Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227141 2.6 注意 アップル - Safari における情報漏えいの脆弱性 CWE-Other
その他 		- 2013-05-31 12:03 2013-05-31 Show GitHub Exploit DB Packet Storm
227142 7.2 危険 Google
LG Electronics		 - LG Optimus G E973 上の Android 用 LG Hidden Menu における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-3666 2013-05-30 16:39 2013-05-23 Show GitHub Exploit DB Packet Storm
227143 6.8 警告 IBM - UNIX 用の IBM Sterling Connect:Direct におけるファイルシステムの読み取り権限および書き込み権限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2989 2013-05-30 16:37 2013-05-14 Show GitHub Exploit DB Packet Storm
227144 4.3 警告 IBM - IBM Tivoli Monitoring の Tivoli Enterprise Portal browser クライアントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0576 2013-05-30 16:36 2013-05-17 Show GitHub Exploit DB Packet Storm
227145 4.3 警告 IBM - IBM WebSphere DataPower SOA アプライアンスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0499 2013-05-30 16:34 2013-05-17 Show GitHub Exploit DB Packet Storm
227146 7.2 危険 レッドハット - Red Hat livecd-tools における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2069 2013-05-30 14:07 2013-05-23 Show GitHub Exploit DB Packet Storm
227147 4.9 警告 マイクロソフト - Microsoft Windows の win32k.sys の EPATHOBJ::bFlatten 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3661 2013-05-29 16:54 2013-05-17 Show GitHub Exploit DB Packet Storm
227148 5 警告 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2013-2959 2013-05-29 16:37 2013-05-13 Show GitHub Exploit DB Packet Storm
227149 3.5 注意 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2957 2013-05-29 16:37 2013-05-13 Show GitHub Exploit DB Packet Storm
227150 7.5 危険 IBM - IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-2956 2013-05-29 16:36 2013-05-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
3321 8.2 HIGH
Network 		- - HaPe PKH 1.1 contains multiple SQL injection vulnerabilities in admin/media.php that allow attackers to manipulate database queries by injecting SQL code through the 'id' parameter. An unauthenticate… CWE-89
SQL Injection 		CVE-2018-25386 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3322 5.3 MEDIUM
Network 		- - HaPe PKH 1.1 contains a cross-site request forgery vulnerability that allows attackers to change administrator passwords by submitting forged requests to the user update endpoint. Attackers can craft… CWE-352
 Origin Validation Error 		CVE-2018-25387 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3323 8.8 HIGH
Network 		- - HaPe PKH 1.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files by bypassing file type validation. Attackers can upload PHP files through mu… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-25388 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3324 8.2 HIGH
Network 		- - HaPe PKH 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'nama_kelompok' POST parameter sent to lap-… CWE-89
SQL Injection 		CVE-2018-25389 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3325 8.2 HIGH
Network 		- - HaPe PKH 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'desa' POST parameter sent to lap-peserta-p… CWE-89
SQL Injection 		CVE-2018-25390 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3326 7.5 HIGH
Network 		- - HaPe PKH 1.1 fails to enforce authorization on its record deletion endpoints, allowing unauthenticated attackers to delete arbitrary records by sending a crafted request that specifies the target rec… CWE-862
 Missing Authorization 		CVE-2018-25391 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3327 7.1 HIGH
Network 		- - MaxOn ERP Software 8.x-9.x contains an SQL injection vulnerability that allows authenticated users to execute arbitrary SQL queries through the nomor, user, and jenis parameters in the log_activity f… CWE-89
SQL Injection 		CVE-2018-25392 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3328 6.5 MEDIUM
Network 		- - Navigate CMS 2.8.5 contains a path traversal vulnerability that allows authenticated users to download arbitrary files by injecting directory traversal sequences in the id parameter. Attackers can se… CWE-22
Path Traversal 		CVE-2018-25393 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3329 8.2 HIGH
Network 		- - Kados R10 GreenBee contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the release_id parameter of board… CWE-89
SQL Injection 		CVE-2018-25394 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm
3330 8.2 HIGH
Network 		- - Kados R10 GreenBee contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the feature_id parameter of board… CWE-89
SQL Injection 		CVE-2018-25395 2026-05-30 01:29 2026-05-30 Show GitHub Exploit DB Packet Storm