Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251521	4.3	警告	アドビシステムズ	-	Adobe ColdFusion におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0733	2012-03-27 18:43	2011-02-1	Show	GitHub Exploit DB Packet Storm

251522	6.5	警告	Canonical Eucalyptus Systems	-	UEC などで使用される Eucalyptus における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0730	2012-03-27 18:43	2011-06-2	Show	GitHub Exploit DB Packet Storm

251523	7.2	危険	Canonical	-	language-selector の D-Bus バックエンドにおけるファイルを改ざんされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0729	2012-03-27 18:43	2011-04-29	Show	GitHub Exploit DB Packet Storm

251524	3.5	注意	michael hudson-doyle	-	Loggerhead の templatefunctions.py におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0728	2012-03-27 18:43	2011-03-22	Show	GitHub Exploit DB Packet Storm

251525	4.9	警告	Sebastian Heinlein Canonical	-	Ubuntu の org.debian.apt.UpdateCachePartially メソッドにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0725	2012-03-27 18:43	2011-02-23	Show	GitHub Exploit DB Packet Storm

251526	9.3	危険	Canonical	-	Live DVD for Edubuntu における権限を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-0724	2012-03-27 18:43	2011-02-18	Show	GitHub Exploit DB Packet Storm

251527	6.8	警告	MPlayer project FFmpeg	-	MPlayer などの製品で使用される FFmpeg におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0723	2012-03-27 18:43	2011-05-20	Show	GitHub Exploit DB Packet Storm

251528	6.8	警告	FFmpeg mplayerhq	-	MPlayer などの製品で使用される FFmpeg におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-0722	2012-03-27 18:43	2011-05-20	Show	GitHub Exploit DB Packet Storm

251529	6.4	警告	Debian	-	shadow の chfn および chsh における CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2011-0721	2012-03-27 18:43	2011-02-16	Show	GitHub Exploit DB Packet Storm

251530	5.8	警告	レッドハット	-	RHN Satellite Server におけるブルートフォースパスワード攻撃を容易にさせる脆弱性	CWE-287 不適切な認証	CVE-2011-0718	2012-03-27 18:43	2011-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246761	7.8	HIGH Local	jpeg_encoder_project	jpeg_encoder	An issue has been found in jpeg_encoder through 2015-11-27. It is a SEGV in the function readFromBMP in jpeg_encoder.cpp. The signal is caused by an out-of-bounds write.	CWE-787 Out-of-bounds Write	CVE-2018-14944	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

246762	9.8	CRITICAL Network	harmonicinc	nsg_9000_firmware	Harmonic NSG 9000 devices have a default password of nsgadmin for the admin account, a default password of nsgguest for the guest account, and a default password of nsgconfig for the config account.	CWE-798 Use of Hard-coded Credentials	CVE-2018-14943	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

246763	8.8	HIGH Network	harmonicinc	nsg_9000_firmware	Harmonic NSG 9000 devices allow remote authenticated users to conduct directory traversal attacks, as demonstrated by "POST /PY/EMULATION_GET_FILE" or "POST /PY/EMULATION_EXPORT" with FileName=../../…	CWE-22 Path Traversal	CVE-2018-14942	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

246764	6.5	MEDIUM Network	harmonicinc	nsg_9000	Harmonic NSG 9000 devices allow remote authenticated users to read the webapp.py source code via a direct request for the /webapp.py URI.	CWE-200 Information Exposure	CVE-2018-14941	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

246765	7.5	HIGH Network	phpcms	phpcms	PHPCMS 9 allows remote attackers to cause a denial of service (resource consumption) via large font_size, height, and width parameters in an api.php?op=checkcode request.	CWE-400 Uncontrolled Resource Consumption	CVE-2018-14940	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

246766	9.8	CRITICAL Network	libreoffice	libreoffice	The get_app_path function in desktop/unx/source/start.c in LibreOffice through 6.0.5 mishandles the realpath function in certain environments such as FreeBSD libc, which might allow attackers to caus…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-14939	2024-11-21 12:50	2018-08-6	Show	GitHub Exploit DB Packet Storm

246767	9.1	CRITICAL Network	digitalcorpora canonical	tcpflow ubuntu_linux	An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, on…	CWE-125 CWE-190 Out-of-bounds Read Integer Overflow or Wraparound	CVE-2018-14938	2024-11-21 12:50	2018-08-5	Show	GitHub Exploit DB Packet Storm

246768	4.8	MEDIUM Network	mylittleforum	my_little_forum	The Add page option in my little forum 2.4.12 allows XSS via the Menu Link field.	CWE-79 Cross-site Scripting	CVE-2018-14937	2024-11-21 12:50	2018-08-5	Show	GitHub Exploit DB Packet Storm

246769	4.8	MEDIUM Network	mylittleforum	my_little_forum	The Add page option in my little forum 2.4.12 allows XSS via the Title field.	CWE-79 Cross-site Scripting	CVE-2018-14936	2024-11-21 12:50	2018-08-5	Show	GitHub Exploit DB Packet Storm

246770	9.8	CRITICAL Network	nuuo	nvrmini_firmware	upgrade_handle.php on NUUO NVRmini devices allows Remote Command Execution via shell metacharacters in the uploaddir parameter for a writeuploaddir command.	CWE-78 OS Command	CVE-2018-14933	2024-11-21 12:50	2018-08-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed