Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 26, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
244961	5.8	警告	サイボウズ	-	サイボウズLive for Android において任意の Java のメソッドが実行される脆弱性	CWE-DesignError	CVE-2012-4008	2012-08-31 16:00	2012-08-31	Show	GitHub Exploit DB Packet Storm

244962	4.3	警告	Bueltge	-	WordPress 用 Adminimize プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5128	2012-08-31 15:29	2012-08-29	Show	GitHub Exploit DB Packet Storm

244963	4.3	警告	Bueltge	-	WordPress 用 Adminimize プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4926	2012-08-31 15:27	2012-08-29	Show	GitHub Exploit DB Packet Storm

244964	4.3	警告	Elxis	-	Elxis CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4918	2012-08-31 15:26	2011-11-23	Show	GitHub Exploit DB Packet Storm

244965	7.5	危険	vBulletin Solutions, Inc.	-	vBulletin の announcement.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-4686	2012-08-31 15:25	2012-08-28	Show	GitHub Exploit DB Packet Storm

244966	4.3	警告	Arbor Networks	-	Arbor Networks Peakflow SP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4685	2012-08-31 15:24	2012-08-28	Show	GitHub Exploit DB Packet Storm

244967	6.8	警告	Gajim.org	-	Gajim の common/helpers.py における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-2085	2012-08-31 15:22	2011-11-4	Show	GitHub Exploit DB Packet Storm

244968	6	警告	Giant Robot	-	Drupal 用 ZipCart モジュールにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1650	2012-08-31 15:05	2012-02-29	Show	GitHub Exploit DB Packet Storm

244969	4.3	警告	MediaFront	-	Drupal 用 MediaFront モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1647	2012-08-31 15:02	2012-02-29	Show	GitHub Exploit DB Packet Storm

244970	2.6	注意	Wim Leers	-	Drupal 用 CDN モジュールにおける任意の PHP ファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2012-1645	2012-08-31 14:57	2012-02-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251941	8.1	HIGH Network	mycroft	mycroft-core	Mycroft AI mycroft-core version 18.2.8b and earlier contains a Incorrect Access Control vulnerability in Websocket configuration that can result in code execution. This impacts ONLY the Mycroft for L…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-1000621	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251942	9.8	CRITICAL Network	cryptiles_project	cryptiles	Eran Hammer cryptiles version 4.1.1 earlier contains a CWE-331: Insufficient Entropy vulnerability in randomDigits() method that can result in An attacker is more likely to be able to brute force som…	CWE-331 Insufficient Entropy	CVE-2018-1000620	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251943	8.8	HIGH Network	ovidentia	ovidentia	Ovidentia version 8.4.3 and earlier contains a Unsanitized User Input vulnerability in utilit.php, bab_getAddonFilePathfromTg that can result in Authenticated Remote Code Execution. This attack appea…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-1000619	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251944	9.8	CRITICAL Network	eosio_project	eos	EOSIO/eos eos version after commit f1545dd0ae2b77580c2236fdb70ae7138d2c7168 contains a stack overflow vulnerability in abi_serializer that can result in attack eos network node. This attack appear to…	CWE-674 Uncontrolled Recursion	CVE-2018-1000618	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251945	7.5	HIGH Network	atlassian	floodlight_controller	Atlassian Floodlight Atlassian Floodlight Controller version 1.2 and earlier versions contains a Denial of Service vulnerability in Forwarding module that can result in Improper type cast in Forwardi…	CWE-20 Improper Input Validation	CVE-2018-1000617	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251946	9.8	CRITICAL Network	onosproject	onos	ONOS ONOS controller version 1.13.1 and earlier contains a XML External Entity (XXE) vulnerability in onos\drivers\utilities\src\main\java\org\onosproject\drivers\utilities\XmlConfigParser.java loadx…	CWE-611 XXE	CVE-2018-1000616	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251947	7.5	HIGH Network	onosproject	onos	ONOS ONOS Controller version 1.13.1 and earlier contains a Denial of Service (Service crash) vulnerability in OVSDB component in ONOS that can result in An adversary can remotely crash OVSDB service …	NVD-CWE-noinfo	CVE-2018-1000615	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251948	9.8	CRITICAL Network	onosproject	onos	ONOS ONOS Controller version 1.13.1 and earlier contains a XML External Entity (XXE) vulnerability in providers/netconf/alarm/src/main/java/org/onosproject/provider/netconf/alarm/NetconfAlarmTranslat…	CWE-611 XXE	CVE-2018-1000614	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251949	6.1	MEDIUM Network	openconext	openconext_engineblock	SURFnet OpenConext EngineBlock version 5.7.0 to 5.7.3 contains a Cross Site Scripting (XSS) vulnerability that can result in Allows an attacker to inject arbitrary web scripts or HTML into help and l…	CWE-79 Cross-site Scripting	CVE-2018-1000611	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm

251950	9.8	CRITICAL Network	bouncycastle netapp opensuse oracle	legion-of-the-bouncy-castle-java-crytography-api oncommand_workflow_automation leap retail_xstore_point_of_service api_gateway enterprise_repository peoplesoft_enterprise_peopletool…	Legion of the Bouncy Castle Legion of the Bouncy Castle Java Cryptography APIs 1.58 up to but not including 1.60 contains a CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Uns…	CWE-470 Unsafe Reflection	CVE-2018-1000613	2024-11-21 12:40	2018-07-10	Show	GitHub Exploit DB Packet Storm