Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242051 6.8 警告 Wikka Development Team - WikkaWiki の AdminUsers コンポーネントにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4452 2012-09-7 15:13 2011-11-13 Show GitHub Exploit DB Packet Storm
242052 6.4 警告 Wikka Development Team - WikkaWiki の handlers/files.xml/files.xml.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4450 2012-09-7 15:12 2011-12-6 Show GitHub Exploit DB Packet Storm
242053 6.8 警告 Wikka Development Team - WikkaWiki の actions/files/files.php における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4449 2012-09-7 15:09 2011-12-3 Show GitHub Exploit DB Packet Storm
242054 7.5 危険 Wikka Development Team - WikkaWiki の actions/usersettings/usersettings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4448 2012-09-7 14:56 2011-12-3 Show GitHub Exploit DB Packet Storm
242055 5 警告 Apache Software Foundation - Apache Struts におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4387 2012-09-7 14:54 2012-08-3 Show GitHub Exploit DB Packet Storm
242056 6.8 警告 Apache Software Foundation - Apache Struts のトークンチェックメカニズムにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4386 2012-09-7 14:52 2012-08-3 Show GitHub Exploit DB Packet Storm
242057 5 警告 Thomas Eibner - Apache HTTP Server 用 mod_rpaf モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2012-3526 2012-09-7 14:49 2012-09-5 Show GitHub Exploit DB Packet Storm
242058 2.1 注意 Tigerfish - Drupal 用 Fancy Slide モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2068 2012-09-6 14:05 2012-03-14 Show GitHub Exploit DB Packet Storm
242059 6.8 警告 CKEditor Team - Drupal 用 FCKeditor および CKEditor モジュールにおける任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2012-2067 2012-09-6 14:03 2012-03-14 Show GitHub Exploit DB Packet Storm
242060 4.3 警告 CKEditor Team - Drupal 用 FCKeditor および CKEditor モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-2066 2012-09-6 14:02 2012-03-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2861 6.2 MEDIUM
Local 		- - NASA openVSP 3.16.1 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the geometry name field. Attackers can tri… CWE-120
Classic Buffer Overflow 		CVE-2018-25367 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2862 7.5 HIGH
Network 		- - Nord VPN 6.14.31 contains a denial of service vulnerability that allows unauthenticated attackers to crash the application by submitting an excessively long string in the password field. Attackers ca… CWE-789
 Memory Allocation with Excessive Size Value 		CVE-2018-25368 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2863 6.2 MEDIUM
Local 		- - Visual Ping 0.8.0.0 contains a buffer overflow vulnerability in input field handling that allows local attackers to crash the application by supplying oversized data. Attackers can inject malicious p… CWE-120
Classic Buffer Overflow 		CVE-2018-25369 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2864 5.3 MEDIUM
Network 		- - Admidio 3.3.5 contains a cross-site request forgery vulnerability that allows low-privilege users to increase their permissions by exploiting improper origin checking. Attackers can craft malicious H… CWE-352
 Origin Validation Error 		CVE-2018-25370 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2865 8.2 HIGH
Network 		- - mooSocial Store Plugin 2.6 contains a blind SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries through the product parameter in URL rewrite functionality… CWE-89
SQL Injection 		CVE-2018-25371 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2866 8.2 HIGH
Network 		- - MedDream PACS Server Premium 6.7.1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the email param… CWE-89
SQL Injection 		CVE-2018-25372 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2867 8.4 HIGH
Local 		- - SocuSoft DVD Photo Slideshow Professional 8.07 contains a stack-based buffer overflow vulnerability in the registration name field that allows local attackers to execute arbitrary code by exploiting … CWE-121
Stack-based Buffer Overflow 		CVE-2018-25373 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2868 7.5 HIGH
Network 		- - Softneta MedDream PACS Server Premium 6.7.1.1 contains a directory traversal vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the path parameter. Attackers … CWE-22
Path Traversal 		CVE-2018-25374 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2869 8.4 HIGH
Local 		- - SocuSoft iPod Photo Slideshow 8.05 contains a buffer overflow vulnerability in the registration dialog that allows local attackers to execute arbitrary code by overwriting the structured exception ha… CWE-121
Stack-based Buffer Overflow 		CVE-2018-25375 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm
2870 8.4 HIGH
Local 		- - Socusoft 3GP Photo Slideshow 8.05 contains a buffer overflow vulnerability in the registration dialog that allows local attackers to execute arbitrary code by exploiting structured exception handling… CWE-120
Classic Buffer Overflow 		CVE-2018-25376 2026-05-27 04:47 2026-05-26 Show GitHub Exploit DB Packet Storm