Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252441 9.3 危険 7-Technologies - 7-Technologies TERMIS における権限を取得される脆弱性 CWE-Other
その他 		CVE-2012-0223 2012-02-23 15:09 2011-02-22 Show GitHub Exploit DB Packet Storm
252442 5.8 警告 CubeCart Limited - CubeCart におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0865 2012-02-23 15:00 2012-02-21 Show GitHub Exploit DB Packet Storm
252443 5 警告 EasyVista - EasyVista に認証回避の脆弱性 CWE-287
不適切な認証 		CVE-2012-1256 2012-02-23 14:49 2012-02-22 Show GitHub Exploit DB Packet Storm
252444 6.4 警告 シックス・アパート株式会社 - Movable Type におけるセッションハイジャックが可能な脆弱性 CWE-Other
その他 		CVE-2012-0320 2012-02-23 12:04 2012-02-23 Show GitHub Exploit DB Packet Storm
252445 6.5 警告 シックス・アパート株式会社 - Movable Type における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2012-0319 2012-02-23 12:04 2012-02-23 Show GitHub Exploit DB Packet Storm
252446 2.6 注意 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0318 2012-02-23 12:03 2012-02-23 Show GitHub Exploit DB Packet Storm
252447 4 警告 シックス・アパート株式会社 - Movable Type におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-0317 2012-02-23 12:03 2012-02-23 Show GitHub Exploit DB Packet Storm
252448 6 警告 Broadwin
アドバンテック株式会社		 - Advantech/BroadWin WebAccess におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1235 2012-02-23 11:47 2012-02-21 Show GitHub Exploit DB Packet Storm
252449 6.5 警告 Broadwin
アドバンテック株式会社		 - Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1234 2012-02-23 11:46 2012-02-21 Show GitHub Exploit DB Packet Storm
252450 7.5 危険 Broadwin
アドバンテック株式会社		 - Advantech/BroadWin WebAccess における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0244 2012-02-23 11:41 2012-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246521 6.1 MEDIUM
Network 		idreamsoft icms An issue was discovered in idreamsoft iCMS 7.0.9. XSS exists via the callback parameter in a public/api.php uploadpic request, bypassing the iWAF protection mechanism. CWE-79
Cross-site Scripting 		CVE-2018-13865 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246522 7.5 HIGH
Network 		mongodb js-bson The MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service (ReDoS) in lib/bson/decimal128.js. The flaw is … NVD-CWE-noinfo
CVE-2018-13863 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246523 9.8 CRITICAL
Network 		icanstudioz firebase_push_notification_on_ios_\/_fcm_\+_advance_admin_panel The "Firebase Cloud Messaging (FCM) + Advance Admin Panel" component supporting Firebase Push Notification on iOS (through 2017-10-26) allows SQL injection via the /advance_push/public/login username… CWE-89
SQL Injection 		CVE-2018-13850 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246524 6.1 MEDIUM
Network 		instagram-clone_project instagram-clone edit_requests.php in yTakkar Instagram-clone through 2018-04-23 has XSS via an onmouseover payload because of an inadequate XSS protection mechanism based on preg_replace. CWE-79
Cross-site Scripting 		CVE-2018-13849 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246525 7.5 HIGH
Network 		axiosys bento4 An issue has been found in Bento4 1.5.1-624. It is a SEGV in AP4_StszAtom::GetSampleSize in Core/Ap4StszAtom.cpp. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-13848 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246526 7.5 HIGH
Network 		axiosys bento4 An issue has been found in Bento4 1.5.1-624. It is a SEGV in AP4_StcoAtom::AdjustChunkOffsets in Core/Ap4StcoAtom.cpp. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-13847 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246527 9.8 CRITICAL
Network 		axiosys bento4 An issue has been found in Bento4 1.5.1-624. AP4_Mpeg2TsVideoSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp has a heap-based buffer over-read after a call from Mp42Ts.cpp, a related issue to CVE-20… CWE-125
Out-of-bounds Read 		CVE-2018-13846 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246528 9.8 CRITICAL
Network 		htslib htslib An issue has been found in HTSlib 1.8. It is a buffer over-read in sam_parse1 in sam.c. CWE-125
Out-of-bounds Read 		CVE-2018-13845 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246529 7.5 HIGH
Network 		htslib htslib An issue has been found in HTSlib 1.8. It is a memory leak in fai_read in faidx.c. NOTE: This has been disputed with the assertion that this vulnerability exists in the test harness and HTSlib users … CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2018-13844 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
246530 7.5 HIGH
Network 		htslib htslib An issue has been found in HTSlib 1.8. It is a memory leak in bgzf_getline in bgzf.c. NOTE: the software maintainer's position is that the "failure to free memory" can be fixed in applications that u… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2018-13843 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm