Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251061 4.3 警告 awffull - AWFFull におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3299 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
251062 7.5 危険 cybozu labs - Musoo における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3297 2012-06-26 15:46 2007-06-20 Show GitHub Exploit DB Packet Storm
251063 6.8 警告 アバイア - Avaya IP Softphone の ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2007-3286 2012-06-26 15:46 2007-09-11 Show GitHub Exploit DB Packet Storm
251064 7.8 危険 アップル - Apple Safari の corefoundation.dll におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3284 2012-06-26 15:46 2007-06-19 Show GitHub Exploit DB Packet Storm
251065 7.8 危険 アップル
マイクロソフト
- Apple Safari におけるサービス運用妨害 (アプリケーションクラッシュ) 状態となる脆弱性 - CVE-2007-3274 2012-06-26 15:46 2007-06-19 Show GitHub Exploit DB Packet Storm
251066 7.5 危険 FuseTalk - FuseTalk の index.cfm における SQL インジェクションの脆弱性 - CVE-2007-3273 2012-06-26 15:46 2007-06-19 Show GitHub Exploit DB Packet Storm
251067 4.3 警告 fuzzylime forum - Fuzzylime Forum の low.php におけるクロスサイトスクリプティングの脆弱性の脆弱性 - CVE-2007-3267 2012-06-26 15:46 2007-06-19 Show GitHub Exploit DB Packet Storm
251068 4.3 警告 dkret - dKret の widgets/widget_search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3261 2012-06-26 15:46 2007-06-19 Show GitHub Exploit DB Packet Storm
251069 7.8 危険 Astaro - ASG におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3253 2012-06-26 15:46 2007-06-18 Show GitHub Exploit DB Packet Storm
251070 7.8 危険 e-vision - e-Vision CMS におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3251 2012-06-26 15:46 2007-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255141 9.8 CRITICAL
Network
haxx
debian
canonical
redhat
fujitsu
curl
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
m10-1_firm…
libcurl 7.1 through 7.57.0 might accidentally leak authentication data to third parties. When asked to send custom headers in its HTTP requests, libcurl will send that set of headers first to the hos… NVD-CWE-noinfo
CVE-2018-1000007 2024-11-21 12:39 2018-01-25 Show GitHub Exploit DB Packet Storm
255142 9.1 CRITICAL
Network
haxx
debian
canonical
libcurl
debian_linux
ubuntu_linux
libcurl 7.49.0 to and including 7.57.0 contains an out bounds read in code handling HTTP/2 trailers. It was reported (https://github.com/curl/curl/pull/2231) that reading an HTTP/2 trailer could mess… CWE-125
Out-of-bounds Read
CVE-2018-1000005 2024-11-21 12:39 2018-01-25 Show GitHub Exploit DB Packet Storm
255143 7.8 HIGH
Local
ovirt ovirt-hosted-engine-setup An information disclosure in ovirt-hosted-engine-setup prior to 2.2.7 reveals the root user's password in the log file. CWE-532
 Inclusion of Sensitive Information in Log Files
CVE-2018-1000018 2024-11-21 12:39 2018-01-24 Show GitHub Exploit DB Packet Storm
255144 4.8 MEDIUM
Network
jenkins pipeline_nodes_and_processes On Jenkins instances with Authorize Project plugin, the authentication associated with a build may lack the Computer/Build permission on some agents. This did not prevent the execution of Pipeline `n… CWE-862
 Missing Authorization
CVE-2018-1000015 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
255145 8.8 HIGH
Network
jenkins translation_assistance Jenkins Translation Assistance Plugin 1.15 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to override localized strings di… CWE-352
 Origin Validation Error
CVE-2018-1000014 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
255146 8.8 HIGH
Network
jenkins release Jenkins Release Plugin 2.9 and earlier did not require form submissions to be submitted via POST, resulting in a CSRF vulnerability allowing attackers to trigger release builds. CWE-352
 Origin Validation Error
CVE-2018-1000013 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
255147 8.8 HIGH
Network
jenkins warnings Jenkins Warnings Plugin 4.64 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from t… CWE-611
XXE
CVE-2018-1000012 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
255148 8.8 HIGH
Network
jenkins findbugs Jenkins FindBugs Plugin 4.71 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from t… CWE-611
XXE
CVE-2018-1000011 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
255149 8.8 HIGH
Network
jenkins dry Jenkins DRY Plugin 2.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Je… CWE-611
XXE
CVE-2018-1000010 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm
255150 8.8 HIGH
Network
jenkins checkstyle Jenkins Checkstyle Plugin 3.49 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from… CWE-611
XXE
CVE-2018-1000009 2024-11-21 12:39 2018-01-23 Show GitHub Exploit DB Packet Storm