Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251121 4.3 警告 anything-digital - Joomla! の Yannick Gaultier コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4405 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251122 7.5 危険 anything-digital - Joomla! の Yannick Gaultier コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4404 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251123 5 警告 devbits - WordPress の Register Plus プラグインにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4403 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251124 4.3 警告 devbits - WordPress の wp-login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4402 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251125 5 警告 dynpg - DynPG CMS の languages.inc.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4401 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251126 7.5 危険 dynpg - DynPG CMS の in _rights.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4400 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251127 4.3 警告 dynpg - DynPG CMS の languages.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4399 2012-03-27 18:42 2010-12-6 Show GitHub Exploit DB Packet Storm
251128 4.3 警告 Nullsoft - Winamp の in_mkv プラグインにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4374 2012-03-27 18:42 2010-11-27 Show GitHub Exploit DB Packet Storm
251129 4.3 警告 Nullsoft - Winamp の in_mp4 プラグインにおけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2010-4373 2012-03-27 18:42 2010-11-27 Show GitHub Exploit DB Packet Storm
251130 9.3 危険 Nullsoft - Winamp の in_nsv プラグインにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4372 2012-03-27 18:42 2010-11-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247611 7.8 HIGH
Local 		google android In Android for MSM, Firefox OS for MSM, and QRD Android with all Android releases from CAF using the Linux kernel while trying to find out total number of partition via a non zero check, there could … CWE-787
CWE-682
 Out-of-bounds Write
 Incorrect Calculation 		CVE-2018-11262 2024-11-21 12:43 2018-09-5 Show GitHub Exploit DB Packet Storm
247612 7.5 HIGH
Network 		xovis pc2r_firmware
pc3_firmware
pc2_firmware 		Xovis PC2, PC2R, and PC3 devices through 3.6.0 allow Directory Traversal. CWE-22
Path Traversal 		CVE-2018-11720 2024-11-21 12:43 2018-08-31 Show GitHub Exploit DB Packet Storm
247613 4.9 MEDIUM
Network 		xovis pc2r_firmware
pc3_firmware
pc2_firmware 		Xovis PC2, PC2R, and PC3 devices through 3.6.0 allow XXE. CWE-611
XXE 		CVE-2018-11719 2024-11-21 12:43 2018-08-31 Show GitHub Exploit DB Packet Storm
247614 8.8 HIGH
Network 		xovis pc2r_firmware
pc3_firmware
pc2_firmware 		Xovis PC2, PC2R, and PC3 devices through 3.6.0 allow CSRF. CWE-352
 Origin Validation Error 		CVE-2018-11718 2024-11-21 12:43 2018-08-31 Show GitHub Exploit DB Packet Storm
247615 8.8 HIGH
Network 		tencent foxmail This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tencent Foxmail 7.2.9.115. User interaction is required to exploit this vulnerability in that the t… CWE-78
OS Command  		CVE-2018-11616 2024-11-21 12:43 2018-08-30 Show GitHub Exploit DB Packet Storm
247616 7.5 HIGH
Network 		mosca_project mosca This vulnerability allows remote attackers to deny service on vulnerable installations of npm mosca 2.8.1. Authentication is not required to exploit this vulnerability. The specific flaw exists withi… CWE-185
 Incorrect Regular Expression 		CVE-2018-11615 2024-11-21 12:43 2018-08-30 Show GitHub Exploit DB Packet Storm
247617 7.5 HIGH
Network 		seasofsolutions ip_camera_firmware Information disclosure in Netwave IP camera at get_status.cgi (via HTTP on port 8000) allows an unauthenticated attacker to exfiltrate sensitive information from the device. CWE-200
Information Exposure 		CVE-2018-11654 2024-11-21 12:43 2018-08-25 Show GitHub Exploit DB Packet Storm
247618 9.8 CRITICAL
Network 		seasofsolutions ip_camera_firmware Information disclosure in Netwave IP camera at //etc/RT2870STA.dat (via HTTP on port 8000) allows an unauthenticated attacker to exfiltrate sensitive information about the network configuration like … CWE-200
Information Exposure 		CVE-2018-11653 2024-11-21 12:43 2018-08-25 Show GitHub Exploit DB Packet Storm
247619 6.5 MEDIUM
Network 		moderator_log_notes_project moderator_log_notes An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. An attacker can remotely delete all mod notes and m… CWE-352
 Origin Validation Error 		CVE-2018-11502 2024-11-21 12:43 2018-08-25 Show GitHub Exploit DB Packet Storm
247620 9.8 CRITICAL
Network 		puppet puppet_enterprise When users are configured to use startTLS with RBAC LDAP, at login time, the user's credentials are sent via plaintext to the LDAP server. This affects Puppet Enterprise 2018.1.3, 2017.3.9, and 2016.… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2018-11749 2024-11-21 12:43 2018-08-24 Show GitHub Exploit DB Packet Storm