Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251541 7.5 危険 SmarterTools Inc. - SmarterTools SmarterStats Web サーバにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2149 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
251542 10 危険 SmarterTools Inc. - SmarterTools SmarterStats Web サーバの Admin/frmSite.aspx における任意コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-2148 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
251543 3.6 注意 Openswan - Openswan における任意のプロセスを kill される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2147 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
251544 5 警告 IBM - IBM Datacap Taskmaster Capture の eDocument Conversion Actions 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2144 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
251545 6.8 警告 IBM - IBM Datacap Taskmaster Captureにおけるログインのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2143 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
251546 5 警告 IBM - IBM Datacap Taskmaster Capture の Web Client Service における平文のパスワードを要求する脆弱性 CWE-310
暗号の問題 		CVE-2011-2142 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
251547 7.5 危険 IBM - IBM Datacap Taskmaster Capture の TMWeb におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2141 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
251548 5 警告 opensymphony
Apache Software Foundation		 - Apache Struts の XWork における重要情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2088 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
251549 4.3 警告 Apache Software Foundation - Apache Struts の javatemplates プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2087 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
251550 5 警告 inventivetec - MediaCAST における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2081 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246751 6.1 MEDIUM
Network 		tp5cms_project tp5cms tp5cms through 2017-05-25 has XSS via the admin.php/article/index.html q parameter. CWE-79
Cross-site Scripting 		CVE-2018-15566 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
246752 8.8 HIGH
Network 		simple-cms_project simple_cms An issue was discovered in daveismyname simple-cms through 2014-03-11. admin/addpage.php does not require authentication for adding a page. This can also be exploited via CSRF. CWE-352
 Origin Validation Error 		CVE-2018-15565 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
246753 8.8 HIGH
Network 		simple-cms_project simple_cms An issue was discovered in daveismyname simple-cms through 2014-03-11. There is a CSRF vulnerability that can delete any page via admin/?delpage=8. CWE-352
 Origin Validation Error 		CVE-2018-15564 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
246754 7.5 HIGH
Network 		pycryptodome pycryptodome PyCryptodome before 3.6.6 has an integer overflow in the data_len variable in AESNI.c, related to the AESNI_encrypt and AESNI_decrypt functions, leading to the mishandling of messages shorter than 16… CWE-190
 Integer Overflow or Wraparound 		CVE-2018-15560 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
246755 6.1 MEDIUM
Network 		xiuno xiunobbs The editor in Xiuno BBS 4.0.4 allows stored XSS. CWE-79
Cross-site Scripting 		CVE-2018-15559 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
246756 8.8 HIGH
Network 		telus actiontec_t2200h_firmware fileshare.cmd on Telus Actiontec T2200H T2200H-31.128L.03 devices allows OS Command Injection via shell metacharacters in the smbdUserid or smbdPasswd field. CWE-78
OS Command  		CVE-2018-15553 2024-11-21 12:51 2018-08-20 Show GitHub Exploit DB Packet Storm
246757 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. The diff formatter using rouge can block for a long time in Sidekiq j… NVD-CWE-noinfo
CVE-2018-15472 2024-11-21 12:50 2023-04-16 Show GitHub Exploit DB Packet Storm
246758 7.5 HIGH
Network 		tcpdump
redhat
debian
opensuse
fedoraproject
f5
apple 		tcpdump
enterprise_linux
debian_linux
leap
fedora
traffix_signaling_delivery_controller
mac_os_x 		The ICMPv6 parser in tcpdump before 4.9.3 has a buffer over-read in print-icmp6.c. CWE-125
Out-of-bounds Read 		CVE-2018-14882 2024-11-21 12:50 2019-10-4 Show GitHub Exploit DB Packet Storm
246759 5.3 MEDIUM
Network 		totemo totemomail Log viewer in totemomail 6.0.0 build 570 allows access to sessionIDs of high privileged users by leveraging access to a read-only auditor role. CWE-284
Improper Access Control 		CVE-2018-15513 2024-11-21 12:50 2019-08-30 Show GitHub Exploit DB Packet Storm
246760 6.1 MEDIUM
Network 		totemo totemomail Cross-site scripting (XSS) vulnerability in the 'Authorisation Service' feature of totemomail 6.0.0 build 570 allows remote attackers to inject arbitrary web script or HTML. CWE-79
Cross-site Scripting 		CVE-2018-15512 2024-11-21 12:50 2019-08-30 Show GitHub Exploit DB Packet Storm