Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252541 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品の Windows Packager 設定における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2012-0013 2012-01-13 15:45 2012-01-10 Show GitHub Exploit DB Packet Storm
252542 10 危険 Final Draft - Final Draft におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-5059 2012-01-12 15:54 2012-01-10 Show GitHub Exploit DB Packet Storm
252543 6.4 警告 3S-Smart Software Solutions - 3S CoDeSys における任意のディレクトリを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5058 2012-01-12 15:53 2012-01-10 Show GitHub Exploit DB Packet Storm
252544 7.8 危険 ヒューレット・パッカード - 複数の HP 製品の HP-ChaiSOE Web サーバにおけるディレクトリトラバーサルの脆弱性 CWE-200
情報漏えい 		CVE-2011-4785 2012-01-11 16:11 2012-01-9 Show GitHub Exploit DB Packet Storm
252545 5 警告 Apache Software Foundation - Apache Struts におけるランタイムデータの値を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5057 2012-01-11 15:17 2012-01-8 Show GitHub Exploit DB Packet Storm
252546 9.3 危険 Apache Software Foundation - Apache Struts における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0392 2012-01-11 15:11 2012-01-8 Show GitHub Exploit DB Packet Storm
252547 9.3 危険 Apache Software Foundation - Apache Struts における任意の Java コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0391 2012-01-11 14:57 2012-01-8 Show GitHub Exploit DB Packet Storm
252548 5 警告 Wibu-Systems AG - CodeMeter Runtime におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-4057 2012-01-11 14:02 2012-01-11 Show GitHub Exploit DB Packet Storm
252549 5 警告 MediaWiki - MediaWiki における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4361 2012-01-11 11:22 2011-11-28 Show GitHub Exploit DB Packet Storm
252550 5 警告 MediaWiki - MediaWiki における制限されているすべてのページのタイトルを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4360 2012-01-11 11:15 2011-11-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246681 9.8 CRITICAL
Network 		zohocorp manageengine_desktop_central An issue was discovered in Zoho ManageEngine Desktop Central before 100251. By leveraging access to a log file, a context-dependent attacker can obtain (depending on the modules configured) the Base6… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2018-11717 2024-11-21 12:43 2018-07-16 Show GitHub Exploit DB Packet Storm
246682 8.0 HIGH
Adjacent 		debian
videolan 		debian_linux
vlc_media_player 		VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result i… CWE-416
 Use After Free 		CVE-2018-11529 2024-11-21 12:43 2018-07-12 Show GitHub Exploit DB Packet Storm
246683 6.1 MEDIUM
Network 		siemens teamcenter_product_lifecycle_management A reflected Cross-Site-Scripting (XSS) vulnerability has been identified in Siemens PLM Software TEAMCENTER (V9.1.2.5). If a user visits the login portal through the URL crafted by the attacker, the … CWE-79
Cross-site Scripting 		CVE-2018-11450 2024-11-21 12:43 2018-07-10 Show GitHub Exploit DB Packet Storm
246684 7.5 HIGH
Network 		ribboncommunications sonus_sbc_1000_firmware
sonus_sbc_2000_firmware
sbc_swe_lite_firmware 		A Local File Inclusion (LFI) vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows for the downloading of arbitrary files via an unspecified vector. It affects the 1000 a… CWE-22
Path Traversal 		CVE-2018-11543 2024-11-21 12:43 2018-07-9 Show GitHub Exploit DB Packet Storm
246685 9.8 CRITICAL
Network 		ribboncommunications sonus_sbc_1000_firmware
sonus_sbc_2000_firmware
sbc_swe_lite_firmware 		A Remote Command Execution (RCE) vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows for the execution of arbitrary commands via an unspecified vector. It affects the 1… NVD-CWE-noinfo
CVE-2018-11542 2024-11-21 12:43 2018-07-9 Show GitHub Exploit DB Packet Storm
246686 9.8 CRITICAL
Network 		ribboncommunications sonus_sbc_1000_firmware
sonus_sbc_2000_firmware
sbc_swe_lite_web 		A root privilege escalation vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows unauthorised access to privileged content via an unspecified vector. It affects the 1000… CWE-862
 Missing Authorization 		CVE-2018-11541 2024-11-21 12:43 2018-07-9 Show GitHub Exploit DB Packet Storm
246687 6.1 MEDIUM
Network 		jirafeau jirafeau script.php in Jirafeau before 3.4.1 is affected by two stored Cross-Site Scripting (XSS) vulnerabilities. These are stored within the shared files description file and allow the execution of a JavaSc… CWE-79
Cross-site Scripting 		CVE-2018-11351 2024-11-21 12:43 2018-07-8 Show GitHub Exploit DB Packet Storm
246688 6.1 MEDIUM
Network 		jirafeau jirafeau An issue was discovered in Jirafeau before 3.4.1. The file "search by name" form is affected by one Cross-Site Scripting vulnerability via the name parameter. CWE-79
Cross-site Scripting 		CVE-2018-11350 2024-11-21 12:43 2018-07-8 Show GitHub Exploit DB Packet Storm
246689 8.8 HIGH
Network 		jirafeau jirafeau The administration panel of Jirafeau before 3.4.1 is vulnerable to three CSRF attacks on search functionalities: search_by_name, search_by_hash, and search_link. CWE-352
 Origin Validation Error 		CVE-2018-11349 2024-11-21 12:43 2018-07-8 Show GitHub Exploit DB Packet Storm
246690 7.8 HIGH
Local 		google android Possible buffer overflow in msm_adsp_stream_callback_put due to lack of input validation of user-provided data that leads to integer overflow in all Android releases(Android for MSM, Firefox OS for M… CWE-190
 Integer Overflow or Wraparound 		CVE-2018-11304 2024-11-21 12:43 2018-07-7 Show GitHub Exploit DB Packet Storm