Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250891 2.6 注意 Lunascape - iLunascape for Android における WebView クラスに関する脆弱性 CWE-Other
その他 		CVE-2012-1249 2012-05-21 12:01 2012-05-21 Show GitHub Exploit DB Packet Storm
250892 5 警告 Python Software Foundation - Python の asyncore モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-3492 2012-05-18 16:50 2010-08-14 Show GitHub Exploit DB Packet Storm
250893 3.3 注意 freedesktop.org - D-Bus の configure スクリプトにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-2533 2012-05-18 16:47 2011-06-22 Show GitHub Exploit DB Packet Storm
250894 4.6 警告 D-Bus
レッドハット		 - Linux Kernel の dbus-marshal-header.c 内にある _dbus_header_byteswap 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2200 2012-05-18 16:45 2011-06-10 Show GitHub Exploit DB Packet Storm
250895 9.3 危険 アップル
FreeType Project
レッドハット		 - Apple iOS などの製品で使用される FreeType における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2011-0226 2012-05-18 16:42 2011-07-8 Show GitHub Exploit DB Packet Storm
250896 7.2 危険 Linux - Linux Kernel の HFS Plus ファイルシステムの実装におけるバッファオーバーフローの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2319 2012-05-18 16:32 2012-05-17 Show GitHub Exploit DB Packet Storm
250897 7.2 危険 Linux - Linux kernel の cap_bprm_set_creds 関数におけるパーソナリティ (personality) の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2123 2012-05-18 16:31 2012-05-17 Show GitHub Exploit DB Packet Storm
250898 4.9 警告 Linux - Linux kernel の KVM の実装におけるサービス運用妨害 (ホスト OS クラッシュ) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2121 2012-05-18 16:14 2012-05-17 Show GitHub Exploit DB Packet Storm
250899 4.9 警告 Linux - Linux Kernel の KVM の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-1601 2012-05-18 16:12 2012-05-17 Show GitHub Exploit DB Packet Storm
250900 5.2 警告 Linux - Linux Kernel におけるサービス運用妨害 (ホスト OS クラッシュ) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1179 2012-05-18 16:10 2012-05-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247631 9.8 CRITICAL
Network 		open-emr openemr Multiple SQL injection vulnerabilities in portal/add_edit_event_user.php in versions of OpenEMR before 5.0.1.4 allow a remote attacker to execute arbitrary SQL commands via the (1) eid, (2) userid, o… CWE-89
SQL Injection 		CVE-2018-15145 2024-11-21 12:50 2018-08-14 Show GitHub Exploit DB Packet Storm
247632 8.8 HIGH
Network 		open-emr openemr SQL injection vulnerability in interface/de_identification_forms/find_drug_popup.php in versions of OpenEMR before 5.0.1.4 allows a remote authenticated attacker to execute arbitrary SQL commands via… CWE-89
SQL Injection 		CVE-2018-15144 2024-11-21 12:50 2018-08-14 Show GitHub Exploit DB Packet Storm
247633 9.8 CRITICAL
Network 		open-emr openemr Multiple SQL injection vulnerabilities in portal/find_appt_popup_user.php in versions of OpenEMR before 5.0.1.4 allow a remote attacker to execute arbitrary SQL commands via the (1) catid or (2) prov… CWE-89
SQL Injection 		CVE-2018-15143 2024-11-21 12:50 2018-08-14 Show GitHub Exploit DB Packet Storm
247634 8.8 HIGH
Network 		open-emr openemr Directory traversal in portal/import_template.php in versions of OpenEMR before 5.0.1.4 allows a remote attacker authenticated in the patient portal to execute arbitrary PHP code by writing a file wi… CWE-22
Path Traversal 		CVE-2018-15142 2024-11-21 12:50 2018-08-14 Show GitHub Exploit DB Packet Storm
247635 6.5 MEDIUM
Network 		open-emr openemr Directory traversal in portal/import_template.php in versions of OpenEMR before 5.0.1.4 allows a remote attacker authenticated in the patient portal to delete arbitrary files via the "docid" paramete… CWE-22
Path Traversal 		CVE-2018-15141 2024-11-21 12:50 2018-08-14 Show GitHub Exploit DB Packet Storm
247636 6.5 MEDIUM
Network 		open-emr openemr Directory traversal in portal/import_template.php in versions of OpenEMR before 5.0.1.4 allows a remote attacker authenticated in the patient portal to read arbitrary files via the "docid" parameter … CWE-22
Path Traversal 		CVE-2018-15140 2024-11-21 12:50 2018-08-14 Show GitHub Exploit DB Packet Storm
247637 8.8 HIGH
Network 		open-emr openemr Unrestricted file upload in interface/super/manage_site_files.php in versions of OpenEMR before 5.0.1.4 allows a remote authenticated attacker to execute arbitrary PHP code by uploading a file with a… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-15139 2024-11-21 12:50 2018-08-14 Show GitHub Exploit DB Packet Storm
247638 6.5 MEDIUM
Network 		hotel_booking_script_project hotel_booking_script PHP Scripts Mall hotel-booking-script 2.0.4 allows remote attackers to cause a denial of service via crafted JavaScript code in the First Name, Last Name, or Address field. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-15191 2024-11-21 12:50 2018-08-11 Show GitHub Exploit DB Packet Storm
247639 5.4 MEDIUM
Network 		hotel_booking_script_project hotel_booking_script PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field. CWE-79
Cross-site Scripting 		CVE-2018-15190 2024-11-21 12:50 2018-08-11 Show GitHub Exploit DB Packet Storm
247640 5.4 MEDIUM
Network 		advanced_real_estate_script_project advanced_real_estate_script PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile. CWE-79
Cross-site Scripting 		CVE-2018-15189 2024-11-21 12:50 2018-08-11 Show GitHub Exploit DB Packet Storm