Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251621	4.3	警告	LEPTON Project	-	LEPTON におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-1000	2012-02-27 15:25	2012-02-24	Show	GitHub Exploit DB Packet Storm

251622	7.5	危険	LEPTON Project	-	LEPTON の modules/news/rss.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-0999	2012-02-27 15:24	2012-02-24	Show	GitHub Exploit DB Packet Storm

251623	7.5	危険	LEPTON Project	-	LEPTON の account/preferences.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0998	2012-02-27 15:24	2012-02-24	Show	GitHub Exploit DB Packet Storm

251624	6.8	警告	11in1	-	11in1 の admin/index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0997	2012-02-27 15:23	2012-02-24	Show	GitHub Exploit DB Packet Storm

251625	5	警告	11in1	-	11in1 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0996	2012-02-27 15:21	2012-02-24	Show	GitHub Exploit DB Packet Storm

251626	7.5	危険	CONTIMEX	-	CONTIMEX Impulsio CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-1294	2012-02-27 15:20	2011-02-23	Show	GitHub Exploit DB Packet Storm

251627	4.3	警告	BoonEx	-	Boonex Dolphin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0873	2012-02-27 15:20	2011-02-23	Show	GitHub Exploit DB Packet Storm

251628	5	警告	John Koleszar	-	VP8 Codec SDK (libvpx) におけるサービス運用妨害 (アプリケーションクラッシュ)の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0823	2012-02-27 15:19	2012-02-23	Show	GitHub Exploit DB Packet Storm

251629	5	警告	SAP	-	SAP NetWeaver における MessagingSystem Performance Data についての重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1292	2012-02-27 13:49	2012-02-23	Show	GitHub Exploit DB Packet Storm

251630	5	警告	SAP	-	SAP NetWeaver における Adapter Monitor についての重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1291	2012-02-27 13:48	2012-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247381	7.8	HIGH Local	jenkins	github_pull_request_builder	An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system acce…	CWE-200 Information Exposure	CVE-2018-1000142	2024-11-21 12:39	2018-04-5	Show	GitHub Exploit DB Packet Storm

247382	8.8	HIGH Network	microsoft	security_essentials exchange_server forefront_endpoint_protection_2010 intune_endpoint_protection system_center_endpoint_protection windows_defender	A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protect…	CWE-787 Out-of-bounds Write	CVE-2018-0986	2024-11-21 12:39	2018-04-5	Show	GitHub Exploit DB Packet Storm

247383	9.1	CRITICAL Network	i-librarian	i_librarian	I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access (read, write and delete) to proj…	CWE-269 Improper Privilege Management	CVE-2018-1000141	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247384	9.8	CRITICAL Network	rsyslog debian canonical redhat	librelp debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_server_tus enterprise_linux_server enterpr…	rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be…	CWE-787 Out-of-bounds Write	CVE-2018-1000140	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247385	6.1	MEDIUM Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a Cross Site Scripting (XSS) vulnerability in "id" parameter in stable.php that can result in an attacker using the XSS to send a malicious script to an …	CWE-79 Cross-site Scripting	CVE-2018-1000139	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247386	9.1	CRITICAL Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or upd…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-1000138	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247387	8.8	HIGH Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a Cross site Request Forgery (CSRF) vulnerability in users.php that can result in the password of the admin being forced to be changed without the admini…	CWE-352 Origin Validation Error	CVE-2018-1000137	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247388	8.1	HIGH Network	electronjs	electron	Electron version 1.7 up to 1.7.12; 1.8 up to 1.8.3 and 2.0.0 up to 2.0.0-beta.3 contains an improper handling of values vulnerability in Webviews that can result in remote code execution. This attack…	CWE-20 Improper Input Validation	CVE-2018-1000136	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247389	7.5	HIGH Network	gnome canonical	networkmanager ubuntu_linux	GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure (CWE-200) vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, w…	CWE-200 Information Exposure	CVE-2018-1000135	2024-11-21 12:39	2018-03-20	Show	GitHub Exploit DB Packet Storm

247390	7.5	HIGH Network	secluded	trident	Pitchfork version 1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident Pitchfork components that can result in A standard unprivileged user could gain system administrator per…	CWE-269 Improper Privilege Management	CVE-2018-1000133	2024-11-21 12:39	2018-03-16	Show	GitHub Exploit DB Packet Storm