Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
260511 6.8 警告 アップル - Apple Mac OS X の CoreAudio における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0059 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
260512 6.4 警告 アップル - Apple Mac OS X の ClamAV におけるシステムにウィルスを取り込む脆弱性 CWE-16
環境設定 		CVE-2010-0058 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
260513 7.5 危険 アップル - Apple Mac OS X の AFP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0533 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
260514 7.5 危険 アップル - Apple Mac OS X の AFP サーバにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0057 2010-04-13 15:16 2010-03-29 Show GitHub Exploit DB Packet Storm
260515 6.4 警告 アップル - Apple Mac OS X のアプリケーションファイアウォールにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2801 2010-04-13 15:15 2010-03-29 Show GitHub Exploit DB Packet Storm
260516 6.8 警告 アップル - Apple Mac OS X の Cocoa のスペルチェック機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0056 2010-04-13 15:15 2010-03-29 Show GitHub Exploit DB Packet Storm
260517 4.4 警告 アップル
サイバートラスト株式会社
Carnegie Mellon University (Project Cyrus)
レッドハット		 - Cyrus IMAPd にバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-2632 2010-04-13 14:46 2009-09-10 Show GitHub Exploit DB Packet Storm
260518 7.5 危険 Haxx
アップル
サイバートラスト株式会社
レッドハット		 - cURL および libcurl における、任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-2417 2010-04-13 14:46 2009-08-12 Show GitHub Exploit DB Packet Storm
260519 6.8 警告 Haxx
アップル
サイバートラスト株式会社
レッドハット		 - curl および libcurl の redirect 実装における任意のコマンドを実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-0037 2010-04-13 14:45 2009-03-3 Show GitHub Exploit DB Packet Storm
260520 9.3 危険 ジャストシステム - 一太郎シリーズにおける任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1424 2010-04-12 15:32 2010-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247741 9.8 CRITICAL
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Cleartext Storage of Sensitive Information. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2018-18641 2024-11-21 12:56 2018-12-5 Show GitHub Exploit DB Packet Storm
247742 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Information Exposure Through Browser Caching. CWE-200
Information Exposure 		CVE-2018-18640 2024-11-21 12:56 2018-12-5 Show GitHub Exploit DB Packet Storm
247743 7.8 HIGH
Local 		omron cx-one
cx-programmer
cx-server 		In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior), when processing project files, the application fails to check if it is referencing f… CWE-416
 Use After Free 		CVE-2018-18989 2024-11-21 12:56 2018-12-5 Show GitHub Exploit DB Packet Storm
247744 6.1 MEDIUM
Network 		spidercontrol scada_webserver Reflected cross-site scripting (non-persistent) in SCADA WebServer (Versions prior to 2.03.0001) could allow an attacker to send a crafted URL that contains JavaScript, which can be reflected off the… CWE-79
Cross-site Scripting 		CVE-2018-18991 2024-11-21 12:56 2018-12-5 Show GitHub Exploit DB Packet Storm
247745 8.8 HIGH
Network 		invt vt-designer VT-Designer Version 2.1.7.31 is vulnerable by the program populating objects with user supplied input via a file without first checking for validity, allowing attacker supplied input to be written to… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-18987 2024-11-21 12:56 2018-12-1 Show GitHub Exploit DB Packet Storm
247746 8.8 HIGH
Network 		invt vt-designer VT-Designer Version 2.1.7.31 is vulnerable by the program reading the contents of a file (which is already in memory) into another heap-based buffer, which may cause the program to crash or allow rem… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-18983 2024-11-21 12:56 2018-12-1 Show GitHub Exploit DB Packet Storm
247747 7.8 HIGH
Local 		switchvpn switchvpn A local privilege escalation vulnerability has been identified in the SwitchVPN client 2.1012.03 for macOS. Due to over-permissive configuration settings and a SUID binary, an attacker is able to exe… NVD-CWE-noinfo
CVE-2018-18860 2024-11-21 12:56 2018-12-1 Show GitHub Exploit DB Packet Storm
247748 9.8 CRITICAL
Network 		advanced_comment_system_project advanced_comment_system internal/advanced_comment_system/admin.php in Advanced Comment System 1.0 is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an… CWE-89
SQL Injection 		CVE-2018-18619 2024-11-21 12:56 2018-11-30 Show GitHub Exploit DB Packet Storm
247749 9.8 CRITICAL
Network 		gitlab gitlab An issue was discovered in the wiki API in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows for remote code execution. NVD-CWE-noinfo
CVE-2018-18649 2024-11-21 12:56 2018-11-30 Show GitHub Exploit DB Packet Storm
247750 8.8 HIGH
Network 		nuuo nuuo_cms NUUO CMS All versions 3.3 and prior the web server application allows injection of arbitrary SQL characters, which can be used to inject SQL into an executing statement and allow arbitrary code execu… CWE-89
SQL Injection 		CVE-2018-18982 2024-11-21 12:56 2018-11-28 Show GitHub Exploit DB Packet Storm