Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
245681 6.9 警告 Gilles Vollant - WinImage における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5253 2012-09-11 15:25 2012-09-7 Show GitHub Exploit DB Packet Storm
245682 6.9 警告 HTTrack - HTTrack における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5252 2012-09-11 15:25 2012-09-7 Show GitHub Exploit DB Packet Storm
245683 6.9 警告 IBM - IBM Lotus Notes における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5251 2012-09-11 15:24 2012-09-7 Show GitHub Exploit DB Packet Storm
245684 6.9 警告 ソフォス - Sophos Free Encryption および Sophos SafeGuard PrivateCrypto における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5249 2012-09-11 15:22 2012-09-7 Show GitHub Exploit DB Packet Storm
245685 6.9 警告 UltraVNC - UltraVNC における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5248 2012-09-11 15:22 2012-09-7 Show GitHub Exploit DB Packet Storm
245686 6.9 警告 QtWeb.NET - QtWeb Browser における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5247 2012-09-11 15:21 2012-09-7 Show GitHub Exploit DB Packet Storm
245687 6.9 警告 Maxthon - Maxthon Browser における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5246 2012-09-11 15:20 2012-09-7 Show GitHub Exploit DB Packet Storm
245688 6.9 警告 Tracker Software Products - PDF-XChange における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5245 2012-09-11 15:20 2012-09-7 Show GitHub Exploit DB Packet Storm
245689 6.9 警告 SiSoftware - SiSoftware Sandra における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5244 2012-09-11 15:19 2012-09-7 Show GitHub Exploit DB Packet Storm
245690 6.9 警告 サイバーリンク株式会社 - Cyberlink Power2Go における権限を取得される脆弱性 CWE-Other
その他
CVE-2010-5243 2012-09-11 15:18 2012-09-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253411 8.8 HIGH
Network
njtech greencms An issue was discovered in GreenCMS v2.3.0603. There is a CSRF vulnerability that can add an admin account via index.php?m=admin&c=access&a=adduserhandle. CWE-352
 Origin Validation Error
CVE-2018-11671 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253412 8.8 HIGH
Network
njtech greencms An issue was discovered in GreenCMS v2.3.0603. There is a CSRF vulnerability that allows attackers to execute arbitrary PHP code via the content parameter to index.php?m=admin&c=media&a=fileconnect. CWE-352
 Origin Validation Error
CVE-2018-11670 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253413 4.8 MEDIUM
Network
brother hl-l2340d_firmware
hl-l2380dw_firmware
Cross-site scripting (XSS) vulnerability on Brother HL series printers allows remote attackers to inject arbitrary web script or HTML via the url parameter to etc/loginerror.html. CWE-79
Cross-site Scripting
CVE-2018-11581 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253414 6.1 MEDIUM
Network
nch axon_pbx There is a reflected XSS vulnerability in AXON PBX 2.02 via the "AXON->Auto-Dialer->Agents->Name" field. The vulnerability exists due to insufficient filtration of user-supplied data. A remote attack… CWE-79
Cross-site Scripting
CVE-2018-11552 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253415 7.8 HIGH
Local
nch axon_pbx AXON PBX 2.02 contains a DLL hijacking vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on a targeted system. The vulnerability exists because a DLL file i… CWE-426
 Untrusted Search Path
CVE-2018-11551 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253416 7.5 HIGH
Network
miniupnp_project ngiflib ngiflib.c in MiniUPnP ngiflib 0.4 has an infinite loop in DecodeGifImg and LoadGif. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop')
CVE-2018-11657 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253417 6.5 MEDIUM
Network
imagemagick
canonical
imagemagick
ubuntu_linux
In ImageMagick 7.0.7-20 Q16 x86_64, a memory leak vulnerability was found in the function ReadDCMImage in coders/dcm.c, which allows attackers to cause a denial of service via a crafted DCM image fil… CWE-772
 Missing Release of Resource after Effective Lifetime
CVE-2018-11656 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253418 6.5 MEDIUM
Network
imagemagick
canonical
imagemagick
ubuntu_linux
In ImageMagick 7.0.7-20 Q16 x86_64, a memory leak vulnerability was found in the function GetImagePixelCache in MagickCore/cache.c, which allows attackers to cause a denial of service via a crafted C… CWE-772
 Missing Release of Resource after Effective Lifetime
CVE-2018-11655 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253419 9.8 CRITICAL
Network
cirt.net nikto CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV r… CWE-1236
 Improper Neutralization of Formula Elements in a CSV File
CVE-2018-11652 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm
253420 6.1 MEDIUM
Network
emssoftware ems_master_calendar Data input into EMS Master Calendar before 8.0.0.201805210 via URL parameters is not properly sanitized, allowing malicious attackers to send a crafted URL for XSS. CWE-79
Cross-site Scripting
CVE-2018-11628 2024-11-21 12:43 2018-06-2 Show GitHub Exploit DB Packet Storm