Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252231 9.3 危険 Mozilla Foundation
レッドハット		 - Mozilla Firefox および Thunderbird の JSSubScriptLoader における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3647 2012-01-6 19:13 2011-11-8 Show GitHub Exploit DB Packet Storm
252232 4.3 警告 Pidgin
レッドハット		 - Pidgin などの製品で使用される libpurple におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3594 2012-01-6 18:46 2011-09-29 Show GitHub Exploit DB Packet Storm
252233 6.9 警告 eEye Digital Security - eEye Retina CS Vulnerability Management Console が任意のプログラムを実行する問題 CWE-264
認可・権限・アクセス制御 		CVE-2011-3337 2012-01-6 16:08 2011-11-9 Show GitHub Exploit DB Packet Storm
252234 4.3 警告 Textpattern - Textpattern CMS の setup/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5019 2012-01-6 15:46 2012-01-5 Show GitHub Exploit DB Packet Storm
252235 5 警告 Apache Software Foundation - Apache ActiveMQ におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4905 2012-01-6 15:45 2012-01-5 Show GitHub Exploit DB Packet Storm
252236 6.8 警告 CoCSoft Computing - CoCSoft Stream Down におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5052 2012-01-6 15:43 2012-01-4 Show GitHub Exploit DB Packet Storm
252237 7.5 危険 WP Symposium - WordPress 用の WP Symposium プラグインにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2011-5051 2012-01-6 15:42 2012-01-4 Show GitHub Exploit DB Packet Storm
252238 6 警告 Elitecore Technologies - Elitecore Technologies Cyberoam UTM における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5050 2012-01-6 15:40 2012-01-4 Show GitHub Exploit DB Packet Storm
252239 7.8 危険 MySQL AB - Windows 上で稼働する MySQL におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-5049 2012-01-6 15:39 2012-01-4 Show GitHub Exploit DB Packet Storm
252240 5.1 警告 e107.org - e107 の usersettings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4921 2012-01-6 15:28 2012-01-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246761 9.8 CRITICAL
Network 		b3log symphony b3log Symphony (aka Sym) 2.6.0 allows remote attackers to upload and execute arbitrary JSP files via the name[] parameter to the /upload URI. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-10469 2024-11-21 12:41 2018-04-27 Show GitHub Exploit DB Packet Storm
246762 5.9 MEDIUM
Network 		google
redhat
oracle 		guava
virtualization_host
virtualization
openshift_container_platform
satellite
openstack
satellite_capsule
jboss_enterprise_application_platform
flexcube_investor_servicing 		Unbounded memory allocation in Google Guava 11.0 through 24.x before 24.1.1 allows remote attackers to conduct denial of service attacks against servers that depend on this library and deserialize at… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2018-10237 2024-11-21 12:41 2018-04-27 Show GitHub Exploit DB Packet Storm
246763 7.2 HIGH
Network 		d-link dir-615_firmware D-Link DIR-615 2.5.17 devices allow Remote Code Execution via shell metacharacters in the Host field of the System / Traceroute screen. CWE-78
OS Command  		CVE-2018-10431 2024-11-21 12:41 2018-04-27 Show GitHub Exploit DB Packet Storm
246764 4.8 MEDIUM
Network 		dilicms dilicms An issue was discovered in DiliCMS (aka DiligentCMS) 2.4.0. There is a Stored XSS Vulnerability in the fourth textbox of "System setting->site setting" of admin/index.php. CWE-79
Cross-site Scripting 		CVE-2018-10430 2024-11-21 12:41 2018-04-27 Show GitHub Exploit DB Packet Storm
246765 9.8 CRITICAL
Network 		cosmocms cosmo Cosmo 1.0.0Beta6 allows attackers to execute arbitrary PHP code via the Database Prefix field on the Database Info screen of install.php. CWE-94
Code Injection 		CVE-2018-10429 2024-11-21 12:41 2018-04-27 Show GitHub Exploit DB Packet Storm
246766 7.8 HIGH
Local 		hz-soft security_guard An issue was discovered in Shanghai 2345 Security Guard 3.7.0. 2345MPCSafe.exe, 2345SafeTray.exe, and 2345Speedup.exe allow local users to bypass intended process protections, and consequently termin… NVD-CWE-noinfo
CVE-2018-10425 2024-11-21 12:41 2018-04-26 Show GitHub Exploit DB Packet Storm
246767 2.7 LOW
Network 		1234n minicms mc-admin/post-edit.php in MiniCMS 1.10 allows full path disclosure via a modified id field. CWE-200
Information Exposure 		CVE-2018-10424 2024-11-21 12:41 2018-04-26 Show GitHub Exploit DB Packet Storm
246768 2.7 LOW
Network 		1234n minicms mc-admin/post.php in MiniCMS 1.10 allows remote attackers to obtain a directory listing of the top-level directory of the web root via a link that becomes available after posting an article. CWE-200
Information Exposure 		CVE-2018-10423 2024-11-21 12:41 2018-04-26 Show GitHub Exploit DB Packet Storm
246769 4.8 MEDIUM
Network 		hongcms_project hongcms An issue was discovered in HongCMS 3.0.0. The post news feature has Stored XSS via the content field. CWE-79
Cross-site Scripting 		CVE-2018-10422 2024-11-21 12:41 2018-04-26 Show GitHub Exploit DB Packet Storm
246770 7.5 HIGH
Network 		xiph.org
debian
redhat 		libvorbis
debian_linux
enterprise_linux
enterprise_linux_eus
enterprise_linux_server_tus
enterprise_linux_server_aus 		bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read. CWE-125
Out-of-bounds Read 		CVE-2018-10393 2024-11-21 12:41 2018-04-26 Show GitHub Exploit DB Packet Storm