Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252051	9.3	危険	マイクロソフト	-	Windows 上で稼働する Microsoft Silverlight におけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0176	2012-05-10 18:09	2012-05-8	Show	GitHub Exploit DB Packet Storm

252052	9.3	危険	マイクロソフト	-	Microsoft Office 2003 および 2007 におけるヒープベースのバッファオーバーフローの脆弱性	CWE-20 不適切な入力確認	CVE-2012-0167	2012-05-10 18:08	2012-05-8	Show	GitHub Exploit DB Packet Storm

252053	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の GDI+ における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-0165	2012-05-10 18:04	2012-05-8	Show	GitHub Exploit DB Packet Storm

252054	5	警告	マイクロソフト	-	Microsoft .NET Framework 4 におけるサービス運用妨害 (アプリケーションハング) の脆弱性	CWE-DesignError	CVE-2012-0164	2012-05-10 17:58	2012-05-8	Show	GitHub Exploit DB Packet Storm

252055	9.3	危険	マイクロソフト	-	Microsoft .NET Framework 4 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2012-0162	2012-05-10 17:57	2012-05-8	Show	GitHub Exploit DB Packet Storm

252056	6.8	警告	マイクロソフト	-	複数の Microsoft Windows 製品の partmgr.sys における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0178	2012-05-10 17:08	2012-05-8	Show	GitHub Exploit DB Packet Storm

252057	6.8	警告	マイクロソフト	-	Microsoft Windows Server 2008 R2 および Windows 7 の tcpip.sys におけるメモリ二重解放の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0179	2012-05-10 16:09	2012-05-8	Show	GitHub Exploit DB Packet Storm

252058	1.7	注意	マイクロソフト	-	複数の Microsoft Windows 製品の Windows ファイアウォールにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0174	2012-05-10 16:09	2012-05-8	Show	GitHub Exploit DB Packet Storm

252059	9.3	危険	マイクロソフト	-	Microsoft Visio Viewer 2010 における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-0018	2012-05-10 16:08	2012-05-8	Show	GitHub Exploit DB Packet Storm

252060	9.3	危険	マイクロソフト	-	Microsoft Excel および Microsoft Office におけるヒープベースのバッファオーバーフローの脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0185	2012-05-10 15:50	2012-05-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246161	9.8	CRITICAL Network	orange	airbox_firmware	goform/getProfileList in Orange AirBox Y858_FL_01.16_04 allows attackers to extract APN data (name, number, username, and password) via the rand parameter.	CWE-330 Use of Insufficiently Random Values	CVE-2018-18375	2024-11-21 12:55	2018-10-16	Show	GitHub Exploit DB Packet Storm

246162	5.4	MEDIUM Network	metinfo	metinfo	XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.	CWE-79 Cross-site Scripting	CVE-2018-18374	2024-11-21 12:55	2018-10-16	Show	GitHub Exploit DB Packet Storm

246163	6.1	MEDIUM Network	tuzitio	camaleon_cms	In the 2.4 version of Camaleon CMS, Stored XSS has been discovered. The profile image in the User settings section can be run in the update / upload area via /admin/media/upload?actions=false. NOTE: …	CWE-79 Cross-site Scripting	CVE-2018-18260	2024-11-21 12:55	2018-10-16	Show	GitHub Exploit DB Packet Storm

246164	6.1	MEDIUM Network	luya	luya_cms	Stored XSS has been discovered in version 1.0.12 of the LUYA CMS software via /admin/api-cms-nav/create-page.	CWE-79 Cross-site Scripting	CVE-2018-18259	2024-11-21 12:55	2018-10-16	Show	GitHub Exploit DB Packet Storm

246165	7.8	HIGH Local	nomachine	nomachine	NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where…	CWE-426 Untrusted Search Path	CVE-2018-17980	2024-11-21 12:55	2018-10-16	Show	GitHub Exploit DB Packet Storm

246166	6.3	MEDIUM Local	artifex debian canonical redhat	ghostscript debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus ent…	Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging exposure of system operators in the saved execution stack in an error object.	CWE-200 Information Exposure	CVE-2018-18073	2024-11-21 12:55	2018-10-16	Show	GitHub Exploit DB Packet Storm

246167	8.6	HIGH Local	artifex debian canonical redhat	ghostscript debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus ent…	Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup. NOTE: this issue exists because of an incomplete fix for CVE-2…	CWE-209 Information Exposure Through an Error Message	CVE-2018-17961	2024-11-21 12:55	2018-10-16	Show	GitHub Exploit DB Packet Storm

246168	6.1	MEDIUM Network	nconsulting	nc-cms	An issue was discovered in nc-cms through 2017-03-10. index.php?action=edit_html allows XSS via the name parameter, as demonstrated by a value beginning with home_content and containing a crafted SRC…	CWE-79 Cross-site Scripting	CVE-2018-18361	2024-11-21 12:55	2018-10-16	Show	GitHub Exploit DB Packet Storm

246169	6.1	MEDIUM Network	control-webpanel	webpanel	CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has XSS via the admin/fileManager2.php fm_current_dir parameter, or the admin/index.php module, service_start, service_fullstatus, service_res…	CWE-79 Cross-site Scripting	CVE-2018-18324	2024-11-21 12:55	2018-10-15	Show	GitHub Exploit DB Packet Storm

246170	7.5	HIGH Network	control-webpanel	webpanel	CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has Local File Inclusion via directory traversal with an admin/index.php?module=file_editor&file=/../ URI.	CWE-22 Path Traversal	CVE-2018-18323	2024-11-21 12:55	2018-10-15	Show	GitHub Exploit DB Packet Storm