Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251051 5 警告 アバイア - Avaya one-X Desktop Edition の SIP UAC メッセージ解析モジュールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3318 2012-06-26 15:46 2007-06-19 Show GitHub Exploit DB Packet Storm
251052 7.8 危険 アバイア - Avaya one-X Desktop Edition の SIP UAC メッセージ解析モジュールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3317 2012-06-26 15:46 2007-06-19 Show GitHub Exploit DB Packet Storm
251053 6.8 警告 altap - Altap Servant Salamander の peviewer.spl におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-3314 2012-06-26 15:46 2007-06-21 Show GitHub Exploit DB Packet Storm
251054 7.5 危険 efstratios geroulis - Jasmine CMS における SQL インジェクションの脆弱性 - CVE-2007-3313 2012-06-26 15:46 2007-06-21 Show GitHub Exploit DB Packet Storm
251055 9 危険 efstratios geroulis - Jasmine CMS の admin/plugin_manager.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3312 2012-06-26 15:46 2007-06-21 Show GitHub Exploit DB Packet Storm
251056 9.3 危険 Cerulean Studios - Cerulean Studios Trillian におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-3305 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
251057 4.9 警告 Apache Software Foundation - Prefork MPM モジュールを含む Apache httpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-94
コード・インジェクション
CVE-2007-3303 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
251058 9.3 危険 CA Technologies - CA eTrust Intrusion Detection の caller.dll におけるクライアントシステム上で任意の DLL を実行される脆弱性 - CVE-2007-3302 2012-06-26 15:46 2007-07-25 Show GitHub Exploit DB Packet Storm
251059 7.5 危険 FuseTalk - FuseTalk の forum/include/error/autherror.cfm における SQL インジェクションの脆弱性 - CVE-2007-3301 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
251060 9.3 危険 エフ・セキュア - 複数の F-Secure アンチウイルス製品におけるスキャンを回避される脆弱性 - CVE-2007-3300 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248161 9.8 CRITICAL
Network
ffmpeg
debian
ffmpeg
debian_linux
FFmpeg before commit cced03dd667a5df6df8fd40d8de0bff477ee02e8 contains multiple out of array access vulnerabilities in the mms protocol that can result in attackers accessing out of bound data. This … CWE-125
Out-of-bounds Read
CVE-2018-1999010 2024-11-21 12:57 2018-07-24 Show GitHub Exploit DB Packet Storm
248162 8.1 HIGH
Network
octobercms october October CMS version prior to Build 437 contains a Local File Inclusion vulnerability in modules/system/traits/ViewMaker.php#244 (makeFileContents function) that can result in Sensitive information di… CWE-200
Information Exposure
CVE-2018-1999009 2024-11-21 12:57 2018-07-24 Show GitHub Exploit DB Packet Storm
248163 5.4 MEDIUM
Network
octobercms october October CMS version prior to build 437 contains a Cross Site Scripting (XSS) vulnerability in the Media module and create folder functionality that can result in an Authenticated user with media modu… CWE-79
Cross-site Scripting
CVE-2018-1999008 2024-11-21 12:57 2018-07-24 Show GitHub Exploit DB Packet Storm
248164 7.5 HIGH
Network
dlink dir-850l_firmare An issue was discovered on D-Link DIR-850L 1.21WW devices. A partially completed WPA handshake is sufficient for obtaining full access to the wireless network. A client can access the network by send… CWE-287
Improper Authentication
CVE-2018-18907 2024-11-21 12:56 2022-06-17 Show GitHub Exploit DB Packet Storm
248165 5.3 MEDIUM
Network
avanquest
foxitsoftware
gonitro
iskysoft
pdfforge
qoppa
sodapdf
soft-xpansion
tracker-software
visagesoft
expert_pdf_ultimate
pdf_experte_ultimate
foxit_reader
nitro_pro
nitro_reader
pdf_editor_6
pdfelement6
pdf_architect
pdf_studio
pdf_studio_viewer_2018
soda_pdf
soda_pd…
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, a Signature Wrapping vulnerability exis… CWE-347
 Improper Verification of Cryptographic Signature
CVE-2018-18689 2024-11-21 12:56 2021-01-8 Show GitHub Exploit DB Packet Storm
248166 5.3 MEDIUM
Network
code-industry
foxitsoftware
gonitro
iskysoft
libreoffice
nuance
qoppa
soft-xpansion
master_pdf_editor
foxit_reader
phantompdf
nitro_pro
nitro_reader
pdf_editor_6
pdfelement6
libreoffice
power_pdf_standard
pdf_studio
pdf_studio_viewer_2018
perfect_pdf…
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, an Incremental Saving vulnerability exi… CWE-347
 Improper Verification of Cryptographic Signature
CVE-2018-18688 2024-11-21 12:56 2021-01-8 Show GitHub Exploit DB Packet Storm
248167 6.5 MEDIUM
Network
mozilla
siemens
network_security_services
ruggedcom_rox_mx5000_firmware
ruggedcom_rox_rx1400_firmware
ruggedcom_rox_rx1500_firmware
ruggedcom_rox_rx1501_firmware
ruggedcom_rox_rx1510_firmware
rugge…
In Network Security Services (NSS) before 3.36.7 and before 3.41.1, a malformed signature can cause a crash due to a null dereference, resulting in a Denial of Service. CWE-476
 NULL Pointer Dereference
CVE-2018-18508 2024-11-21 12:56 2020-10-23 Show GitHub Exploit DB Packet Storm
248168 6.1 MEDIUM
Network
grafana grafana Grafana 5.3.1 has XSS via a link on the "Dashboard > All Panels > General" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. CWE-79
Cross-site Scripting
CVE-2018-18625 2024-11-21 12:56 2020-06-3 Show GitHub Exploit DB Packet Storm
248169 6.1 MEDIUM
Network
grafana grafana Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. CWE-79
Cross-site Scripting
CVE-2018-18624 2024-11-21 12:56 2020-06-3 Show GitHub Exploit DB Packet Storm
248170 6.1 MEDIUM
Network
grafana grafana Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. CWE-79
Cross-site Scripting
CVE-2018-18623 2024-11-21 12:56 2020-06-3 Show GitHub Exploit DB Packet Storm