Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
260671	9.3	危険	日本電気アップル富士通古河電気工業ヒューレット・パッカードインターネットイニシアティブアラクサラネットワークス日立	-	IPv6 NDP 実装における Neighbor Discovery メッセージの送信元検証処理に関する脆弱性	CWE-20 不適切な入力確認	CVE-2008-2476	2010-03-3 11:43	2008-10-3	Show	GitHub Exploit DB Packet Storm

260672	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0034	2010-03-2 11:29	2010-02-9	Show	GitHub Exploit DB Packet Storm

260673	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0033	2010-03-2 11:28	2010-02-9	Show	GitHub Exploit DB Packet Storm

260674	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint における任意のコードを実行される脆弱性	CWE-94 CWE-Other	CVE-2010-0032	2010-03-2 11:28	2010-02-9	Show	GitHub Exploit DB Packet Storm

260675	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0031	2010-03-2 11:27	2010-02-9	Show	GitHub Exploit DB Packet Storm

260676	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0030	2010-03-2 11:27	2010-02-9	Show	GitHub Exploit DB Packet Storm

260677	9.3	危険	マイクロソフト	-	Microsoft Office PowerPoint におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0029	2010-03-2 11:26	2010-02-9	Show	GitHub Exploit DB Packet Storm

260678	10	危険	マイクロソフト	-	Microsoft Office の MSO.DLL におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0243	2010-03-1 11:37	2010-02-9	Show	GitHub Exploit DB Packet Storm

260679	9.3	危険	マイクロソフト	-	Microsoft DirectX の DirectShow におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0250	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

260680	7.8	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0242	2010-03-1 11:36	2010-02-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245441	6.1	MEDIUM Network	search-guard	search_guard	The floragunn Search Guard plugin before 6.x-16 for Kibana allows URL injection for login redirects on the login page when basePath is set.	CWE-601 Open Redirect	CVE-2018-20698	2024-11-21 13:02	2019-04-10	Show	GitHub Exploit DB Packet Storm

245442	6.1	MEDIUM Network	salesagility	suitecrm	An XSS combined with CSRF vulnerability discovered in SalesAgility SuiteCRM 7.x before 7.8.24 and 7.10.x before 7.10.11 leads to cookie stealing, aka session hijacking. This issue affects the "add da…	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2018-20816	2024-11-21 13:02	2019-04-6	Show	GitHub Exploit DB Packet Storm

245443	5.4	MEDIUM Network	wso2	api_manager identity_server identity_server_as_key_manager	An issue was discovered in WSO2 API Manager 2.1.0 and 2.6.0. Reflected XSS exists in the carbon part of the product.	CWE-79 Cross-site Scripting	CVE-2018-20737	2024-11-21 13:02	2019-03-22	Show	GitHub Exploit DB Packet Storm

245444	5.4	MEDIUM Network	wso2	api_manager	An issue was discovered in WSO2 API Manager 2.1.0 and 2.6.0. A DOM-based XSS exists in the store part of the product.	CWE-79 Cross-site Scripting	CVE-2018-20736	2024-11-21 13:02	2019-03-22	Show	GitHub Exploit DB Packet Storm

245445	6.1	MEDIUM Network	phamm	phamm	Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter).	CWE-79 Cross-site Scripting	CVE-2018-20806	2024-11-21 13:02	2019-03-18	Show	GitHub Exploit DB Packet Storm

245446	7.5	HIGH Network	highcharts	highcharts	In js/parts/SvgRenderer.js in Highcharts JS before 6.1.0, the use of backtracking regular expressions permitted an attacker to conduct a denial of service attack against the SVGRenderer component, ak…	CWE-185 Incorrect Regular Expression	CVE-2018-20801	2024-11-21 13:02	2019-03-15	Show	GitHub Exploit DB Packet Storm

245447	6.5	MEDIUM Network	otrs	otrs	An issue was discovered in Open Ticket Request System (OTRS) 5.0.31 and 6.0.13. Users updating to 6.0.13 (also patchlevel updates) or 5.0.31 (only major updates) will experience data loss in their ag…	CWE-20 Improper Input Validation	CVE-2018-20800	2024-11-21 13:02	2019-03-14	Show	GitHub Exploit DB Packet Storm

245448	7.5	HIGH Network	netgate	pfsense	In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of source IP addresses on the basis of failed SSH authentication (the beh…	NVD-CWE-noinfo	CVE-2018-20799	2024-11-21 13:02	2019-03-2	Show	GitHub Exploit DB Packet Storm

245449	7.5	HIGH Network	netgate	pfsense	The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implemented by sshguard, which might make it easier for attackers to bypass…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-20798	2024-11-21 13:02	2019-03-2	Show	GitHub Exploit DB Packet Storm

245450	6.5	MEDIUM Network	podofo_project	podofo	An issue was discovered in PoDoFo 0.9.6. There is an attempted excessive memory allocation in PoDoFo::podofo_calloc in base/PdfMemoryManagement.cpp when called from PoDoFo::PdfPredictorDecoder::PdfPr…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-20797	2024-11-21 13:02	2019-02-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed