Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250781	5	警告	musawir ali	-	phpFormGenerator における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3776	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250782	5	警告	litoweb	-	PHPfileNavigator における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3775	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250783	5	警告	bishop bettini	-	phpESP における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3774	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250784	5	警告	phpdevshell	-	PHPDevShell における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3773	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250785	5	警告	phpCollab	-	phpCollab における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3772	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250786	5	警告	GNU Project	-	phpBook における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3771	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250787	5	警告	phpAlbum	-	phpAlbum における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3770	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250788	5	警告	blondish	-	PHPads における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3769	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250789	5	警告	Phorum	-	Phorum における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3768	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

250790	5	警告	osCommerce	-	osCommerce における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3767	2012-03-27 18:43	2011-09-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247991	6.5	MEDIUM Network	ffmpeg	ffmpeg	libavcodec in FFmpeg 4.0 may trigger a NULL pointer dereference if the studio profile is incorrectly detected while converting a crafted AVI file to MPEG4, leading to a denial of service, related to …	CWE-476 NULL Pointer Dereference	CVE-2018-12460	2024-11-21 12:45	2018-06-16	Show	GitHub Exploit DB Packet Storm

247992	6.5	MEDIUM Network	ffmpeg	ffmpeg	An inconsistent bits-per-sample value in the ff_mpeg4_decode_picture_header function in libavcodec/mpeg4videodec.c in FFmpeg 4.0 may trigger an assertion violation while converting a crafted AVI file…	CWE-20 Improper Input Validation	CVE-2018-12459	2024-11-21 12:45	2018-06-16	Show	GitHub Exploit DB Packet Storm

247993	6.5	MEDIUM Network	ffmpeg debian	ffmpeg debian_linux	An improper integer type in the mpeg4_encode_gop_header function in libavcodec/mpeg4videoenc.c in FFmpeg 2.8 and 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, l…	CWE-20 Improper Input Validation	CVE-2018-12458	2024-11-21 12:45	2018-06-16	Show	GitHub Exploit DB Packet Storm

247994	8.8	HIGH Network	expresscart_project	expresscart	expressCart before 1.1.6 allows remote attackers to create an admin user via a /admin/setup Referer header.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-12457	2024-11-21 12:45	2018-06-15	Show	GitHub Exploit DB Packet Storm

247995	8.8	HIGH Network	libbpg_project	libbpg	The restore_tqb_pixels function in hevc_filter.c in libavcodec, as used in libbpg 0.9.8 and other products, has an integer overflow that leads to a heap-based buffer overflow and remote code executio…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2018-12447	2024-11-21 12:45	2018-06-15	Show	GitHub Exploit DB Packet Storm

247996	4.7	MEDIUM Local	google	boringssl	BoringSSL through 2018-06-14 allows a memory-cache side-channel attack on DSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover a DSA key, the attacker needs access to eit…	CWE-200 Information Exposure	CVE-2018-12440	2024-11-21 12:45	2018-06-15	Show	GitHub Exploit DB Packet Storm

247997	4.7	MEDIUM Local	matrixssl	matrixssl	MatrixSSL through 3.9.5 Open allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access t…	CWE-200 Information Exposure	CVE-2018-12439	2024-11-21 12:45	2018-06-15	Show	GitHub Exploit DB Packet Storm

247998	4.9	MEDIUM Physics	libsunec_project	libsunec	The Elliptic Curve Cryptography library (aka sunec or libsunec) allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECD…	CWE-200 CWE-320 Information Exposure Key Management Errors	CVE-2018-12438	2024-11-21 12:45	2018-06-15	Show	GitHub Exploit DB Packet Storm

247999	4.9	MEDIUM Physics	libtom linaro	libtomcrypt op-tee	LibTomCrypt through 1.18.1 allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the attacker needs access to …	CWE-200 Information Exposure	CVE-2018-12437	2024-11-21 12:45	2018-06-15	Show	GitHub Exploit DB Packet Storm

248000	4.7	MEDIUM Local	wolfssl	wolfssl	wolfcrypt/src/ecc.c in wolfSSL before 3.15.1.patch allows a memory-cache side-channel attack on ECDSA signatures, aka the Return Of the Hidden Number Problem or ROHNP. To discover an ECDSA key, the a…	CWE-200 Information Exposure	CVE-2018-12436	2024-11-21 12:45	2018-06-15	Show	GitHub Exploit DB Packet Storm