Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
260671 5 警告 The PHP Group - PHP の phar 拡張における重要な情報を取得される脆弱性 CWE-134
書式文字列の問題
CVE-2010-2094 2010-08-18 18:26 2010-05-14 Show GitHub Exploit DB Packet Storm
260672 7.5 危険 The PHP Group - PHP の sqlite_single_query および sqlite_array_query 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-1868 2010-08-18 18:26 2010-05-7 Show GitHub Exploit DB Packet Storm
260673 7.5 危険 The PHP Group - PHP の dechunk フィルタにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題
CVE-2010-1866 2010-08-18 18:26 2010-05-2 Show GitHub Exploit DB Packet Storm
260674 5 警告 The PHP Group - PHP の chunk_split 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-1862 2010-08-18 18:25 2010-05-4 Show GitHub Exploit DB Packet Storm
260675 5 警告 The PHP Group - PHP の addcslashes 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-1864 2010-08-17 17:37 2010-05-3 Show GitHub Exploit DB Packet Storm
260676 5 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-2190 2010-08-17 17:36 2010-05-30 Show GitHub Exploit DB Packet Storm
260677 6.4 警告 The PHP Group - PHP における重要な情報を取得される脆弱性 CWE-119
バッファエラー
CVE-2010-2191 2010-08-17 17:35 2010-05-31 Show GitHub Exploit DB Packet Storm
260678 5 警告 The PHP Group - PHP の Zend Engine における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-1914 2010-08-17 17:34 2010-05-8 Show GitHub Exploit DB Packet Storm
260679 6.4 警告 The PHP Group - PHP の sysvshm 拡張における任意のメモリアドレスを書かれる脆弱性 CWE-399
リソース管理の問題
CVE-2010-1861 2010-08-17 17:33 2010-05-5 Show GitHub Exploit DB Packet Storm
260680 4.3 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット
- 複数の Mozilla 製品における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-0654 2010-08-16 18:57 2010-02-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252241 7.5 HIGH
Network
etherty etherty_token Etherty Token (ETY) is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner. CWE-190
 Integer Overflow or Wraparound
CVE-2018-13128 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252242 7.5 HIGH
Network
sp8de sp8de_presale_token SP8DE PreSale Token (DSPX) is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner. CWE-190
 Integer Overflow or Wraparound
CVE-2018-13127 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252243 7.5 HIGH
Network
moxy moxyonepresale MoxyOnePresale is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner. CWE-190
 Integer Overflow or Wraparound
CVE-2018-13126 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252244 9.8 CRITICAL
Network
onefilecms onefilecms onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to read arbitrary files via the i and f parameters, as demonstrated by ?i=etc/&f=passwd&p=raw_view for the /etc/passwd file. CWE-200
Information Exposure
CVE-2018-13123 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252245 6.5 MEDIUM
Network
onefilecms onefilecms onefilecms.php in OneFileCMS through 2017-10-08 might allow attackers to delete arbitrary files via the Delete File(s) screen, as demonstrated by a ?i=var/www/html/&f=123.php&p=edit&p=deletefile URI. CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-13122 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252246 5.5 MEDIUM
Local
realnetworks realone_player RealOne Player 2.0 Build 6.0.11.872 allows remote attackers to cause a denial of service (array out-of-bounds access and application crash) via a crafted .aiff file. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-13121 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252247 9.8 CRITICAL
Network
zzcms zzcms /user/del.php in zzcms 8.3 allows SQL injection via the tablename parameter after leveraging use of the zzcms_ask table. CWE-89
SQL Injection
CVE-2018-13116 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252248 7.5 HIGH
Network
easy_trading_token_project easy_trading_token The transfer and transferFrom functions of a smart contract implementation for Easy Trading Token (ETT), an Ethereum token, have an integer overflow. NOTE: this has been disputed by a third party. CWE-190
 Integer Overflow or Wraparound
CVE-2018-13113 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252249 7.5 HIGH
Network
broadcom tcpreplay get_l2len in common/get.c in Tcpreplay 4.3.0 beta1 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packets, as demonstrated by tcp… CWE-125
Out-of-bounds Read
CVE-2018-13112 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
252250 4.8 MEDIUM
Network
clippercms clippercms ClipperCMS 1.3.3 has stored XSS via the "Tools -> Configuration" screen of the manager/ URI. CWE-79
Cross-site Scripting
CVE-2018-13106 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm