Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252731 4.3 警告 HomeSeer Technologies, LLC. - HomeSeer HS2 の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4836 2011-12-21 15:24 2011-12-15 Show GitHub Exploit DB Packet Storm
252732 7.5 危険 HomeSeer Technologies, LLC. - HomeSeer HS2 の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4835 2011-12-21 15:23 2011-12-15 Show GitHub Exploit DB Packet Storm
252733 9.3 危険 RSAセキュリティ - EMC RSA SecurID Software Token における権限を取得される脆弱性 CWE-Other
その他 		CVE-2011-4141 2011-12-21 14:34 2011-12-17 Show GitHub Exploit DB Packet Storm
252734 4.3 警告 Mozilla Foundation
SafeNet, Inc
7-Technologies		 - 複数の SafeNet 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3339 2011-12-21 14:21 2011-12-12 Show GitHub Exploit DB Packet Storm
252735 6.8 警告 奈良先端科学技術大学院大学 - 茶筌 (ChaSen) におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4000 2011-12-20 18:12 2011-11-8 Show GitHub Exploit DB Packet Storm
252736 8.3 危険 富士通
日本電気
日立		 - Preboot Execution Environment (PXE) SDK を使用した製品における複数の脆弱性 CWE-119
CWE-22
CVE-2009-0270 2011-12-20 17:33 2011-12-15 Show GitHub Exploit DB Packet Storm
252737 9.3 危険 Parallels - Parallels Plesk Panel の Control Panel における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4856 2011-12-20 14:41 2011-12-16 Show GitHub Exploit DB Packet Storm
252738 9.3 危険 Parallels - Parallels Plesk Panel の Control Panel における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4855 2011-12-20 14:40 2011-12-16 Show GitHub Exploit DB Packet Storm
252739 9.3 危険 Parallels - Parallels Plesk Panel の Control Panel における詳細不明な脆弱性 CWE-DesignError
CVE-2011-4854 2011-12-20 14:40 2011-12-16 Show GitHub Exploit DB Packet Storm
252740 4.3 警告 Parallels - Parallels Plesk Panel の Control Panel における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-4853 2011-12-20 14:38 2011-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246571 9.8 CRITICAL
Network 		hp fortify_software_security_center An XML external entity (XXE) vulnerability in Fortify Software Security Center (SSC), version 17.1, 17.2, 18.1 allows remote unauthenticated users to read arbitrary files or conduct server-side reque… CWE-611
XXE 		CVE-2018-12463 2024-11-21 12:45 2018-07-13 Show GitHub Exploit DB Packet Storm
246572 8.8 HIGH
Network 		eclipse vert.x In version from 3.0.0 to 3.5.2 of Eclipse Vert.x, the CSRFHandler do not assert that the XSRF Cookie matches the returned XSRF header/form parameter. This allows replay attacks with previously issued… CWE-352
 Origin Validation Error 		CVE-2018-12540 2024-11-21 12:45 2018-07-12 Show GitHub Exploit DB Packet Storm
246573 6.1 MEDIUM
Network 		netiq imanager NetIQ iManager 3.1.1 addresses potential XSS vulnerabilities. CWE-79
Cross-site Scripting 		CVE-2018-12462 2024-11-21 12:45 2018-07-11 Show GitHub Exploit DB Packet Storm
246574 7.5 HIGH
Network 		netiq edirectory Fixed issues with NetIQ eDirectory prior to 9.1.1 when checking certificate revocation. CWE-295
Improper Certificate Validation  		CVE-2018-12461 2024-11-21 12:45 2018-07-11 Show GitHub Exploit DB Packet Storm
246575 8.8 HIGH
Network 		beescms beescms In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to CVE-2018-10266. CWE-352
 Origin Validation Error 		CVE-2018-12739 2024-11-21 12:45 2018-07-6 Show GitHub Exploit DB Packet Storm
246576 9.8 CRITICAL
Network 		microsoft forefront_unified_access_gateway uniquesig0/InternalSite/InitParams.aspx in Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of UR… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2018-12571 2024-11-21 12:45 2018-07-6 Show GitHub Exploit DB Packet Storm
246577 8.1 HIGH
Network 		ntop ntopng An issue was discovered in ntopng 3.4 before 3.4.180617. The PRNG involved in the generation of session IDs is not seeded at program startup. This results in deterministic session IDs being allocated… CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2018-12520 2024-11-21 12:45 2018-07-6 Show GitHub Exploit DB Packet Storm
246578 6.8 MEDIUM
Network 		onosproject onos Time-of-check to time-of-use (TOCTOU) race condition in org.onosproject.acl (aka the access control application) in ONOS v1.13 and earlier allows attackers to bypass network access control via data p… CWE-362
Race Condition 		CVE-2018-12691 2024-11-21 12:45 2018-07-6 Show GitHub Exploit DB Packet Storm
246579 9.8 CRITICAL
Network 		3cx live_chat The WP Live Chat Support Pro plugin before 8.0.07 for WordPress is vulnerable to unauthenticated Remote Code Execution due to client-side validation of allowed file types, as demonstrated by a v1/rem… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-12426 2024-11-21 12:45 2018-07-3 Show GitHub Exploit DB Packet Storm
246580 8.8 HIGH
Network 		tp-link tl-wr841n_firmware The Ping and Traceroute features on TP-Link TL-WR841N v13 00000001 0.9.1 4.16 v0001.0 Build 180119 Rel.65243n devices allow authenticated blind Command Injection. CWE-78
OS Command  		CVE-2018-12577 2024-11-21 12:45 2018-07-3 Show GitHub Exploit DB Packet Storm