Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244991 4.3 警告 Miles Johnson - Decoda の decoda/templates/video.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3830 2012-07-5 14:28 2012-07-3 Show GitHub Exploit DB Packet Storm
244992 5 警告 Joomla! - Joomla! におけるインストールパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-3829 2012-07-5 14:23 2012-07-3 Show GitHub Exploit DB Packet Storm
244993 4.3 警告 Joomla! - Joomla! におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3828 2012-07-5 14:22 2012-07-3 Show GitHub Exploit DB Packet Storm
244994 2.1 注意 Fedora Project - Anacond のブートローダ設定モジュールにおけるパスワードハッシュを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2314 2012-07-5 14:09 2012-05-10 Show GitHub Exploit DB Packet Storm
244995 2.6 注意 Ned T. Crigler - dtach の attach.cにおける整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2012-3368 2012-07-5 14:00 2012-07-3 Show GitHub Exploit DB Packet Storm
244996 5 警告 IBM - IBM WebSphere Portal の Dojo モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-2181 2012-07-5 13:57 2012-07-3 Show GitHub Exploit DB Packet Storm
244997 10 危険 アバイア - Avaya Aura Application Server 5300 におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5096 2012-07-5 13:46 2011-08-2 Show GitHub Exploit DB Packet Storm
244998 10 危険 アバイア - Avaya IP Office Customer Call Reporter における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2012-3811 2012-07-5 13:44 2012-06-28 Show GitHub Exploit DB Packet Storm
244999 5 警告 Joomla! - Joomla! における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-2748 2012-07-5 11:57 2012-06-18 Show GitHub Exploit DB Packet Storm
245000 7.5 危険 Joomla! - Joomla! における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2747 2012-07-5 11:56 2012-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252271 6.1 MEDIUM
Network 		jenkins cucumber_living_documentation A cross site scripting vulnerability exists in Jenkins Cucumber Living Documentation Plugin 1.0.12 and older in CukedoctorBaseAction#doDynamic that disables the Content-Security-Policy protection for… CWE-79
Cross-site Scripting 		CVE-2018-1000144 2024-11-21 12:39 2018-04-5 Show GitHub Exploit DB Packet Storm
252272 6.7 MEDIUM
Local 		jenkins github_pull_request_builder An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system acce… CWE-200
Information Exposure 		CVE-2018-1000143 2024-11-21 12:39 2018-04-5 Show GitHub Exploit DB Packet Storm
252273 7.8 HIGH
Local 		jenkins github_pull_request_builder An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system acce… CWE-200
Information Exposure 		CVE-2018-1000142 2024-11-21 12:39 2018-04-5 Show GitHub Exploit DB Packet Storm
252274 8.8 HIGH
Network 		microsoft security_essentials
exchange_server
forefront_endpoint_protection_2010
intune_endpoint_protection
system_center_endpoint_protection
windows_defender 		A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protect… CWE-787
 Out-of-bounds Write 		CVE-2018-0986 2024-11-21 12:39 2018-04-5 Show GitHub Exploit DB Packet Storm
252275 9.1 CRITICAL
Network 		i-librarian i_librarian I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access (read, write and delete) to proj… CWE-269
 Improper Privilege Management 		CVE-2018-1000141 2024-11-21 12:39 2018-03-24 Show GitHub Exploit DB Packet Storm
252276 9.8 CRITICAL
Network 		rsyslog
debian
canonical
redhat 		librelp
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server_tus
enterprise_linux_server
enterpr… 		rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be… CWE-787
 Out-of-bounds Write 		CVE-2018-1000140 2024-11-21 12:39 2018-03-24 Show GitHub Exploit DB Packet Storm
252277 6.1 MEDIUM
Network 		i-librarian i_librarian I, Librarian version 4.8 and earlier contains a Cross Site Scripting (XSS) vulnerability in "id" parameter in stable.php that can result in an attacker using the XSS to send a malicious script to an … CWE-79
Cross-site Scripting 		CVE-2018-1000139 2024-11-21 12:39 2018-03-24 Show GitHub Exploit DB Packet Storm
252278 9.1 CRITICAL
Network 		i-librarian i_librarian I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or upd… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2018-1000138 2024-11-21 12:39 2018-03-24 Show GitHub Exploit DB Packet Storm
252279 8.8 HIGH
Network 		i-librarian i_librarian I, Librarian version 4.8 and earlier contains a Cross site Request Forgery (CSRF) vulnerability in users.php that can result in the password of the admin being forced to be changed without the admini… CWE-352
 Origin Validation Error 		CVE-2018-1000137 2024-11-21 12:39 2018-03-24 Show GitHub Exploit DB Packet Storm
252280 8.1 HIGH
Network 		electronjs electron Electron version 1.7 up to 1.7.12; 1.8 up to 1.8.3 and 2.0.0 up to 2.0.0-beta.3 contains an improper handling of values vulnerability in Webviews that can result in remote code execution. This attack… CWE-20
 Improper Input Validation  		CVE-2018-1000136 2024-11-21 12:39 2018-03-24 Show GitHub Exploit DB Packet Storm