Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251461 10 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2009-5052 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
251462 5 警告 Hastymail - Hastymail2 におけるクッキーを取り込まれる脆弱性 CWE-16
環境設定 		CVE-2009-5051 2012-03-27 18:42 2011-01-18 Show GitHub Exploit DB Packet Storm
251463 5 警告 ViewVC - ViewVC における cvsdb row_limit 設定を迂回される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5024 2012-03-27 18:42 2011-05-23 Show GitHub Exploit DB Packet Storm
251464 6.8 警告 catb - gif2png における任意のコマンドを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-5018 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
251465 4 警告 IBM - IBM Lotus Notes Traveler の traveler.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2009-5036 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
251466 4.3 警告 IBM - IBM Lotus Notes Traveler の Nokia クライアントにおける他人への電子メールを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-5035 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
251467 4 警告 IBM - IBM Lotus Notes Traveler におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5034 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
251468 4 警告 IBM - IBM Lotus Notes Traveler における他人のユーザデータにアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2009-5033 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
251469 5.8 警告 IBM - IBM Lotus Notes Traveler の電子メール暗号化機能における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-5032 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
251470 7.5 危険 Cobbler project - Cobbler におけるアクセスを取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-5021 2012-03-27 18:42 2010-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247291 6.1 MEDIUM
Network 		ckeditor ckeditor_5-link Cross-site scripting (XSS) vulnerability in the Link package for CKEditor 5 before 10.0.1 allows remote attackers to inject arbitrary web script through a crafted href attribute of a link (A) element. CWE-79
Cross-site Scripting 		CVE-2018-11093 2024-11-21 12:42 2018-05-23 Show GitHub Exploit DB Packet Storm
247292 6.5 MEDIUM
Network 		horse_market_sell_\&_rent_portal_project horse_market_sell_\&_rent_portal Horse Market Sell & Rent Portal Script 1.5.7 has a CSRF vulnerability through which an attacker can change all of the target's account information remotely. CWE-352
 Origin Validation Error 		CVE-2018-11096 2024-11-21 12:42 2018-05-21 Show GitHub Exploit DB Packet Storm
247293 6.5 MEDIUM
Network 		admin_notes_project admin_notes An issue was discovered in the Admin Notes plugin 1.1 for MyBB. CSRF allows an attacker to remotely delete all admin notes via an admin/index.php?empty=table (aka Clear Table) action. CWE-352
 Origin Validation Error 		CVE-2018-11092 2024-11-21 12:42 2018-05-21 Show GitHub Exploit DB Packet Storm
247294 6.5 MEDIUM
Network 		makemytrip makemytrip An issue was discovered in the MakeMyTrip application 7.2.4 for Android. The databases (locally stored) are not encrypted and have cleartext that might lead to sensitive information disclosure, as de… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2018-11242 2024-11-21 12:42 2018-05-20 Show GitHub Exploit DB Packet Storm
247295 7.5 HIGH
Network 		hexagontoken hexagon An integer overflow in the _transfer function of a smart contract implementation for Hexagon (HXG), an Ethereum ERC20 token, allows attackers to accomplish an unauthorized increase of digital assets … CWE-190
 Integer Overflow or Wraparound 		CVE-2018-11239 2024-11-21 12:42 2018-05-20 Show GitHub Exploit DB Packet Storm
247296 5.5 MEDIUM
Local 		podofo_project podofo An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and applic… CWE-476
 NULL Pointer Dereference 		CVE-2018-11255 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
247297 5.5 MEDIUM
Local 		podofo_project podofo An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a… CWE-674
 Uncontrolled Recursion 		CVE-2018-11254 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
247298 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.7-23 Q16 x86_64 2018-01-24, there is a heap-based buffer over-read in ReadSUNImage in coders/sun.c, which allows attackers to cause a denial of service (application crash in SetGra… CWE-125
Out-of-bounds Read 		CVE-2018-11251 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
247299 9.8 CRITICAL
Network 		liulishuo filedownloader util/FileDownloadUtils.java in FileDownloader 1.7.3 does not check an attachment's name. If an attacker places "../" in the file name, the file can be stored in an unintended directory because of Dir… CWE-22
Path Traversal 		CVE-2018-11248 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
247300 6.1 MEDIUM
Network 		misp-project misp app/webroot/js/misp.js in MISP 2.4.91 has a DOM based XSS with cortex type attributes. CWE-79
Cross-site Scripting 		CVE-2018-11245 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm