Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
260921 7.6 危険 マイクロソフト - Internet Explorer において VBScript および Windows Help を使用する際に任意のコードが実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-0483 2010-05-12 15:20 2010-03-2 Show GitHub Exploit DB Packet Storm
260922 7.1 危険 マイクロソフト - Microsoft Windows の kernel における SMB 応答パケットの処理に関するサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他
CVE-2009-3676 2010-05-12 15:20 2009-11-13 Show GitHub Exploit DB Packet Storm
260923 5.8 警告 オラクル - Oracle E-Business Suite の Oracle iStore コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-0868 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
260924 6.4 警告 オラクル - Oracle E-Business Suite の Oracle Application Object Library コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-0859 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
260925 4.3 警告 オラクル - Oracle Collaboration Suite の User Interface コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-0881 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
260926 4.3 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-0855 2010-05-12 15:19 2010-04-13 Show GitHub Exploit DB Packet Storm
260927 4.3 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-0086 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
260928 5 警告 オラクル - Oracle Fusion Middleware の Portal コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-0856 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
260929 5 警告 オラクル - Oracle Fusion Middleware の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-0872 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
260930 2.1 注意 オラクル - Oracle Database の Audit コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2010-0854 2010-05-12 15:18 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250061 4.8 MEDIUM
Network
digimute ogma_cms Ogma CMS 0.4 Beta has XSS via the "Footer Text footer" field on the "Theme/Theme Options" screen. CWE-79
Cross-site Scripting
CVE-2018-16379 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250062 8.8 HIGH
Network
uclouvain openjpeg An issue was discovered in OpenJPEG 2.3.0. A heap-based buffer overflow was discovered in the function t2_encode_packet in lib/openmj2/t2.c. The vulnerability causes an out-of-bounds write, which may… CWE-787
 Out-of-bounds Write
CVE-2018-16376 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250063 8.8 HIGH
Network
uclouvain openjpeg An issue was discovered in OpenJPEG 2.3.0. Missing checks for header_info.height and header_info.width in the function pnmtoimage in bin/jpwl/convert.c can lead to a heap-based buffer overflow. CWE-787
 Out-of-bounds Write
CVE-2018-16375 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250064 4.8 MEDIUM
Network
frog_cms_project frog_cms Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings. CWE-79
Cross-site Scripting
CVE-2018-16374 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250065 4.9 MEDIUM
Network
frog_cms_project frog_cms Frog CMS 0.9.5 has an Upload vulnerability that can create files via /admin/?/plugin/file_manager/save. CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2018-16373 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250066 6.1 MEDIUM
Network
ideacms ideacms The issue was discovered in IdeaCMS through 2016-04-30. There is reflected XSS via the index.php?c=content&a=search kw parameter. NOTE: this product is discontinued. CWE-79
Cross-site Scripting
CVE-2018-16372 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250067 6.1 MEDIUM
Network
pescms pescms_team PESCMS Team 2.2.1 has multiple reflected XSS via the keyword parameter: g=Team&m=User&a=index&keyword=, g=Team&m=User_group&a=index&keyword=, g=Team&m=Department&a=index&keyword=, and g=Team&m=Bullet… CWE-79
Cross-site Scripting
CVE-2018-16371 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250068 9.8 CRITICAL
Network
pescms pescms_team In PESCMS Team 2.2.1, attackers may upload and execute arbitrary PHP code through /Public/?g=Team&m=Setting&a=upgrade by placing a .php file in a ZIP archive. CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2018-16370 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250069 5.5 MEDIUM
Local
xpdfreader xpdf XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (stack consumption) via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE… NVD-CWE-noinfo
CVE-2018-16369 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250070 5.5 MEDIUM
Local
xpdfreader xpdf SplashXPath::strokeAdjust in splash/SplashXPath.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm. CWE-125
Out-of-bounds Read
CVE-2018-16368 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm