Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251951	5	警告	The Support Incident Tracker Project	-	Support Incident Tracker の translate.php における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-5075	2012-02-1 16:20	2011-11-13	Show	GitHub Exploit DB Packet Storm

251952	6.8	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-5074	2012-02-1 16:18	2012-01-29	Show	GitHub Exploit DB Packet Storm

251953	5.8	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5073	2012-02-1 16:18	2012-01-29	Show	GitHub Exploit DB Packet Storm

251954	7.5	危険	The Support Incident Tracker Project	-	Support Incident Tracker における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5072	2012-02-1 16:17	2012-01-29	Show	GitHub Exploit DB Packet Storm

251955	7.5	危険	The Support Incident Tracker Project	-	Support Incident Tracker における任意の PHP コードを実行可能な言語ファイルに挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4337	2012-02-1 16:17	2011-11-13	Show	GitHub Exploit DB Packet Storm

251956	7.5	危険	The Support Incident Tracker Project	-	Support Incident Tracker における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5071	2012-02-1 16:16	2012-01-29	Show	GitHub Exploit DB Packet Storm

251957	4.3	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5070	2012-02-1 16:16	2012-01-29	Show	GitHub Exploit DB Packet Storm

251958	6	警告	The Support Incident Tracker Project	-	Support Incident Tracker の incident_attachments.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2011-5069	2012-02-1 16:15	2012-01-29	Show	GitHub Exploit DB Packet Storm

251959	6.8	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-5068	2012-02-1 16:11	2012-01-29	Show	GitHub Exploit DB Packet Storm

251960	4	警告	The Support Incident Tracker Project	-	Support Incident Tracker の move_uploaded_file.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-5067	2012-02-1 16:07	2012-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246881	7.8	HIGH Local	microsoft	word office office_compatibility_pack	Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way ob…	NVD-CWE-noinfo	CVE-2018-0845	2024-11-21 12:39	2018-01-23	Show	GitHub Exploit DB Packet Storm

246882	3.7	LOW Network	powerdns	recursor	Improper input validation bugs in DNSSEC validators components in PowerDNS version 4.1.0 allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet replay.	CWE-20 Improper Input Validation	CVE-2018-1000003	2024-11-21 12:39	2018-01-23	Show	GitHub Exploit DB Packet Storm

246883	3.7	LOW Network	nic	knot_resolver	Improper input validation bugs in DNSSEC validators components in Knot Resolver (prior version 1.5.2) allow attacker in man-in-the-middle position to deny existence of some data in DNS via packet rep…	CWE-20 Improper Input Validation	CVE-2018-1000002	2024-11-21 12:39	2018-01-23	Show	GitHub Exploit DB Packet Storm

246884	5.9	MEDIUM Network	linux	linux_kernel	In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.	CWE-362 Race Condition	CVE-2018-1000004	2024-11-21 12:39	2018-01-17	Show	GitHub Exploit DB Packet Storm

246885	6.5	MEDIUM Network	microsoft	office	Microsoft Office 2016 for Mac allows an attacker to send a specially crafted email attachment to a user in an attempt to launch a social engineering attack, such as phishing, due to how Outlook for M…	NVD-CWE-noinfo	CVE-2018-0819	2024-11-21 12:39	2018-01-10	Show	GitHub Exploit DB Packet Storm

246886	7.5	HIGH Network	microsoft	chakracore	Microsoft ChakraCore allows an attacker to bypass Control Flow Guard (CFG) in conjunction with another vulnerability to run arbitrary code on a target system, due to how the Chakra scripting engine h…	NVD-CWE-noinfo	CVE-2018-0818	2024-11-21 12:39	2018-01-10	Show	GitHub Exploit DB Packet Storm

246887	7.8	HIGH Local	microsoft	word office office_compatibility_pack	Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way ob…	CWE-787 Out-of-bounds Write	CVE-2018-0812	2024-11-21 12:39	2018-01-10	Show	GitHub Exploit DB Packet Storm

246888	9.8	CRITICAL Network	qnap	qts	This command injection vulnerability in File Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.	CWE-77 Command Injection	CVE-2018-0730	2024-11-21 12:38	2019-12-5	Show	GitHub Exploit DB Packet Storm

246889	9.8	CRITICAL Network	qnap	music_station	This command injection vulnerability in Music Station allows attackers to execute commands on the affected device. To fix the vulnerability, QNAP recommend updating Music Station to their latest vers…	CWE-77 Command Injection	CVE-2018-0729	2024-11-21 12:38	2019-12-5	Show	GitHub Exploit DB Packet Storm

246890	7.5	HIGH Network	qnap	helpdesk	This improper access control vulnerability in Helpdesk allows attackers to access the system logs. To fix the vulnerability, QNAP recommend updating QTS and Helpdesk to their latest versions.	CWE-269 Improper Privilege Management	CVE-2018-0728	2024-11-21 12:38	2019-12-5	Show	GitHub Exploit DB Packet Storm