Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252631 9.3 危険 Google
Hex-Rays		 - IDA Pro の IDAPython プラグインにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4783 2011-12-28 16:47 2011-07-27 Show GitHub Exploit DB Packet Storm
252632 7.2 危険 NVIDIA - NVIDIA Stereoscopic 3D ドライバにおける権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4784 2011-12-28 16:44 2011-12-27 Show GitHub Exploit DB Packet Storm
252633 4.3 警告 WP Symposium - WordPress 用の WP Symposium プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3841 2011-12-28 16:40 2011-12-7 Show GitHub Exploit DB Packet Storm
252634 7.8 危険 IBM - IBM Lotus Domino の認証機能におけるサービス運用妨害 (DoS) 状態となる脆弱性 CWE-noinfo
情報不足 		CVE-2011-1393 2011-12-28 16:40 2011-12-27 Show GitHub Exploit DB Packet Storm
252635 5.5 警告 zFTPServer - zFTPServer Suite におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4717 2011-12-28 16:31 2011-12-20 Show GitHub Exploit DB Packet Storm
252636 5 警告 Stichting NLnet Labs - Unbound にサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4528 2011-12-28 16:26 2011-12-20 Show GitHub Exploit DB Packet Storm
252637 7.5 危険 7-Technologies - 7-Technologies Interactive Graphical SCADA System におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4537 2011-12-28 15:58 2011-12-27 Show GitHub Exploit DB Packet Storm
252638 5 警告 7-Technologies - 7-Technologies の Interactive Graphical SCADA System におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4050 2011-12-28 15:57 2011-12-27 Show GitHub Exploit DB Packet Storm
252639 10 危険 WellinTech - WellinTech KingView におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4536 2011-12-28 15:55 2010-12-15 Show GitHub Exploit DB Packet Storm
252640 7.5 危険 ヒューレット・パッカード - HP Managed Printing Administration における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4169 2011-12-28 15:53 2011-12-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246561 5.3 MEDIUM
Network 		digium
debian 		asterisk
certified_asterisk
debian_linux 		An issue was discovered in Asterisk Open Source 13.x before 13.21.1, 14.x before 14.7.7, and 15.x before 15.4.1 and Certified Asterisk 13.18-cert before 13.18-cert4 and 13.21-cert before 13.21-cert2.… CWE-200
Information Exposure 		CVE-2018-12227 2024-11-21 12:44 2018-06-12 Show GitHub Exploit DB Packet Storm
246562 7.8 HIGH
Local 		md4c_project md4c md_build_attribute in md4c.c in md4c 0.2.6 allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact via a crafted file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12112 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm
246563 6.1 MEDIUM
Network 		canon efi_printme Cross-site scripting (XSS) vulnerability in the Canon PrintMe EFI webinterface allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the /wt3/mydocs.php URI. CWE-79
Cross-site Scripting 		CVE-2018-12111 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm
246564 7.2 HIGH
Network 		portfoliocms_project portfoliocms portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter. CWE-89
SQL Injection 		CVE-2018-12110 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm
246565 7.8 HIGH
Local 		flif flif An issue was discovered in Free Lossless Image Format (FLIF) 0.3. The TransformPaletteC<FileIO>::process function in transform/palette_C.hpp allows remote attackers to cause a denial of service (heap… CWE-787
 Out-of-bounds Write 		CVE-2018-12109 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm
246566 5.5 MEDIUM
Local 		dropbox lepton An issue was discovered in Dropbox Lepton 1.2.1. The validateAndCompress function in validation.cc allows remote attackers to cause a denial of service (SIGFPE and application crash) via a malformed … CWE-20
 Improper Input Validation  		CVE-2018-12108 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm
246567 5.5 MEDIUM
Local 		md4c_project md4c md4c 0.2.6 has a NULL pointer dereference in the function md_process_line in md4c.c, related to ctx->current_block. CWE-476
 NULL Pointer Dereference 		CVE-2018-12102 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm
246568 4.8 MEDIUM
Network 		sonatype nexus_repository_manager Sonatype Nexus Repository Manager versions 3.x before 3.12.0 has XSS in multiple areas in the Administration UI. CWE-79
Cross-site Scripting 		CVE-2018-12100 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm
246569 6.1 MEDIUM
Network 		grafana
netapp 		grafana
active_iq_performance_analytics_services
storagegrid_webscale_nas_bridge 		Grafana before 5.2.0-beta1 has XSS vulnerabilities in dashboard links. CWE-79
Cross-site Scripting 		CVE-2018-12099 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm
246570 5.4 MEDIUM
Network 		oecms_project oecms A Reflected Cross-Site Scripting web vulnerability has been discovered in the OEcms v3.1 web-application. The vulnerability is located in the mod parameter of info.php. CWE-79
Cross-site Scripting 		CVE-2018-12095 2024-11-21 12:44 2018-06-11 Show GitHub Exploit DB Packet Storm