Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 7, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253061 | 1.2 | 注意 | Celery | - | virtualenv の virtualenv.py における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2011-4617 | 2012-01-5 16:20 | 2011-12-31 | Show | GitHub Exploit DB Packet Storm |
| 253062 | 7.5 | 危険 | Novell | - | Novell XTier framework の HTTP サーバにおける整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2011-1710 | 2012-01-5 16:19 | 2011-12-31 | Show | GitHub Exploit DB Packet Storm |
| 253063 | 4.3 | 警告 | JJWDesign | - | PHP Booking Calendar の details_view.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-5045 | 2012-01-5 16:14 | 2011-12-30 | Show | GitHub Exploit DB Packet Storm |
| 253064 | 7.2 | 危険 | SopCast | - | SopCast における任意のコードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-5044 | 2012-01-5 16:13 | 2011-12-30 | Show | GitHub Exploit DB Packet Storm |
| 253065 | 4.3 | 警告 | Tomatosoft | - | TomatoSoft Free Mp3 Player におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-5043 | 2012-01-5 16:12 | 2011-12-30 | Show | GitHub Exploit DB Packet Storm |
| 253066 | 4.3 | 警告 | gphemsley | - | SASHA の inc/lib/lib.base.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-5042 | 2012-01-5 16:11 | 2011-12-30 | Show | GitHub Exploit DB Packet Storm |
| 253067 | 4.3 | 警告 | PulseCMS | - | Pulse Pro CMS におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-5041 | 2012-01-5 16:10 | 2011-12-30 | Show | GitHub Exploit DB Packet Storm |
| 253068 | 4.3 | 警告 | Infoproject | - | Infoproject Biznis Heroj におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-5040 | 2012-01-5 14:27 | 2011-12-30 | Show | GitHub Exploit DB Packet Storm |
| 253069 | 7.5 | 危険 | Infoproject | - | Infoproject Biznis Heroj における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-5039 | 2012-01-5 14:26 | 2011-12-30 | Show | GitHub Exploit DB Packet Storm |
| 253070 | 7.5 | 危険 | hitCode | - | hitCode hitAppoint における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-5038 | 2012-01-5 14:24 | 2011-12-30 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 7, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246301 | 7.5 |
HIGH
Network |
wireshark | wireshark | In Wireshark through 2.6.2, the create_app_running_mutex function in wsutil/file_util.c calls SetSecurityDescriptorDacl to set a NULL DACL, which allows attackers to modify the access control arbitra… |
CWE-20
Improper Input Validation |
CVE-2018-14438 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246302 | 6.5 |
MEDIUM
Network |
imagemagick canonical |
imagemagick ubuntu_linux |
ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2018-14437 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246303 | 6.5 |
MEDIUM
Network |
imagemagick canonical |
imagemagick ubuntu_linux |
ImageMagick 7.0.8-4 has a memory leak in ReadMIFFImage in coders/miff.c. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2018-14436 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246304 | 6.5 |
MEDIUM
Network |
imagemagick canonical |
imagemagick ubuntu_linux |
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2018-14435 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246305 | 6.5 |
MEDIUM
Network |
imagemagick canonical |
imagemagick ubuntu_linux |
ImageMagick 7.0.8-4 has a memory leak for a colormap in WriteMPCImage in coders/mpc.c. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2018-14434 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246306 | 7.5 |
HIGH
Network |
uclouvain debian |
openjpeg debian_linux |
Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in lib/openjp3d/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (appl… |
CWE-369
Divide By Zero |
CVE-2018-14423 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246307 | 7.5 |
HIGH
Network |
canonical debian xmlsoft |
ubuntu_linux debian_linux libxml2 |
A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case.… |
CWE-476
NULL Pointer Dereference |
CVE-2018-14404 | 2024-11-21 12:49 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 246308 | 9.8 |
CRITICAL
Network |
techsmith | mp4v2 | MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of… |
CWE-704
Incorrect Type Conversion or Cast |
CVE-2018-14403 | 2024-11-21 12:49 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 246309 | 9.8 |
CRITICAL
Network |
greenpacket | dv-360_firmware | Green Packet WiMax DV-360 2.10.14-g1.0.6.1 devices allow Command Injection, with unauthenticated remote command execution, via a crafted payload to the HTTPS port, because lighttpd listens on all net… |
CWE-77
Command Injection |
CVE-2018-14067 | 2024-11-21 12:48 | 2020-12-31 | Show | GitHub Exploit DB Packet Storm |
| 246310 | 8.1 |
HIGH
Network |
qualcomm |
apq8053_firmware mdm9205_firmware mdm9206_firmware msm8909w_firmware msm8917_firmware msm8920_firmware msm8937_firmware msm8940_firmware msm8953_firmware sdm450_firmware
u'Error in UE due to race condition in EPCO handling' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, M…
|
CWE-362 |
CWE-476 Race Condition NULL Pointer Dereference
CVE-2018-13903
|
2024-11-21 12:48 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|