Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251931 7.5 危険 TimeTrack - Joomla! 用 TimeTrack コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4926 2012-02-28 13:53 2011-10-9 Show GitHub Exploit DB Packet Storm
251932 7.5 危険 Nuked-Klan - Nuked-Klan 用 Partenaires モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4925 2012-02-28 13:40 2011-10-9 Show GitHub Exploit DB Packet Storm
251933 7.5 危険 Virtue Netz - Virtue Netz Virtue Book Store における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4923 2012-02-28 13:39 2011-10-9 Show GitHub Exploit DB Packet Storm
251934 7.5 危険 Allinta - Allinta CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4922 2012-02-28 11:20 2011-10-9 Show GitHub Exploit DB Packet Storm
251935 7.5 危険 DMXReady - DMXReady Polling Booth Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4921 2012-02-28 11:18 2011-10-8 Show GitHub Exploit DB Packet Storm
251936 7.5 危険 Micronetsoft - Micronetsoft Rental Property Management Website の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4920 2012-02-28 11:04 2011-10-8 Show GitHub Exploit DB Packet Storm
251937 7.5 危険 Micronetsoft - Micronetsoft RV Dealer Website の detail.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4919 2012-02-28 10:55 2011-10-8 Show GitHub Exploit DB Packet Storm
251938 7.5 危険 iJoomla - Joomla! 用 iJoomla Magazine コンポーネントにおける任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4918 2012-02-28 10:53 2011-10-8 Show GitHub Exploit DB Packet Storm
251939 7.5 危険 Yegnold - A-Blog の sources/search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4917 2012-02-28 10:52 2011-10-8 Show GitHub Exploit DB Packet Storm
251940 7.5 危険 ColdGen - ColdGen ColdUserGroup の index.cfm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4916 2012-02-28 10:50 2011-10-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246821 5.5 MEDIUM
Local 		radare radare2 The get_debug_info() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted PE file. CWE-125
Out-of-bounds Read 		CVE-2018-11379 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246822 7.8 HIGH
Local 		radare radare2 The wasm_dis() function in libr/asm/arch/wasm/wasm.c in or possibly have unspecified other impact via a crafted WASM file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-11378 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246823 5.5 MEDIUM
Local 		radare radare2 The avr_op_analyze() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file. CWE-125
Out-of-bounds Read 		CVE-2018-11377 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246824 5.5 MEDIUM
Local 		radare radare2 The r_read_le32() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file. CWE-125
Out-of-bounds Read 		CVE-2018-11376 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246825 5.5 MEDIUM
Local 		radare radare2 The _inst__lds() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file. CWE-125
Out-of-bounds Read 		CVE-2018-11375 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246826 9.8 CRITICAL
Network 		iscripts eswap iScripts eSwap v2.4 has SQL injection via the "salelistdetailed.php" User Panel ToId parameter. CWE-89
SQL Injection 		CVE-2018-11373 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246827 9.8 CRITICAL
Network 		iscripts eswap iScripts eSwap v2.4 has SQL injection via the wishlistdetailed.php User Panel ToId parameter. CWE-89
SQL Injection 		CVE-2018-11372 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246828 8.8 HIGH
Network 		skycaiji skycaiji SkyCaiji 1.2 allows CSRF to add an Administrator user. CWE-352
 Origin Validation Error 		CVE-2018-11371 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246829 9.8 CRITICAL
Network 		pbootcms pbootcms An issue was discovered in PbootCMS v1.0.9. There is a SQL Injection that can get important information from the database via the \apps\home\controller\ParserController.php scode parameter. CWE-89
SQL Injection 		CVE-2018-11369 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm
246830 4.7 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! Core before 3.8.8. Under specific circumstances (a redirect issued with a URI containing a username and password when the Location: header cannot be used), a lack o… CWE-79
Cross-site Scripting 		CVE-2018-11328 2024-11-21 12:43 2018-05-23 Show GitHub Exploit DB Packet Storm