Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 25, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250331 9.4 危険 Caucho Technology - Caucho Resin Professional および Caucho Resin における COM または LPT デバイスからデータを読み取られる脆弱性 - CVE-2007-2439 2012-06-26 15:46 2007-05-16 Show GitHub Exploit DB Packet Storm
250332 10 危険 aventail - Aventail Connect の asnsp.dll におけるバッファオーバーフローの脆弱性 - CVE-2007-2434 2012-06-26 15:46 2007-05-2 Show GitHub Exploit DB Packet Storm
250333 6.8 警告 ariadne - Ariadne の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2433 2012-06-26 15:46 2007-05-2 Show GitHub Exploit DB Packet Storm
250334 7.5 危険 ahhp-portal - Ahhp-Portal の page.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2428 2012-06-26 15:46 2007-05-1 Show GitHub Exploit DB Packet Storm
250335 5 警告 blackdot - Imageview の fileview.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2425 2012-06-26 15:46 2007-05-1 Show GitHub Exploit DB Packet Storm
250336 7.5 危険 burak yilmaz - Burak Yilmaz Blog の bry.asp における SQL インジェクションの脆弱性 - CVE-2007-2420 2012-06-26 15:46 2007-05-1 Show GitHub Exploit DB Packet Storm
250337 10 危険 Cerulean Studios - Cerulean Studios Trillian Pro の XMPP コンポーネント におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2418 2012-06-26 15:46 2007-05-2 Show GitHub Exploit DB Packet Storm
250338 7.5 危険 e-annu - E-Annu の home.php における SQL インジェクションの脆弱性 - CVE-2007-2416 2012-06-26 15:46 2007-05-1 Show GitHub Exploit DB Packet Storm
250339 4.3 警告 アップル - WebCore におけるクロスサイトスクリプティング攻撃を誘発する脆弱性 - CVE-2007-2410 2012-06-26 15:46 2007-07-31 Show GitHub Exploit DB Packet Storm
250340 4.3 警告 アップル - WebCore における重要な情報を取得される脆弱性 - CVE-2007-2409 2012-06-26 15:46 2007-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247651 9.8 CRITICAL
Network 		adobe
redhat 		flash_player_desktop_runtime
flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Flash Player versions 31.0.0.148 and earlier have a type confusion vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-704
 Incorrect Type Conversion or Cast 		CVE-2018-15981 2024-11-21 12:51 2018-11-30 Show GitHub Exploit DB Packet Storm
247652 7.5 HIGH
Network 		adobe photoshop_cc Adobe Photoshop CC versions 19.1.6 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. CWE-125
Out-of-bounds Read 		CVE-2018-15980 2024-11-21 12:51 2018-11-30 Show GitHub Exploit DB Packet Storm
247653 7.5 HIGH
Network 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2019.008.20080 and earlier, 2017.011.30105 and earlier, and 2015.006.30456 and earlier have a ntlm sso hash theft vulnerability. Successful exploitation could lead t… CWE-200
Information Exposure 		CVE-2018-15979 2024-11-21 12:51 2018-11-30 Show GitHub Exploit DB Packet Storm
247654 7.5 HIGH
Network 		adobe
redhat 		flash_player_desktop_runtime
flash_player
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		Flash Player versions 31.0.0.122 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. CWE-125
Out-of-bounds Read 		CVE-2018-15978 2024-11-21 12:51 2018-11-30 Show GitHub Exploit DB Packet Storm
247655 8.8 HIGH
Network 		pivotal_software cloudfoundry_uaa_release
cloud_foundry_uaa 		Cloud Foundry UAA release, versions prior to v64.0, and UAA, versions prior to 4.23.0, contains a validation error which allows for privilege escalation. A remote authenticated user may modify the ur… NVD-CWE-noinfo
CVE-2018-15761 2024-11-21 12:51 2018-11-19 Show GitHub Exploit DB Packet Storm
247656 9.8 CRITICAL
Network 		pivotal_software on_demand_services_sdk
broker_api 		Pivotal Cloud Foundry On Demand Services SDK, versions prior to 0.24 contain an insecure method of verifying credentials. A remote unauthenticated malicious user may make many requests to the service… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2018-15759 2024-11-21 12:51 2018-11-19 Show GitHub Exploit DB Packet Storm
247657 7.5 HIGH
Network 		dell
oracle 		bsafe
jd_edwards_enterpriseone_tools
security_service
enterprise_manager_ops_center
application_testing_suite
retail_predictive_application_server
communications_ip_service_activato… 		RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and versions prior to 4.1.6.2 (in 4.1.x series) contain a key management error issue. A malicious TLS server could potentially… NVD-CWE-noinfo
CVE-2018-15769 2024-11-21 12:51 2018-11-17 Show GitHub Exploit DB Packet Storm
247658 6.4 MEDIUM
Network 		inova-software inova_partner Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass via insecure direct object reference. CWE-863
 Incorrect Authorization 		CVE-2018-15693 2024-11-21 12:51 2018-11-17 Show GitHub Exploit DB Packet Storm
247659 6.4 MEDIUM
Network 		inova-software inova_partner Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass and data manipulation in certain functions. CWE-863
 Incorrect Authorization 		CVE-2018-15692 2024-11-21 12:51 2018-11-17 Show GitHub Exploit DB Packet Storm
247660 6.1 MEDIUM
Network 		nagios nagios_xi Nagios XI 5.5.6 allows reflected cross site scripting from remote unauthenticated attackers via the oname and oname2 parameters. CWE-79
Cross-site Scripting 		CVE-2018-15714 2024-11-21 12:51 2018-11-15 Show GitHub Exploit DB Packet Storm