Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251021	9	危険	OpenVAS	-	OpenVAS Manager の email 関数における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0018	2012-03-27 18:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

251022	2.1	注意	The Tor Project	-	Tor における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0016	2012-03-27 18:42	2011-01-17	Show	GitHub Exploit DB Packet Storm

251023	5	警告	The Tor Project	-	Tor におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0015	2012-03-27 18:42	2011-01-17	Show	GitHub Exploit DB Packet Storm

251024	4.3	警告	Best Practical Solutions	-	Best Practical Solutions RT における平分パスワードを判定される脆弱性	CWE-310 暗号の問題	CVE-2011-0009	2012-03-27 18:42	2011-01-25	Show	GitHub Exploit DB Packet Storm

251025	6.9	警告	Todd C. Miller レッドハット	-	Fedora の sudo の parse.c における root 権限を取得される脆弱性	CWE-DesignError	CVE-2011-0008	2012-03-27 18:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

251026	3.3	注意	troglobit	-	pimd における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2011-0007	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

251027	4.3	警告	Joomla!	-	Joomla! の com_search モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0005	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

251028	4.3	警告	Piwik	-	Piwik におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0004	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

251029	6.9	警告	Exim Development	-	Exim の open_log 機能における任意のファイルにログデータをアペンドさせる脆弱性	CWE-20 CWE-59	CVE-2011-0017	2012-03-27 18:42	2010-06-12	Show	GitHub Exploit DB Packet Storm

251030	5.8	警告	MediaWiki	-	MediaWiki におけるクリックジャッキング攻撃を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0003	2012-03-27 18:42	2011-01-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248051	7.5	HIGH Network	smartmesh_project ugtoken_project gg_token_project first_project mtc_project mesh_project	smartmesh ugtoken gg_token first mtc mesh	The transferProxy and approveProxy functions of a smart contract implementation for SmartMesh (SMT), an Ethereum ERC20 token, allow attackers to accomplish an unauthorized transfer of digital assets …	NVD-CWE-noinfo	CVE-2018-10769	2024-11-21 12:42	2018-08-11	Show	GitHub Exploit DB Packet Storm

248052	8.1	HIGH Network	canonical debian postgresql	ubuntu_linux debian_linux postgresql	It was discovered that PostgreSQL versions before 10.5, 9.6.10, 9.5.14, 9.4.19, and 9.3.24 failed to properly check authorization on certain statements involved with "INSERT ... ON CONFLICT DO UPDATE…	CWE-863 Incorrect Authorization	CVE-2018-10925	2024-11-21 12:42	2018-08-10	Show	GitHub Exploit DB Packet Storm

248053	9.8	CRITICAL Network	cobbler_project redhat	cobbler satellite	It was found that cobbler 2.6.x exposed all functions from its CobblerXMLRPCInterface class over XMLRPC. A remote, unauthenticated attacker could use this flaw to gain high privileges within cobbler,…	-	CVE-2018-10931	2024-11-21 12:42	2018-08-10	Show	GitHub Exploit DB Packet Storm

248054	7.5	HIGH Network	redhat canonical debian postgresql	enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server virtualization enterprise_linux_server_eus openstack ubuntu_linux debian_linux postgresql	A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq was used with "h…	CWE-89 SQL Injection	CVE-2018-10915	2024-11-21 12:42	2018-08-10	Show	GitHub Exploit DB Packet Storm

248055	6.3	MEDIUM Local	ovirt redhat	vdsm virtualization	It was found that vdsm before version 4.20.37 invokes qemu-img on untrusted inputs without limiting resources. By uploading a specially crafted image, an attacker could cause the qemu-img process to …	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2018-10908	2024-11-21 12:42	2018-08-10	Show	GitHub Exploit DB Packet Storm

248056	5.5	MEDIUM Local	ttembed_project	ttembed	An input validation flaw exists in ttembed. With a crafted input file, an attacker may be able to trigger a denial of service condition due to ttembed trusting attacker controlled values.	CWE-20 Improper Input Validation	CVE-2018-10922	2024-11-21 12:42	2018-08-3	Show	GitHub Exploit DB Packet Storm

248057	7.5	HIGH Network	ttembed_project	ttembed	Certain input files may trigger an integer overflow in ttembed input file processing. This overflow could potentially lead to corruption of the input file due to a lack of checking return codes of fg…	CWE-190 Integer Overflow or Wraparound	CVE-2018-10921	2024-11-21 12:42	2018-08-3	Show	GitHub Exploit DB Packet Storm

248058	6.8	MEDIUM Network	nic	knot_resolver	Improper input validation bug in DNS resolver component of Knot Resolver before 2.4.1 allows remote attacker to poison cache.	CWE-20 Improper Input Validation	CVE-2018-10920	2024-11-21 12:42	2018-08-2	Show	GitHub Exploit DB Packet Storm

248059	7.1	HIGH Local	canonical	cloud-init	The default cloud-init configuration, in cloud-init 0.6.2 and newer, included "ssh_deletekeys: 0", disabling cloud-init's deletion of ssh host keys. In some environments, this could lead to instances…	-	CVE-2018-10896	2024-11-21 12:42	2018-08-2	Show	GitHub Exploit DB Packet Storm

248060	5.4	MEDIUM Network	redhat	keycloak single_sign-on	It was found that SAML authentication in Keycloak 3.4.3.Final incorrectly authenticated expired certificates. A malicious user could use this to access unauthorized data or possibly conduct further a…	CWE-295 Improper Certificate Validation	CVE-2018-10894	2024-11-21 12:42	2018-08-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed