Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251381 9.3 危険 アクシスコミュニケーションズ - AXIS および Panorama PTZ の SaveBMP メソッドにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2239 2012-06-26 15:46 2007-05-7 Show GitHub Exploit DB Packet Storm
251382 6.5 警告 cosign - Cosign の cosign-bin/cosign.cgi における任意ユーザとして不正な操作を実行される脆弱性 - CVE-2007-2233 2012-06-26 15:46 2007-04-25 Show GitHub Exploit DB Packet Storm
251383 7.5 危険 cosign - Cosign の CHECK コマンドにおける認証要件を回避される脆弱性 - CVE-2007-2232 2012-06-26 15:46 2007-04-25 Show GitHub Exploit DB Packet Storm
251384 6.5 警告 CA Technologies - CA Clever Path Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-2230 2012-06-26 15:46 2007-04-24 Show GitHub Exploit DB Packet Storm
251385 7.5 危険 dmcms - DmCMS の includes/upload_file.php における PHP スクリプトをアップロードされる脆弱性 - CVE-2007-2214 2012-06-26 15:46 2007-04-24 Show GitHub Exploit DB Packet Storm
251386 6.8 警告 コーレル株式会社
accusoft
- AccuSoft ImageGear の igcore15d.dll におけるバッファオーバーフローの脆弱性 - CVE-2007-2209 2012-06-26 15:46 2007-04-24 Show GitHub Exploit DB Packet Storm
251387 7.5 危険 extreme phpbb - Extreme PHPBB2 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2208 2012-06-26 15:46 2007-04-24 Show GitHub Exploit DB Packet Storm
251388 7.5 危険 gpl php board - GPB における PHP リモートファイルインクルーションの脆弱性 - CVE-2007-2204 2012-06-26 15:46 2007-04-24 Show GitHub Exploit DB Packet Storm
251389 4.3 警告 big blue - Big Blue Guestbook におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2203 2012-06-26 15:46 2007-04-24 Show GitHub Exploit DB Packet Storm
251390 6.8 警告 acvsws - ACVSWS_PHP5 の inc_ACVS/SOAP/Transport.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2202 2012-06-26 15:46 2007-04-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253771 8.8 HIGH
Network
redhat openshift_container_platform source-to-image component of Openshift Container Platform before versions atomic-openshift 3.7.53, atomic-openshift 3.9.31 is vulnerable to a privilege escalation which allows the assemble script to … CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-10843 2024-11-21 12:42 2018-07-3 Show GitHub Exploit DB Packet Storm
253772 7.8 HIGH
Local
redhat virtualization_host
virtualization
ansible_engine
openstack
In ansible it was found that inventory variables are loaded from current working directory when running ad-hoc command which are under attacker's control, allowing to run arbitrary code as a result. - CVE-2018-10874 2024-11-21 12:42 2018-07-2 Show GitHub Exploit DB Packet Storm
253773 7.5 HIGH
Network
debian
canonical
perl-archive-zip_project
debian_linux
ubuntu_linux
perl-archive-zip
perl-archive-zip is vulnerable to a directory traversal in Archive::Zip. It was found that the Archive::Zip module did not properly sanitize paths while extracting zip files. An attacker able to prov… CWE-22
Path Traversal
CVE-2018-10860 2024-11-21 12:42 2018-06-30 Show GitHub Exploit DB Packet Storm
253774 6.5 MEDIUM
Network
dell emc_idrac_service_module Dell EMC iDRAC Service Module for all supported Linux and XenServer versions v3.0.1, v3.0.2, v3.1.0, v3.2.0, when started, changes the default file permission of the hosts file of the host operating … CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-11053 2024-11-21 12:42 2018-06-27 Show GitHub Exploit DB Packet Storm
253775 7.5 HIGH
Network
debian
fedoraproject
redhat
debian_linux
sssd
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
The UNIX pipe which sudo uses to contact SSSD and read the available sudo rules from SSSD has too wide permissions, which means that anyone who can send a message using the same raw protocol that sud… CWE-200
Information Exposure
CVE-2018-10852 2024-11-21 12:42 2018-06-26 Show GitHub Exploit DB Packet Storm
253776 6.5 MEDIUM
Network
pivotal_software operations_manager Pivotal Operations Manager, versions 2.1.x prior to 2.1.6 and version 2.0.14, includes NGINX packages that lacks security vulnerability patches. An attacker with access to the NGINX processes and kno… CWE-20
 Improper Input Validation 
CVE-2018-11046 2024-11-21 12:42 2018-06-26 Show GitHub Exploit DB Packet Storm
253777 6.1 MEDIUM
Network
pivotal_software cloud_foundry_uaa
cloud_foundry_uaa-release
Cloud Foundry UAA, versions later than 4.6.0 and prior to 4.19.0 except 4.10.1 and 4.7.5 and uaa-release versions later than v48 and prior to v60 except v55.1 and v52.9, does not validate redirect UR… CWE-601
Open Redirect
CVE-2018-11041 2024-11-21 12:42 2018-06-26 Show GitHub Exploit DB Packet Storm
253778 7.5 HIGH
Network
vmware
oracle
debian
spring_framework
flexcube_private_banking
retail_xstore_point_of_service
application_testing_suite
hospitality_guest_access
weblogic_server
enterprise_manager_ops_center
endeca_i…
Spring Framework, versions 5.0.x prior to 5.0.7 and 4.3.x prior to 4.3.18 and older unsupported versions, allows web applications to enable cross-domain requests via JSONP (JSON with Padding) through… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere
CVE-2018-11040 2024-11-21 12:42 2018-06-26 Show GitHub Exploit DB Packet Storm
253779 7.5 HIGH
Network
ipconfigure orchid_core_vms IPConfigure Orchid Core VMS 2.0.5 allows Directory Traversal. CWE-22
Path Traversal
CVE-2018-10956 2024-11-21 12:42 2018-06-26 Show GitHub Exploit DB Packet Storm
253780 5.9 MEDIUM
Network
vmware
oracle
debian
spring_framework
retail_xstore_point_of_service
weblogic_server
application_testing_suite
hospitality_guest_access
enterprise_manager_ops_center
primavera_p6_enterprise_project_port…
Spring Framework (versions 5.0.x prior to 5.0.7, versions 4.3.x prior to 4.3.18, and older unsupported versions) allow web applications to change the HTTP request method to any HTTP method (including… NVD-CWE-noinfo
CVE-2018-11039 2024-11-21 12:42 2018-06-26 Show GitHub Exploit DB Packet Storm