Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252441 7.5 危険 Parallels - Parallels Plesk Panel の Server Administration Panel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4725 2011-12-19 16:28 2011-12-16 Show GitHub Exploit DB Packet Storm
252442 9.3 危険 Nullsoft - Winamp の in_avi.dll プラグインにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3834 2011-12-19 16:18 2011-12-9 Show GitHub Exploit DB Packet Storm
252443 10 危険 SmarterTools Inc. - SmarterTools SmarterStats における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4752 2011-12-19 16:18 2011-12-16 Show GitHub Exploit DB Packet Storm
252444 5 警告 SmarterTools Inc. - SmarterTools SmarterStats における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4751 2011-12-19 16:17 2011-12-16 Show GitHub Exploit DB Packet Storm
252445 4.3 警告 SmarterTools Inc. - SmarterTools SmarterStats におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4750 2011-12-19 16:16 2011-12-16 Show GitHub Exploit DB Packet Storm
252446 4.6 警告 ヒューレット・パッカード
IBM
オラクル		 - HP ALM 内の getInstalledPackages 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4834 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
252447 7.5 危険 SugarCRM - SugarCRM の Leads モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4833 2011-12-19 15:08 2011-12-15 Show GitHub Exploit DB Packet Storm
252448 7.5 危険 Moxiecode Systems AB
phpMyFAQ
PHPletter		 - 複数の製品で使用される inc/function.base.php における PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4825 2011-12-19 15:07 2011-10-25 Show GitHub Exploit DB Packet Storm
252449 7.5 危険 The Cacti Group - Cacti の auth_login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4824 2011-12-19 15:06 2011-09-26 Show GitHub Exploit DB Packet Storm
252450 4.3 警告 Atlassian - Atlassian FishEye のユーザプロファイル機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4822 2011-12-19 15:05 2011-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246851 8.8 HIGH
Network 		cisco iot_field_network_director A vulnerability in the web-based management interface of Cisco IoT Field Network Director (IoT-FND) could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) atta… CWE-352
 Origin Validation Error 		CVE-2018-0270 2024-11-21 12:37 2018-05-17 Show GitHub Exploit DB Packet Storm
246852 10.0 CRITICAL
Network 		cisco digital_network_architecture_center A vulnerability in the container management subsystem of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to bypass authentication and gain elevated pri… CWE-358
 Improperly Implemented Security Check for Standard 		CVE-2018-0268 2024-11-21 12:37 2018-05-17 Show GitHub Exploit DB Packet Storm
246853 10.0 CRITICAL
Network 		cisco digital_network_architecture_center A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, remote attacker to log in to an affected system by using an administrative account that has default,… CWE-798
 Use of Hard-coded Credentials 		CVE-2018-0222 2024-11-21 12:37 2018-05-17 Show GitHub Exploit DB Packet Storm
246854 5.3 MEDIUM
Network 		cisco webex_meetings_online A vulnerability in Cisco WebEx Recording Format (WRF) Player could allow an unauthenticated, remote attacker to access sensitive data about the application. An attacker could exploit this vulnerabili… CWE-200
Information Exposure 		CVE-2018-0288 2024-11-21 12:37 2018-05-3 Show GitHub Exploit DB Packet Storm
246855 8.8 HIGH
Network 		cisco webex_meetings_online A vulnerability in the Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. … CWE-20
 Improper Input Validation  		CVE-2018-0287 2024-11-21 12:37 2018-05-3 Show GitHub Exploit DB Packet Storm
246856 6.5 MEDIUM
Network 		cisco prime_service_catalog A vulnerability in service logging for Cisco Prime Service Catalog could allow an authenticated, remote attacker to deny service to the user interface. The vulnerability is due to exhaustion of disk … CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-0285 2024-11-21 12:37 2018-05-3 Show GitHub Exploit DB Packet Storm
246857 5.3 MEDIUM
Network 		cisco ios_xr A vulnerability in the netconf interface of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on affected system. The vulnerability is… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2018-0286 2024-11-21 12:37 2018-05-3 Show GitHub Exploit DB Packet Storm
246858 5.8 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to restart an instance of the Snort detection engine on an affected device, … CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2018-0283 2024-11-21 12:37 2018-05-3 Show GitHub Exploit DB Packet Storm
246859 5.8 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to restart an instance of the Snort detection engine on an affected device, … CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2018-0281 2024-11-21 12:37 2018-05-3 Show GitHub Exploit DB Packet Storm
246860 6.5 MEDIUM
Network 		cisco firepower_management_center A vulnerability in the management console of Cisco Firepower System Software could allow an unauthenticated, remote attacker to access sensitive data about the system. The vulnerability is due to imp… CWE-863
 Incorrect Authorization 		CVE-2018-0278 2024-11-21 12:37 2018-05-3 Show GitHub Exploit DB Packet Storm