Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252231 5.8 警告 Tencent - Android 用 Tencent MobileQQ におけるメッセージおよびフレンドリストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4864 2012-01-27 15:10 2012-01-25 Show GitHub Exploit DB Packet Storm
252232 5.8 警告 Tencent - Android 用 Tencent QQPimSecure における SMS/MMS メッセージおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4863 2012-01-27 15:08 2012-01-25 Show GitHub Exploit DB Packet Storm
252233 5.8 警告 AnGuanJia - Android 用 AnGuanJia における SMS/MMS メッセージおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4773 2012-01-27 15:07 2012-01-25 Show GitHub Exploit DB Packet Storm
252234 5.8 警告 Qihoo 360 Technology - Android 用 360 KouXin における SMS メッセージおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4772 2012-01-27 15:06 2012-01-25 Show GitHub Exploit DB Packet Storm
252235 5.8 警告 Lucion Technologies - Android 用 Scan to PDF Free におけるスキャンされたファイルおよび Google アカウントを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4771 2012-01-27 15:05 2012-01-25 Show GitHub Exploit DB Packet Storm
252236 5.8 警告 QIWI Wallet - Android 用 QIWI Wallet における金銭に関する情報を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4770 2012-01-27 15:03 2012-01-25 Show GitHub Exploit DB Packet Storm
252237 5.8 警告 Qihoo 360 Technology - Android 用 360 MobileSafe における SMS メッセージおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4769 2012-01-27 14:56 2012-01-25 Show GitHub Exploit DB Packet Storm
252238 5.8 警告 Ming Software - Android 用 Ming Blacklist Free におけるブラックリストおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4705 2012-01-27 14:56 2012-01-25 Show GitHub Exploit DB Packet Storm
252239 5.8 警告 Voxofon LLC - Android 用 Voxofon における SMS 情報を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4704 2012-01-27 14:54 2012-01-25 Show GitHub Exploit DB Packet Storm
252240 5.8 警告 Nathaniel Kh - Android 用 Limit My Call における通話履歴および連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4703 2012-01-27 14:52 2012-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246791 9.8 CRITICAL
Network 		phpliteadmin phpliteadmin An issue was discovered in phpLiteAdmin 1.9.5 through 1.9.7.1. Due to loose comparison with '==' instead of '===' in classes/Authorization.php for the user-provided login password, it is possible to … CWE-287
Improper Authentication 		CVE-2018-10362 2024-11-21 12:41 2018-04-25 Show GitHub Exploit DB Packet Storm
246792 7.8 HIGH
Local 		kde ktexteditor An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauth_ktexteditor_helper service (as utilized in the Kate text editor) can allo… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2018-10361 2024-11-21 12:41 2018-04-25 Show GitHub Exploit DB Packet Storm
246793 6.1 MEDIUM
Network 		phpipam phpipam app/tools/mac-lookup/index.php in phpIPAM 1.3.1 has Reflected XSS on /tools/mac-lookup/ via the mac parameter. CWE-79
Cross-site Scripting 		CVE-2018-10329 2024-11-21 12:41 2018-04-24 Show GitHub Exploit DB Packet Storm
246794 7.4 HIGH
Adjacent 		momentum momentum_axel_720p_firmware Momentum Axel 720P 5.1.8 devices have a hardcoded password of streaming for the appagent account, which allows remote attackers to view the RTSP video stream. CWE-798
 Use of Hard-coded Credentials 		CVE-2018-10328 2024-11-21 12:41 2018-04-24 Show GitHub Exploit DB Packet Storm
246795 5.5 MEDIUM
Local 		linux
canonical
debian 		linux_kernel
ubuntu_linux
debian_linux 		The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a … CWE-476
 NULL Pointer Dereference 		CVE-2018-10323 2024-11-21 12:41 2018-04-24 Show GitHub Exploit DB Packet Storm
246796 5.5 MEDIUM
Local 		linux
redhat 		linux_kernel
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
virtualization_host 		The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_ilock_attr_map_shared invalid pointer dereferen… CWE-476
 NULL Pointer Dereference 		CVE-2018-10322 2024-11-21 12:41 2018-04-24 Show GitHub Exploit DB Packet Storm
246797 4.8 MEDIUM
Network 		frogcms_project frogcms Frog CMS 0.9.5 has a stored Cross Site Scripting Vulnerability via "Admin Site title" in Settings. CWE-79
Cross-site Scripting 		CVE-2018-10321 2024-11-21 12:41 2018-04-24 Show GitHub Exploit DB Packet Storm
246798 4.8 MEDIUM
Network 		frogcms_project frogcms Frog CMS 0.9.5 has XSS via the admin/?/layout/edit layout[name] parameter, aka Edit Layout. CWE-79
Cross-site Scripting 		CVE-2018-10320 2024-11-21 12:41 2018-04-24 Show GitHub Exploit DB Packet Storm
246799 4.8 MEDIUM
Network 		frogcms_project frogcms Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit snippet[name] parameter, aka Edit Snippet. CWE-79
Cross-site Scripting 		CVE-2018-10319 2024-11-21 12:41 2018-04-24 Show GitHub Exploit DB Packet Storm
246800 4.8 MEDIUM
Network 		frogcms_project frogcms Frog CMS 0.9.5 has XSS via the admin/?/page/edit page[keywords] parameter, aka Edit Page Metadata. CWE-79
Cross-site Scripting 		CVE-2018-10318 2024-11-21 12:41 2018-04-24 Show GitHub Exploit DB Packet Storm