Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250951 10 危険 ICONICS, Inc. - ICONICS GENESIS32 および BizViz におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5089 2012-04-20 15:57 2011-07-1 Show GitHub Exploit DB Packet Storm
250952 9.3 危険 ICONICS, Inc. - ICONICS GENESIS32 および BizViz における任意のコードを実行される脆弱性 CWE-DesignError
CVE-2011-5088 2012-04-20 15:56 2011-07-1 Show GitHub Exploit DB Packet Storm
250953 9.3 危険 Artifex Software - Ghostscript の errprintf 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4270 2012-04-20 15:49 2009-12-21 Show GitHub Exploit DB Packet Storm
250954 7.2 危険 Artifex Software - Ghostscript における任意の PostScript コマンドを実行される脆弱性 CWE-DesignError
CVE-2010-2055 2012-04-20 15:48 2010-07-22 Show GitHub Exploit DB Packet Storm
250955 9.3 危険 Artifex Software - GhostScript の parser 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1869 2012-04-20 15:47 2010-05-12 Show GitHub Exploit DB Packet Storm
250956 9.3 危険 Artifex Software - Ghostscript における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-1628 2012-04-20 15:46 2010-05-19 Show GitHub Exploit DB Packet Storm
250957 5 警告 LIGHTTPD - lighttpd の base64_decode 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-4362 2012-04-20 15:28 2011-11-29 Show GitHub Exploit DB Packet Storm
250958 5 警告 Quagga - Quagga の BGP デーモンにおけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-Other
その他 		CVE-2009-1572 2012-04-20 15:08 2009-05-6 Show GitHub Exploit DB Packet Storm
250959 4.3 警告 Demand Media - Pluck SiteLife にクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0253 2012-04-20 14:07 2012-04-11 Show GitHub Exploit DB Packet Storm
250960 5 警告 OpenSSL Project - OpenSSL の mime_hdr_cmp 関数におけるサービス運用妨害 (NULL ポインタデリファレンスおよびアプリケーションクラッシュ) の脆弱性 CWE-Other
その他 		CVE-2006-7250 2012-04-20 12:14 2012-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247351 5.4 MEDIUM
Network 		php_template_store_script_project php_template_store_script PHP Template Store Script 3.0.6 allows XSS via the Address line 1, Address Line 2, Bank name, or A/C Holder name field in a profile. CWE-79
Cross-site Scripting 		CVE-2018-14869 2024-11-21 12:49 2018-08-7 Show GitHub Exploit DB Packet Storm
247352 8.8 HIGH
Network 		ocsinventory-ng ocs_inventory_server Unrestricted file upload (with remote code execution) in require/mail/NotificationMail.php in Webconsole in OCS Inventory NG OCS Inventory Server through 2.5 allows a privileged user to gain access t… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-14857 2024-11-21 12:49 2018-08-7 Show GitHub Exploit DB Packet Storm
247353 7.5 HIGH
Network 		nystudio107 seomatic A Server Side Template Injection (SSTI) was discovered in the SEOmatic plugin before 3.1.4 for Craft CMS, because requests that don't match any elements incorrectly generate the canonicalUrl, and can… CWE-94
Code Injection 		CVE-2018-14716 2024-11-21 12:49 2018-08-7 Show GitHub Exploit DB Packet Storm
247354 8.8 HIGH
Network 		otrs
debian 		open_ticket_request_system
debian_linux 		An issue was discovered in Open Ticket Request System (OTRS) 6.0.x through 6.0.9, 5.0.x through 5.0.28, and 4.0.x through 4.0.30. An attacker who is logged into OTRS as an agent may escalate their pr… NVD-CWE-noinfo
CVE-2018-14593 2024-11-21 12:49 2018-08-4 Show GitHub Exploit DB Packet Storm
247355 5.4 MEDIUM
Network 		readymadeb2bscript basic_b2b PHP Scripts Mall Basic B2B Script 2.0.0 has Reflected and Stored XSS via the First name, Last name, Address 1, City, State, and Company name fields. CWE-79
Cross-site Scripting 		CVE-2018-14541 2024-11-21 12:49 2018-08-4 Show GitHub Exploit DB Packet Storm
247356 5.4 MEDIUM
Network 		tendacn d152_firmware Tenda D152 ADSL routers allow XSS via a crafted SSID. CWE-79
Cross-site Scripting 		CVE-2018-14497 2024-11-21 12:49 2018-08-4 Show GitHub Exploit DB Packet Storm
247357 9.1 CRITICAL
Network 		ocsinventory-ng ocsinventory_ng OCS Inventory 2.4.1 lacks a proper XML parsing configuration, allowing the use of external entities. This issue can be exploited by an attacker sending a crafted HTTP request in order to exfiltrate i… CWE-611
XXE 		CVE-2018-14473 2024-11-21 12:49 2018-08-4 Show GitHub Exploit DB Packet Storm
247358 9.8 CRITICAL
Network 		softnas cloud A command injection vulnerability was found in the web administration console in SoftNAS Cloud before 4.0.3. In particular, the snserv script did not sanitize the 'recentVersion' parameter from the s… CWE-78
OS Command  		CVE-2018-14417 2024-11-21 12:49 2018-08-4 Show GitHub Exploit DB Packet Storm
247359 9.8 CRITICAL
Network 		tecrail responsive_filemanager upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2018-14728 2024-11-21 12:49 2018-08-4 Show GitHub Exploit DB Packet Storm
247360 7.5 HIGH
Network 		cryptogs cryptogs The endCoinFlip function and throwSlammer function of the smart contract implementations for Cryptogs, an Ethereum game, generate random numbers with an old block's hash. Therefore, attackers can pre… CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2018-14715 2024-11-21 12:49 2018-08-4 Show GitHub Exploit DB Packet Storm