Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250961	6.8	警告	phpgedview	-	PhpGedView の module.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0405	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

250962	7.5	危険	netsupport	-	NetSupport Manager Agent におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0404	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

250963	9.3	危険	imgburn	-	ImgBurn の ImgBurn.exe における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-0403	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

250964	6.8	警告	Debian	-	dpkg の dpkg-source における任意のファイルを変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-0402	2012-03-27 18:42	2011-01-6	Show	GitHub Exploit DB Packet Storm

250965	5	警告	Piwik	-	Piwik におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0401	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

250966	5	警告	Piwik	-	Piwik の Cookie.php におけるクッキーをキャプチャされる脆弱性	CWE-16 環境設定	CVE-2011-0400	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

250967	4.3	警告	Piwik	-	Piwik におけるクリックジャック攻撃を誘発する脆弱性	CWE-Other その他	CVE-2011-0399	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

250968	6.4	警告	Piwik	-	Piwik の Piwik_Common::getIP 関数における位置情報取得とロギング機能を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0398	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

250969	9.3	危険	マイクロソフト	-	Windows XP の Microsoft Internet Explorer における不正な GUI 表示を誘発される脆弱性	CWE-Other その他	CVE-2011-0347	2012-03-27 18:42	2011-01-7	Show	GitHub Exploit DB Packet Storm

250970	3.3	注意	Alcatel-Lucent	-	Alcatel-Lucent OmniVista の NMS サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0345	2012-03-27 18:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247711	8.8	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server. The vulnerability comes from a portion of code where pag…	CWE-287 Improper Authentication	CVE-2018-12613	2024-11-21 12:45	2018-06-22	Show	GitHub Exploit DB Packet Storm

247712	7.5	HIGH Network	qemu canonical debian	qemu ubuntu_linux debian_linux	qmp_guest_file_read in qga/commands-posix.c and qga/commands-win32.c in qemu-ga (aka QEMU Guest Agent) in QEMU 2.12.50 has an integer overflow causing a g_malloc0() call to trigger a segmentation fau…	CWE-190 Integer Overflow or Wraparound	CVE-2018-12617	2024-11-21 12:45	2018-06-22	Show	GitHub Exploit DB Packet Storm

247713	5.3	MEDIUM Network	phusion	passenger	An issue was discovered in switchGroup() in agent/ExecHelper/ExecHelperMain.cpp in Phusion Passenger before 5.3.2. The set of groups (gidset) is not set correctly, leaving it up to randomness (i.e., …	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-12615	2024-11-21 12:45	2018-06-22	Show	GitHub Exploit DB Packet Storm

247714	9.8	CRITICAL Network	telesquare	sdt-cs3b1_firmware sdt-cw3b1_firmware	Telesquare SDT-CS3B1 and SDT-CW3B1 devices through 1.2.0 have a default factory account. Remote attackers can obtain access to the device via TELNET using a hardcoded account.	CWE-798 Use of Hard-coded Credentials	CVE-2018-12526	2024-11-21 12:45	2018-06-22	Show	GitHub Exploit DB Packet Storm

247715	7.5	HIGH Network	njtech	greencms	GreenCMS 2.3.0603 allows remote attackers to obtain sensitive information via a direct request for Data/Log/year_month_day.log.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2018-12604	2024-11-21 12:45	2018-06-21	Show	GitHub Exploit DB Packet Storm

247716	9.8	CRITICAL Network	sam2p_project debian	sam2p debian_linux	There is a heap-based buffer overflow in ReadImage in input-tga.ci in sam2p 0.49.4 that leads to a denial of service or possibly unspecified other impact.	CWE-787 Out-of-bounds Write	CVE-2018-12601	2024-11-21 12:45	2018-06-21	Show	GitHub Exploit DB Packet Storm

247717	8.8	HIGH Network	debian canonical imagemagick	debian_linux ubuntu_linux imagemagick	In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file.	CWE-787 Out-of-bounds Write	CVE-2018-12600	2024-11-21 12:45	2018-06-21	Show	GitHub Exploit DB Packet Storm

247718	8.8	HIGH Network	debian canonical imagemagick	debian_linux ubuntu_linux imagemagick	In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file.	CWE-787 Out-of-bounds Write	CVE-2018-12599	2024-11-21 12:45	2018-06-21	Show	GitHub Exploit DB Packet Storm

247719	7.5	HIGH Network	email\	\	The parse() method in the Email::Address module through 1.909 for Perl is vulnerable to Algorithmic complexity on specially prepared input, leading to Denial of Service. Prepared special input that c…	CWE-407 Inefficient Algorithmic Complexity	CVE-2018-12558	2024-11-21 12:45	2018-06-20	Show	GitHub Exploit DB Packet Storm

247720	7.5	HIGH Network	reliablecontrols	mach-prowebcom_firmware	Reliable Controls MACH-ProWebCom 7.80 devices allow remote attackers to obtain sensitive information via a direct request for the data/fileinfo.xml or job/job.json file, as demonstrated the Master Pa…	CWE-200 Information Exposure	CVE-2018-12594	2024-11-21 12:45	2018-06-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed