Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252191	7.5	危険	Likno Software Inc.	-	WordPress 用 AllWebMenus プラグインの actions.php における任意の PHP コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1011	2012-02-9 15:59	2012-02-7	Show	GitHub Exploit DB Packet Storm

252192	7.5	危険	Likno Software Inc.	-	WordPress 用 AllWebMenus プラグインの actions.php における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-1010	2012-02-9 15:59	2012-02-7	Show	GitHub Exploit DB Packet Storm

252193	8.5	危険	OpenEMR	-	OpenEMR の interface/fax/fax_dispatch.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-0992	2012-02-9 15:57	2012-02-7	Show	GitHub Exploit DB Packet Storm

252194	3.5	注意	OpenEMR	-	OpenEMR におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0991	2012-02-9 15:57	2012-02-7	Show	GitHub Exploit DB Packet Storm

252195	3.5	注意	DClassifieds	-	DClassifieds の admin/settings/update におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0990	2012-02-9 15:56	2012-02-7	Show	GitHub Exploit DB Packet Storm

252196	4.3	警告	Zenphoto	-	Zenphoto の zp-core/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4907	2012-02-9 11:18	2011-10-8	Show	GitHub Exploit DB Packet Storm

252197	7.5	危険	Zenphoto	-	Zenphoto の zp-core/full-image.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4906	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

252198	7.5	危険	SoftbizScripts	-	Softbiz Article Directory Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4905	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

252199	7.5	危険	DrBenHur	-	DBHcms の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4869	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

252200	4.3	警告	W-Agora	-	W-Agora の search.php3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4868	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246791	7.5	HIGH Network	zclassic	z-nomp	Z-NOMP before 2018-04-05 has an incorrect Equihash solution verifier that allows attackers to spoof mining shares, as demonstrated by providing a solution with {x1=1,x2=1,x3=1,...,x512=1} to bypass t…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2018-10831	2024-11-21 12:42	2018-05-9	Show	GitHub Exploit DB Packet Storm

246792	7.5	HIGH Network	litecart	litecart	LiteCart before 2.1.2 allows remote attackers to cause a denial of service (memory consumption) via URIs that do not exist, because public_html/logs/not_found.log grows without bound, and is loaded i…	CWE-400 Uncontrolled Resource Consumption	CVE-2018-10827	2024-11-21 12:42	2018-05-9	Show	GitHub Exploit DB Packet Storm

246793	6.1	MEDIUM Network	severalnines	clustercontrol	Severalnines ClusterControl before 1.6.0-4699 allows XSS.	CWE-79 Cross-site Scripting	CVE-2018-10817	2024-11-21 12:42	2018-05-9	Show	GitHub Exploit DB Packet Storm

246794	4.1	MEDIUM Local	bitpie	bitcoin_wallet	The Bitpie application through 3.2.4 for Android and iOS uses cleartext storage for digital currency initial keys, which allows local users to steal currency by leveraging root access to read /com.bi…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2018-10812	2024-11-21 12:42	2018-05-9	Show	GitHub Exploit DB Packet Storm

246795	7.8	HIGH Local	2345_security_guard_project	2345_security_guard	In 2345 Security Guard 3.7, the driver file (2345NetFirewall.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input valu…	CWE-20 Improper Input Validation	CVE-2018-10809	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246796	5.4	MEDIUM Network	frogcms_project	frogcms	An issue was discovered in Frog CMS 0.9.5. There is a reflected Cross Site Scripting Vulnerability via the file[current_name] parameter to the admin/?/plugin/file_manager/rename URI. This can be used…	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2018-10806	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246797	6.5	MEDIUM Network	imagemagick canonical	imagemagick ubuntu_linux	ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-10805	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246798	6.5	MEDIUM Network	imagemagick canonical	imagemagick ubuntu_linux	ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/tiff.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-10804	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246799	6.5	MEDIUM Network	libtiff	libtiff	TIFFClientOpen in tif_unix.c in LibTIFF 3.8.2 has memory leaks, as demonstrated by bmp2tiff.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2018-10801	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm

246800	6.5	MEDIUM Network	brave	brave	A hang issue was discovered in Brave before 0.14.0 (on, for example, Linux). This vulnerability is caused by the mishandling of a long URL formed by window.location+='?\u202a\uFEFF\u202b'; concatenat…	CWE-20 Improper Input Validation	CVE-2018-10799	2024-11-21 12:42	2018-05-8	Show	GitHub Exploit DB Packet Storm