Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196841 5.5 警告
Local 		Erik de Castro Lopo - libsndfile の pcm.c の i2les_array 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-8365 2017-05-25 18:46 2017-04-29 Show GitHub Exploit DB Packet Storm
196842 5.5 警告
Local 		Erik de Castro Lopo - libsndfile の flac.c の flac_buffer_copy 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-8363 2017-05-25 18:46 2017-04-29 Show GitHub Exploit DB Packet Storm
196843 5.5 警告
Local 		Erik de Castro Lopo - libsndfile の flac.c の flac_buffer_copy 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-125
境界外読み取り 		CVE-2017-8362 2017-05-25 18:46 2017-04-29 Show GitHub Exploit DB Packet Storm
196844 5.5 警告
Local 		Erik de Castro Lopo - libsndfile の flac.c の flac_buffer_copy 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2017-8361 2017-05-25 18:46 2017-04-29 Show GitHub Exploit DB Packet Storm
196845 5.5 警告
Local 		libarchive - libarchive の archive_read_support_format_cab.c の archive_read_format_cab_read_ヘッダ関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-10350 2017-05-25 18:44 2016-12-6 Show GitHub Exploit DB Packet Storm
196846 5.5 警告
Local 		libarchive - libarchive の archive_endian.h の archive_le32dec 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-10349 2017-05-25 18:44 2016-12-6 Show GitHub Exploit DB Packet Storm
196847 7.8 重要
Local 		Grandstream Networks - Android 用 Grandstream Wave アプリケーションにおける任意のコードを実行される脆弱性 CWE-254
セキュリティ機能 		CVE-2016-1520 2017-05-25 18:16 2016-03-18 Show GitHub Exploit DB Packet Storm
196848 5.4 警告
Network 		シスコシステムズ - Cisco Integrated Management Controller の Web ベースの GUI における認証に関する脆弱性 CWE-287
不適切な認証 		CVE-2017-6617 2017-05-25 18:07 2017-04-19 Show GitHub Exploit DB Packet Storm
196849 6.3 警告
Network 		シスコシステムズ - Cisco IOS XE の Simple Network Management Protocol サブシステムにおけるリソース管理に関する脆弱性 CWE-399
リソース管理の問題 		CVE-2017-6615 2017-05-25 18:07 2017-04-19 Show GitHub Exploit DB Packet Storm
196850 6.5 警告
Network 		シスコシステムズ - Cisco FindIT Network Probe ソフトウェア用 Web ユーザインターフェースにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-2017-6614 2017-05-25 18:07 2017-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2691 8.2 HIGH
Network 		- - E-Registrasi Pencak Silat 18.10 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id_partai parame… CWE-89
SQL Injection 		CVE-2018-25385 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2692 8.2 HIGH
Network 		- - HaPe PKH 1.1 contains multiple SQL injection vulnerabilities in admin/media.php that allow attackers to manipulate database queries by injecting SQL code through the 'id' parameter. An unauthenticate… CWE-89
SQL Injection 		CVE-2018-25386 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2693 5.3 MEDIUM
Network 		- - HaPe PKH 1.1 contains a cross-site request forgery vulnerability that allows attackers to change administrator passwords by submitting forged requests to the user update endpoint. Attackers can craft… CWE-352
 Origin Validation Error 		CVE-2018-25387 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2694 8.8 HIGH
Network 		- - HaPe PKH 1.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files by bypassing file type validation. Attackers can upload PHP files through mu… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-25388 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2695 8.2 HIGH
Network 		- - HaPe PKH 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'nama_kelompok' POST parameter sent to lap-… CWE-89
SQL Injection 		CVE-2018-25389 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2696 8.2 HIGH
Network 		- - HaPe PKH 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'desa' POST parameter sent to lap-peserta-p… CWE-89
SQL Injection 		CVE-2018-25390 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2697 7.5 HIGH
Network 		- - HaPe PKH 1.1 fails to enforce authorization on its record deletion endpoints, allowing unauthenticated attackers to delete arbitrary records by sending a crafted request that specifies the target rec… CWE-862
 Missing Authorization 		CVE-2018-25391 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2698 7.1 HIGH
Network 		- - MaxOn ERP Software 8.x-9.x contains an SQL injection vulnerability that allows authenticated users to execute arbitrary SQL queries through the nomor, user, and jenis parameters in the log_activity f… CWE-89
SQL Injection 		CVE-2018-25392 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2699 6.5 MEDIUM
Network 		- - Navigate CMS 2.8.5 contains a path traversal vulnerability that allows authenticated users to download arbitrary files by injecting directory traversal sequences in the id parameter. Attackers can se… CWE-22
Path Traversal 		CVE-2018-25393 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
2700 8.2 HIGH
Network 		- - Kados R10 GreenBee contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the release_id parameter of board… CWE-89
SQL Injection 		CVE-2018-25394 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm