Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 19, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258381	7.6	危険	マイクロソフト	-	複数の Microsoft 製品の Comctl32.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2746	2010-10-28 16:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

258382	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3240	2010-10-28 16:35	2010-10-12	Show	GitHub Exploit DB Packet Storm

258383	9.3	危険	マイクロソフト	-	Microsoft Excel および Microsoft Office における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3238	2010-10-28 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

258384	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3236	2010-10-28 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

258385	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3233	2010-10-28 16:34	2010-10-12	Show	GitHub Exploit DB Packet Storm

258386	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3232	2010-10-28 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

258387	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3242	2010-10-28 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

258388	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3241	2010-10-28 16:33	2010-10-12	Show	GitHub Exploit DB Packet Storm

258389	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3239	2010-10-28 16:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

258390	9.3	危険	マイクロソフト	-	Microsoft Excel および Microsoft Office における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3237	2010-10-28 16:32	2010-10-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196551	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. Credentials in /fhconf/umconfig.txt are obfuscated via XOR with the hardcoded j7a(L#yZ98sSd5HfSgGjMj8;Ss;d)(&^#@$a2s0i3g key. (T…	CWE-798 Use of Hard-coded Credentials	CVE-2021-27141	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196552	7.5	HIGH Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to find passwords and authentication cookies stored in cleartext in the web.log HTTP logs.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-27140	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196553	7.5	HIGH Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to extract information from the device without authentication by disabling JavaScript and visiting /info.asp.	NVD-CWE-noinfo	CVE-2021-27139	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196554	7.5	HIGH Network	henriquedornas	henriquedornas	An information disclosure issue exists in henriquedornas 5.2.17 because an attacker can dump phpMyAdmin SQL content. NOTE: third parties report that this is a site-specific problem	NVD-CWE-noinfo	CVE-2021-26939	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196555	5.4	MEDIUM Network	henriquedornas	henriquedornas	A stored XSS issue exists in henriquedornas 5.2.17 via online live chat. NOTE: Third parties report that no such product exists. That henriquedornas is the web design agency and 5.2.17 is simply the …	CWE-79 Cross-site Scripting	CVE-2021-26938	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196556	7.8	HIGH Local	replaysorcery_project	replaysorcery	The replay-sorcery program in ReplaySorcery 0.4.0 through 0.5.0, when using the default setuid-root configuration, allows a local attacker to escalate privileges to root by specifying video output pa…	CWE-269 Improper Privilege Management	CVE-2021-26936	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196557	9.8	CRITICAL Network	invisible-island debian fedoraproject	xterm debian_linux fedora	xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence.	NVD-CWE-noinfo	CVE-2021-27135	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196558	8.8	HIGH Network	xcb_project	xcb	An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because transmutation to the wrong type can happen after xcb::base::cast_event uses std::mem::transm…	CWE-252 Unchecked Return Value	CVE-2021-26958	2024-11-21 14:57	2021-02-10	Show	GitHub Exploit DB Packet Storm

196559	9.8	CRITICAL Network	xcb_project	xcb	An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because there is an out-of-bounds read in xcb::xproto::change_property(), as demonstrated by a forma…	CWE-125 Out-of-bounds Read	CVE-2021-26957	2024-11-21 14:57	2021-02-10	Show	GitHub Exploit DB Packet Storm

196560	9.8	CRITICAL Network	xcb_project	xcb	An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because bytes from an X server can be interpreted as any data type returned by xcb::xproto::GetPrope…	NVD-CWE-noinfo	CVE-2021-26956	2024-11-21 14:57	2021-02-10	Show	GitHub Exploit DB Packet Storm