合状態	CVE-2010-1775	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

260095	6.9	警告	アップル	-	Apple iOS のパスコードロックにおけるパスコード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1754	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

260096	6.8	警告	アップル	-	Apple iOS の ImageIO における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1753	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

260097	5	警告	アップル	-	Apple iOS の Application Sandbox におけるロケーション情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1751	2010-07-14 17:24	2010-06-22	Show	GitHub Exploit DB Packet Storm

260098	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1774	2010-07-14 16:44	2010-06-10	Show	GitHub Exploit DB Packet Storm

260099	4.3	警告	アップル	-	Apple Safari の WebKit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1762	2010-07-14 16:44	2010-06-10	Show	GitHub Exploit DB Packet Storm

260100	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-1761	2010-07-14 16:44	2010-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
252561	6.1	MEDIUM Network	hongcms_project	hongcms	system\errors\404.php in HongCMS 3.0.0 has XSS via crafted input that triggers a 404 HTTP status code.	CWE-79 Cross-site Scripting	CVE-2018-12266	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252562	8.8	HIGH Network	exiv2 debian canonical	exiv2 debian_linux ubuntu_linux	Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp.	CWE-125 CWE-190 Out-of-bounds Read Integer Overflow or Wraparound	CVE-2018-12265	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252563	8.8	HIGH Network	exiv2 debian canonical	exiv2 debian_linux ubuntu_linux	Exiv2 0.26 has integer overflows in LoaderTiff::getData() in preview.cpp, leading to an out-of-bounds read in Exiv2::ValueType::setDataArea in value.hpp.	CWE-125 CWE-190 Out-of-bounds Read Integer Overflow or Wraparound	CVE-2018-12264	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252564	8.8	HIGH Network	portfoliocms_project	portfoliocms	portfolioCMS 1.0.5 allows upload of arbitrary .php files via the admin/portfolio.php?newpage=true URI.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-12263	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252565	4.4	MEDIUM Local	apollotechnologiesinc	momentum_axel_720p_firmware	An issue was discovered on Momentum Axel 720P 5.1.8 devices. All processes run as root.	CWE-269 Improper Privilege Management	CVE-2018-12261	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252566	6.7	MEDIUM Local	apollotechnologiesinc	momentum_axel_720p_firmware	An issue was discovered on Momentum Axel 720P 5.1.8 devices. The root password can be obtained in cleartext by issuing the command 'showKey' from the root CLI. This password may be the same on all de…	CWE-522 Insufficiently Protected Credentials	CVE-2018-12260	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252567	6.8	MEDIUM Physics	apollotechnologiesinc	momentum_axel_720p_firmware	An issue was discovered on Momentum Axel 720P 5.1.8 devices. Root access can be obtained via UART pins without any restrictions, which leads to full system compromise.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-12259	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252568	6.8	MEDIUM Physics	apollotechnologiesinc	momentum_axel_720p_firmware	An issue was discovered on Momentum Axel 720P 5.1.8 devices. Custom Firmware Upgrade is possible via an SD Card. With physical access, an attacker can upgrade the firmware in under 60 seconds by inse…	NVD-CWE-noinfo	CVE-2018-12258	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252569	4.4	MEDIUM Local	apollotechnologiesinc	momentum_axel_720p_firmware	An issue was discovered on Momentum Axel 720P 5.1.8 devices. There is Authenticated Custom Firmware Upgrade via DNS Hijacking. An authenticated root user with CLI access is able to remotely upgrade f…	CWE-295 Improper Certificate Validation	CVE-2018-12257	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm

252570	8.8	HIGH Network	harmistechnology	ek_rishta	router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI.	CWE-89 SQL Injection	CVE-2018-12254	2024-11-21 12:44	2018-06-13	Show	GitHub Exploit DB Packet Storm