Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252621	4.3	警告	Mozilla Foundation SafeNet, Inc 7-Technologies	-	複数の SafeNet 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3339	2011-12-21 14:21	2011-12-12	Show	GitHub Exploit DB Packet Storm

252622	6.8	警告	奈良先端科学技術大学院大学	-	茶筌 (ChaSen) におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4000	2011-12-20 18:12	2011-11-8	Show	GitHub Exploit DB Packet Storm

252623	8.3	危険	富士通日本電気日立	-	Preboot Execution Environment (PXE) SDK を使用した製品における複数の脆弱性	CWE-119 CWE-22	CVE-2009-0270	2011-12-20 17:33	2011-12-15	Show	GitHub Exploit DB Packet Storm

252624	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4856	2011-12-20 14:41	2011-12-16	Show	GitHub Exploit DB Packet Storm

252625	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4855	2011-12-20 14:40	2011-12-16	Show	GitHub Exploit DB Packet Storm

252626	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における詳細不明な脆弱性	CWE-DesignError	CVE-2011-4854	2011-12-20 14:40	2011-12-16	Show	GitHub Exploit DB Packet Storm

252627	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4853	2011-12-20 14:38	2011-12-16	Show	GitHub Exploit DB Packet Storm

252628	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4852	2011-12-20 14:38	2011-12-16	Show	GitHub Exploit DB Packet Storm

252629	9.3	危険	Parallels	-	Parallels Plesk Panel の Control Panel における認証を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-4851	2011-12-20 14:13	2011-12-16	Show	GitHub Exploit DB Packet Storm

252630	4.3	警告	Parallels	-	Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4850	2011-12-20 14:12	2011-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246731	6.5	MEDIUM Network	nagios	nagios_xi	An issue was discovered in Nagios XI 5.4.13. A registered user is able to use directory traversal to read local files, as demonstrated by URIs beginning with index.php?xiwindow=./ and config/?xiwindo…	CWE-22 Path Traversal	CVE-2018-10553	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246732	8.8	HIGH Network	php canonical debian netapp	php ubuntu_linux debian_linux storage_automation_store	An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exif_read_data in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data becau…	CWE-125 Out-of-bounds Read	CVE-2018-10549	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246733	7.5	HIGH Network	php canonical debian netapp	php ubuntu_linux debian_linux storage_automation_store	An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. ext/ldap/ldap.c allows remote LDAP servers to cause a denial of service (NULL pointer d…	CWE-476 NULL Pointer Dereference	CVE-2018-10548	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246734	6.1	MEDIUM Network	php canonical debian netapp	php ubuntu_linux debian_linux storage_automation_store	An issue was discovered in ext/phar/phar_object.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. There is Reflected XSS on the PHAR 403 and 404 error pages vi…	CWE-79 Cross-site Scripting	CVE-2018-10547	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246735	7.5	HIGH Network	php canonical debian netapp	php ubuntu_linux debian_linux storage_automation_store	An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. An infinite loop exists in ext/iconv/iconv.c because the iconv stream filter does not r…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2018-10546	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246736	4.7	MEDIUM Local	php canonical debian netapp	php ubuntu_linux debian_linux storage_automation_store	An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. Dumpable FPM child processes allow bypassing opcache access controls because fpm_unix.c…	CWE-200 Information Exposure	CVE-2018-10545	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246737	5.5	MEDIUM Local	wavpack debian	wavpack debian_linux	An issue was discovered in WavPack 5.1.0 and earlier for W64 input. Out-of-bounds writes can occur because ParseWave64HeaderConfig in wave64.c does not validate the sizes of unknown chunks before att…	CWE-787 Out-of-bounds Write	CVE-2018-10540	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246738	5.5	MEDIUM Local	wavpack debian	wavpack debian_linux	An issue was discovered in WavPack 5.1.0 and earlier for DSDiff input. Out-of-bounds writes can occur because ParseDsdiffHeaderConfig in dsdiff.c does not validate the sizes of unknown chunks before …	CWE-787 Out-of-bounds Write	CVE-2018-10539	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246739	5.5	MEDIUM Local	wavpack debian	wavpack debian_linux	An issue was discovered in WavPack 5.1.0 and earlier for WAV input. Out-of-bounds writes can occur because ParseRiffHeaderConfig in riff.c does not validate the sizes of unknown chunks before attempt…	CWE-787 Out-of-bounds Write	CVE-2018-10538	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

246740	7.8	HIGH Local	wavpack debian	wavpack debian_linux	An issue was discovered in WavPack 5.1.0 and earlier. The W64 parser component contains a vulnerability that allows writing to memory because ParseWave64HeaderConfig in wave64.c does not reject multi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-10537	2024-11-21 12:41	2018-04-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed