Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252011 2.1 注意 kevinmehall - Pithos の PreferencesPithosDialog.py における資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1500 2012-03-27 18:43 2011-04-13 Show GitHub Exploit DB Packet Storm
252012 2.6 注意 banu - Tinyproxy の acl.c における Web トラフィックの発生源を隠蔽される脆弱性 CWE-16
環境設定 		CVE-2011-1499 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
252013 4.3 警告 Apache Software Foundation - Apache HttpComponents の Apache HttpClinet における重要情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-1498 2012-03-27 18:43 2011-07-7 Show GitHub Exploit DB Packet Storm
252014 4.6 警告 nicholas marriott - tmux における utmp グループ権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1496 2012-03-27 18:43 2011-04-18 Show GitHub Exploit DB Packet Storm
252015 5.5 警告 Roundcube.net - Roundcube Webmail の steps/utils/modcss.inc における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1492 2012-03-27 18:43 2011-04-8 Show GitHub Exploit DB Packet Storm
252016 3.5 注意 Roundcube.net - Roundcube Webmail のログインフォームにおける重要な情報を取得されるの脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1491 2012-03-27 18:43 2011-04-8 Show GitHub Exploit DB Packet Storm
252017 6.8 警告 レッドハット - Red Hat JBoss Enterprise SOA Platform および JBoss Enterprise Application Platform の JBoss Seam 2 framework の jboss-seam.jar における任意の Java コード実行を引き起こす脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1484 2012-03-27 18:43 2011-04-20 Show GitHub Exploit DB Packet Storm
252018 6.8 警告 PHPNUKE - Francisco Burzi PHP-Nuke の mainfile.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-1482 2012-03-27 18:43 2011-06-20 Show GitHub Exploit DB Packet Storm
252019 4.3 警告 PHPNUKE - Francisco Burzi PHP-Nuke におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1481 2012-03-27 18:43 2011-06-20 Show GitHub Exploit DB Packet Storm
252020 3.5 注意 Liferay - Liferay Portal CE におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1504 2012-03-27 18:43 2010-07-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246251 5.9 MEDIUM
Network 		amazon amazon_web_services_freertos
freertos 		An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds memory… CWE-200
Information Exposure 		CVE-2018-16599 2024-11-21 12:53 2018-12-7 Show GitHub Exploit DB Packet Storm
246252 5.9 MEDIUM
Network 		amazon amazon_web_services_freertos
freertos 		An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. In xProcessReceivedU… CWE-441
Confused Deputy 		CVE-2018-16598 2024-11-21 12:53 2018-12-7 Show GitHub Exploit DB Packet Storm
246253 9.1 CRITICAL
Network 		solarwinds sftp\/scp_server SolarWinds SFTP/SCP server through 2018-09-10 is vulnerable to XXE via a world readable and writable configuration file that allows an attacker to exfiltrate data. CWE-611
XXE 		CVE-2018-16792 2024-11-21 12:53 2018-12-6 Show GitHub Exploit DB Packet Storm
246254 9.8 CRITICAL
Network 		solarwinds sftp\/scp_server In SolarWinds SFTP/SCP Server through 2018-09-10, the configuration file is world readable and writable, and stores user passwords in an insecure manner, allowing an attacker to determine passwords f… CWE-522
 Insufficiently Protected Credentials 		CVE-2018-16791 2024-11-21 12:53 2018-12-6 Show GitHub Exploit DB Packet Storm
246255 10.0 CRITICAL
Network 		freebsd freebsd In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the b… CWE-787
 Out-of-bounds Write 		CVE-2018-17160 2024-11-21 12:53 2018-12-5 Show GitHub Exploit DB Packet Storm
246256 8.8 HIGH
Network 		pluck-cms pluck Pluck v4.7.7 allows CSRF via admin.php?action=settings. CWE-352
 Origin Validation Error 		CVE-2018-16634 2024-11-21 12:53 2018-12-5 Show GitHub Exploit DB Packet Storm
246257 5.4 MEDIUM
Network 		pluck-cms pluck Pluck v4.7.7 allows XSS via the admin.php?action=editpage&page= page title. CWE-79
Cross-site Scripting 		CVE-2018-16633 2024-11-21 12:53 2018-12-5 Show GitHub Exploit DB Packet Storm
246258 5.4 MEDIUM
Network 		intelliants subrion_cms Subrion CMS v4.2.1 allows XSS via the panel/configuration/general/ SITE TITLE parameter. CWE-79
Cross-site Scripting 		CVE-2018-16631 2024-11-21 12:53 2018-12-5 Show GitHub Exploit DB Packet Storm
246259 4.8 MEDIUM
Network 		intelliants subrion_cms panel/uploads/#elf_l1_XA in Subrion CMS v4.2.1 allows XSS via an SVG file with JavaScript in a SCRIPT element. CWE-79
Cross-site Scripting 		CVE-2018-16629 2024-11-21 12:53 2018-12-5 Show GitHub Exploit DB Packet Storm
246260 5.4 MEDIUM
Network 		getkirby kirby panel/login in Kirby v2.5.12 allows XSS via a blog name. CWE-79
Cross-site Scripting 		CVE-2018-16628 2024-11-21 12:53 2018-12-5 Show GitHub Exploit DB Packet Storm