Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250831 2.1 注意 アップル - Mac OS X の動的リンカーにおける重要な情報を取得される脆弱性 - CVE-2006-3499 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
250832 10 危険 アップル - DHCP コンポーネントの bootpd におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-3498 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
250833 5.1 警告 アップル - Apple Mac OS X 用 Bom の "圧縮ステート処理" におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2006-3497 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
250834 5 警告 アップル - Apple Mac OS X の AFP Server におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-3496 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
250835 2.1 注意 アップル - Apple Mac OS X の AFP Server における他のユーザのファイルにアクセスされる脆弱性 - CVE-2006-3495 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
250836 7.5 危険 gtetrinet - gtetrinet の tetrinet.c における任意のコードを実行される脆弱性 - CVE-2006-3125 2012-06-26 15:37 2006-08-31 Show GitHub Exploit DB Packet Storm
250837 6.4 警告 デル
富士ゼロックス株式会社		 - FXPS プリントエンジンの組み込み HTTP サーバにおけるシステム設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2006-2113 2012-06-26 15:37 2006-08-24 Show GitHub Exploit DB Packet Storm
250838 7.5 危険 デル
富士ゼロックス株式会社		 - FXPS プリントエンジンにおける FTP 印刷インターフェースをプロキシとして使用される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2006-2112 2012-06-26 15:37 2006-08-24 Show GitHub Exploit DB Packet Storm
250839 5 警告 アップル - AFP Server における整数オーバーフローの脆弱性 - CVE-2006-1473 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
250840 5 警告 アップル - Apple Mac OS X の AFP Server における認証しないファイルおよびフォルダの名前を特定される脆弱性 - CVE-2006-1472 2012-06-26 15:37 2006-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247451 6.1 MEDIUM
Network 		javasystemsolutions sso_plugin Reflected Cross-Site Scripting exists in the Java System Solutions SSO plugin 4.0.13.1 for BMC MyIT. A remote attacker can abuse this issue to inject client-side scripts into the "select_sso()" funct… CWE-79
Cross-site Scripting 		CVE-2018-15528 2024-11-21 12:51 2018-08-22 Show GitHub Exploit DB Packet Storm
247452 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x36 0x4c 0x36 0x38 0x36 0x36 0x36 0x36 0x36 0x36 0x1f 0x35 0x50 0x00 can result in a hang of several minutes during which CPU and m… CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-15607 2024-11-21 12:51 2018-08-22 Show GitHub Exploit DB Packet Storm
247453 6.1 MEDIUM
Network 		victor_cms_project victor_cms An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen. CWE-79
Cross-site Scripting 		CVE-2018-15603 2024-11-21 12:51 2018-08-21 Show GitHub Exploit DB Packet Storm
247454 9.8 CRITICAL
Network 		elefantcms elefantcms apps/filemanager/handlers/upload/drop.php in Elefant CMS 2.0.3 performs a urldecode step too late in the "Cannot upload executable files" protection mechanism. CWE-20
 Improper Input Validation  		CVE-2018-15601 2024-11-21 12:51 2018-08-21 Show GitHub Exploit DB Packet Storm
247455 5.3 MEDIUM
Network 		debian
dropbear_ssh_project 		debian_linux
dropbear_ssh 		The recv_msg_userauth_request function in svr-auth.c in Dropbear through 2018.76 is prone to a user enumeration vulnerability because username validity affects how fields in SSH_MSG_USERAUTH messages… CWE-200
Information Exposure 		CVE-2018-15599 2024-11-21 12:51 2018-08-21 Show GitHub Exploit DB Packet Storm
247456 7.5 HIGH
Network 		traefik traefik Containous Traefik 1.6.x before 1.6.6, when --api is used, exposes the configuration and secret if authentication is missing and the API's port is publicly reachable. CWE-287
Improper Authentication 		CVE-2018-15598 2024-11-21 12:51 2018-08-21 Show GitHub Exploit DB Packet Storm
247457 5.5 MEDIUM
Local 		debian
canonical
linux 		debian_linux
ubuntu_linux
linux_kernel 		arch/x86/kernel/paravirt.c in the Linux kernel before 4.18.1 mishandles certain indirect calls, which makes it easier for attackers to conduct Spectre-v2 attacks against paravirtual guests. CWE-200
Information Exposure 		CVE-2018-15594 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
247458 6.1 MEDIUM
Network 		reprisesoftware reprise_license_manager An issue was discovered in the license editor in Reprise License Manager (RLM) through 12.2BL2. It is a cross-site scripting vulnerability in the /goform/edit_lf_get_data lf parameter via GET or POST… CWE-79
Cross-site Scripting 		CVE-2018-15574 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
247459 6.5 MEDIUM
Local 		debian
canonical
linux 		debian_linux
ubuntu_linux
linux_kernel 		The spectre_v2_select_mitigation function in arch/x86/kernel/cpu/bugs.c in the Linux kernel before 4.18.1 does not always fill RSB upon a context switch, which makes it easier for attackers to conduc… NVD-CWE-noinfo
CVE-2018-15572 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
247460 4.8 MEDIUM
Network 		bijiadao waimai_super_cms In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter. CWE-79
Cross-site Scripting 		CVE-2018-15570 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm