Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252171	4.3	警告	Earl Miles	-	Drupal 用 Panels モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0914	2012-02-2 16:59	2012-01-24	Show	GitHub Exploit DB Packet Storm

252172	7.2	危険	Todd C. Miller	-	Sudo の sudo_debug 関数における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2012-0809	2012-02-2 14:18	2012-02-1	Show	GitHub Exploit DB Packet Storm

252173	5	警告	Samba Project	-	Samba におけるサービス運用妨害 (メモリおよび CPU 資源の消費) の脆弱性	CWE-200 情報漏えい	CVE-2012-0817	2012-02-1 16:29	2012-01-29	Show	GitHub Exploit DB Packet Storm

252174	4.9	警告	KVM	-	KVM の arch/x86/kvm/i8254.c におけるサービス運用妨害 (NULL ポインタデリファレンス) の脆弱性	CWE-noinfo 情報不足	CVE-2011-4622	2012-02-1 16:28	2012-01-27	Show	GitHub Exploit DB Packet Storm

252175	7.5	危険	レッドハット	-	Red Hat Linux 用の JBoss Enterprise Application Platform におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4608	2012-02-1 16:27	2012-01-18	Show	GitHub Exploit DB Packet Storm

252176	5.8	警告	Kay Framework OpenID レッドハット	-	OpenID4Java の message/ax/AxMessage.java における AX 情報を変更される脆弱性	CWE-20 不適切な入力確認	CVE-2011-4314	2012-02-1 16:26	2011-05-5	Show	GitHub Exploit DB Packet Storm

252177	9.3	危険	Google	-	Android におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3874	2012-02-1 16:24	2011-11-9	Show	GitHub Exploit DB Packet Storm

252178	7.5	危険	Kerry Thompson drusus	-	Logsurfer および Logsurfer+ におけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3626	2012-02-1 16:24	2012-01-27	Show	GitHub Exploit DB Packet Storm

252179	5	警告	The Support Incident Tracker Project	-	Support Incident Tracker の translate.php における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-5075	2012-02-1 16:20	2011-11-13	Show	GitHub Exploit DB Packet Storm

252180	6.8	警告	The Support Incident Tracker Project	-	Support Incident Tracker におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-5074	2012-02-1 16:18	2012-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246821	5.4	MEDIUM Network	fastadmin	fastadmin	An issue was discovered in FastAdmin V1.0.0.20180417_beta. There is XSS via the application\api\controller\User.php avatar parameter.	CWE-79 Cross-site Scripting	CVE-2018-10268	2024-11-21 12:41	2018-04-22	Show	GitHub Exploit DB Packet Storm

246822	8.8	HIGH Network	wtcms_project	wtcms	WTCMS 1.0 has a CSRF vulnerability to add an administrator account via the index.php?admin&m=user&a=add_post URI.	CWE-352 Origin Validation Error	CVE-2018-10267	2024-11-21 12:41	2018-04-22	Show	GitHub Exploit DB Packet Storm

246823	8.8	HIGH Network	beescms	beescms	BEESCMS 4.0 has a CSRF vulnerability to add an administrator account via the admin/admin_admin.php?nav=list_admin_user&admin_p_nav=user URI.	CWE-352 Origin Validation Error	CVE-2018-10266	2024-11-21 12:41	2018-04-22	Show	GitHub Exploit DB Packet Storm

246824	8.8	HIGH Network	hongcms_project	hongcms	An issue was discovered in HongCMS v3.0.0. There is a CSRF vulnerability that can add an administrator account via the admin/index.php/users/save URI.	CWE-352 Origin Validation Error	CVE-2018-10265	2024-11-21 12:41	2018-04-22	Show	GitHub Exploit DB Packet Storm

246825	9.8	CRITICAL Network	adaltech	g-ticket	Adaltech G-Ticket v70 EME104 has SQL Injection via the mobile-loja/mensagem.asp eve_cod parameter.	CWE-89 SQL Injection	CVE-2018-10284	2024-11-21 12:41	2018-04-22	Show	GitHub Exploit DB Packet Storm

246826	9.8	CRITICAL Network	cliquemania	loja_virtual	CliqueMania loja virtual 14 has SQL Injection via the patch/remote.php id parameter in a recomendar action.	CWE-89 SQL Injection	CVE-2018-10283	2024-11-21 12:41	2018-04-22	Show	GitHub Exploit DB Packet Storm

246827	7.8	HIGH Local	nasm	netwide_assembler	Netwide Assembler (NASM) 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage this vulnerability to cause a denial of service or…	CWE-125 Out-of-bounds Read	CVE-2018-10254	2024-11-21 12:41	2018-04-22	Show	GitHub Exploit DB Packet Storm

246828	7.5	HIGH Network	paessler	prtg_network_monitor	Paessler PRTG Network Monitor before 18.1.39.1648 mishandles stack memory during unspecified API calls.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-10253	2024-11-21 12:41	2018-04-21	Show	GitHub Exploit DB Packet Storm

246829	8.8	HIGH Network	baijiacms_project	baijiacms	baijiacms V3 has CSRF via index.php?mod=site&op=edituser&name=manager&do=user to add an administrator account.	CWE-352 Origin Validation Error	CVE-2018-10249	2024-11-21 12:41	2018-04-21	Show	GitHub Exploit DB Packet Storm

246830	5.4	MEDIUM Network	icmsdev	icms	iCMS V7.0.8 has XSS via the admincp.php keywords parameter in a weixin_category action, aka a WeChat Classified Management keyword search.	CWE-79 Cross-site Scripting	CVE-2018-10250	2024-11-21 12:41	2018-04-21	Show	GitHub Exploit DB Packet Storm