Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251041	7.5	危険	エマソン	-	Emerson の DeltaV 製品におけるバッファオーバーフローの脆弱性	CWE-20 不適切な入力確認	CVE-2012-1817	2012-06-12 12:20	2012-05-30	Show	GitHub Exploit DB Packet Storm

251042	5	警告	エマソン	-	Emerson の DeltaV 製品の PORTSERV.exe におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2012-1816	2012-06-12 12:18	2012-05-30	Show	GitHub Exploit DB Packet Storm

251043	7.5	危険	エマソン	-	Emerson の DeltaV 製品における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1815	2012-06-12 12:09	2012-05-30	Show	GitHub Exploit DB Packet Storm

251044	4.3	警告	エマソン	-	Emerson の DeltaV 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1814	2012-06-12 12:06	2012-05-30	Show	GitHub Exploit DB Packet Storm

251045	2.1	注意	GNOME Project Canonical	-	Ubuntu で使用されるアップデートマネージャにおけるリポジトリ認証情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0948	2012-06-11 16:20	2012-06-7	Show	GitHub Exploit DB Packet Storm

251046	7.8	危険	infradead	-	OpenConnect におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3291	2012-06-11 15:52	2012-06-7	Show	GitHub Exploit DB Packet Storm

251047	10	危険	Google サムスン日本エイサー	-	複数の製品の Chromebook プラットフォーム上で稼働する Google Chrome における脆弱性	CWE-noinfo 情報不足	CVE-2012-3290	2012-06-11 15:49	2012-06-4	Show	GitHub Exploit DB Packet Storm

251048	7.5	危険	s9y	-	Serendipity の include/functions_trackbacks.inc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-2762	2012-06-11 15:40	2012-06-7	Show	GitHub Exploit DB Packet Storm

251049	4.3	警告	Sensio Labs	-	SensioLabs Symfony における Web セッションをハイジャックされる脆弱性	CWE-Other その他	CVE-2012-2667	2012-06-11 15:39	2012-06-7	Show	GitHub Exploit DB Packet Storm

251050	5.5	警告	MIT Kerberos	-	MIT Kerberos の kadmin プロトコルの実装における文字列属性を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1012	2012-06-11 15:22	2012-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247091	5.5	MEDIUM Local	stopzilla	antimalware	An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains a Denial of Service vulnerability due to not validating the output buffer address value from IOCtl 0x800…	CWE-20 Improper Input Validation	CVE-2018-15736	2024-11-21 12:51	2019-06-21	Show	GitHub Exploit DB Packet Storm

247092	6.1	MEDIUM Network	cloudera	cloudera_manager	An issue was discovered in Cloudera Manager 5.x through 5.15.0. One type of page in Cloudera Manager uses a 'returnUrl' parameter to redirect the user to another page in Cloudera Manager once a wizar…	CWE-79 Cross-site Scripting	CVE-2018-15913	2024-11-21 12:51	2019-06-21	Show	GitHub Exploit DB Packet Storm

247093	4.3	MEDIUM Network	freepbx	disa	FreePBX 13 and 14 has SQL Injection in the DISA module via the hangup variable on the /admin/config.php?display=disa&view=form page.	CWE-89 SQL Injection	CVE-2018-15892	2024-11-21 12:51	2019-06-21	Show	GitHub Exploit DB Packet Storm

247094	4.8	MEDIUM Network	freepbx sangoma	freepbx	An issue was discovered in FreePBX core before 3.0.122.43, 14.0.18.34, and 5.0.1beta4. By crafting a request for adding Asterisk modules, an attacker is able to store JavaScript commands in a module …	CWE-79 Cross-site Scripting	CVE-2018-15891	2024-11-21 12:51	2019-06-21	Show	GitHub Exploit DB Packet Storm

247095	9.8	CRITICAL Network	ethereum	ethereumj	An issue was discovered in EthereumJ 1.8.2. There is Unsafe Deserialization in ois.readObject in mine/Ethash.java and decoder.readObject in crypto/ECKey.java. When a node syncs and mines a new block,…	CWE-502 Deserialization of Untrusted Data	CVE-2018-15890	2024-11-21 12:51	2019-06-21	Show	GitHub Exploit DB Packet Storm

247096	7.5	HIGH Local	docker	docker	In Docker through 18.06.1-ce-rc2, the API endpoints behind the 'docker cp' command are vulnerable to a symlink-exchange attack with Directory Traversal, giving attackers arbitrary read-write access t…	CWE-362 Race Condition	CVE-2018-15664	2024-11-21 12:51	2019-05-23	Show	GitHub Exploit DB Packet Storm

247097	6.1	MEDIUM Network	xerox	colorqube_8580_firmware	Cross-site scripting (XSS) in the web interface of the Xerox ColorQube 8580 allows remote persistent injection of custom HTML / JavaScript code.	CWE-79 Cross-site Scripting	CVE-2018-15530	2024-11-21 12:51	2019-05-13	Show	GitHub Exploit DB Packet Storm

247098	6.1	MEDIUM Network	sir	gnuboard	Cross-Site Scripting (XSS) vulnerability in adm/boardgroup_form_update.php and adm/boardgroup_list_update.php in gnuboard5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTM…	CWE-79 Cross-site Scripting	CVE-2018-15584	2024-11-21 12:51	2019-04-27	Show	GitHub Exploit DB Packet Storm

247099	6.1	MEDIUM Network	sir	gnuboard	Cross-Site Scripting (XSS) vulnerability in adm/sms_admin/num_book_write.php and adm/sms_admin/num_book_update.php in gnuboard5 before 5.3.1.6 allows remote attackers to inject arbitrary web script o…	CWE-79 Cross-site Scripting	CVE-2018-15582	2024-11-21 12:51	2019-04-27	Show	GitHub Exploit DB Packet Storm

247100	6.1	MEDIUM Network	sir	gnuboard	Cross-Site Scripting (XSS) vulnerability in adm/faqmasterformupdate.php in gnuboard5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML.	CWE-79 Cross-site Scripting	CVE-2018-15581	2024-11-21 12:51	2019-04-27	Show	GitHub Exploit DB Packet Storm