Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 12:08 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
253181 10 危険 xArrow - xArrow のサーバ機能における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2012-2428 2012-05-29 15:56 2012-05-24 Show GitHub Exploit DB Packet Storm
253182 10 危険 xArrow - xArrow のサーバ機能におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-2427 2012-05-29 15:54 2012-05-24 Show GitHub Exploit DB Packet Storm
253183 7.8 危険 xArrow - xArrow の サーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2012-2426 2012-05-29 15:46 2012-05-24 Show GitHub Exploit DB Packet Storm
253184 7.2 危険 Measuresoft Development Ltd. - Measuresoft ScadaPro Client および ScadaPro Server における権限を取得される脆弱性 CWE-Other
その他
CVE-2012-1824 2012-05-29 15:35 2012-05-24 Show GitHub Exploit DB Packet Storm
253185 5 警告 Sylvain Brison - Cryptographp の cryptographp.inc.php における CRLF インジェクションの脆弱性 CWE-Other
その他
CVE-2012-2943 2012-05-29 15:31 2012-05-27 Show GitHub Exploit DB Packet Storm
253186 4.3 警告 Yandex - Yandex.Server の search/ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2941 2012-05-29 15:18 2012-05-27 Show GitHub Exploit DB Packet Storm
253187 4.3 警告 Mediachance - MediaChance Real-DRAW PRO におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認
CVE-2012-2940 2012-05-29 15:15 2012-05-27 Show GitHub Exploit DB Packet Storm
253188 6.5 警告 ITechScripts - Travelon Express における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2012-2939 2012-05-29 15:01 2012-05-27 Show GitHub Exploit DB Packet Storm
253189 4.3 警告 ITechScripts - Travelon Express におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2012-2938 2012-05-29 15:00 2012-05-27 Show GitHub Exploit DB Packet Storm
253190 7.5 危険 Pligg - Pligg CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-2937 2012-05-29 14:58 2012-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
245491 6.8 MEDIUM
Adjacent
netgear d7800_firmware
dm200_firmware
r6100_firmware
r7500_firmware
r7800_firmware
r8900_firmware
r9000_firmware
wndr3700_firmware
wndr4300_firmware
wndr4500_firmware
wnr2000_fi…
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D7800 before 1.0.1.34, DM200 before 1.0.0.50, R6100 before 1.0.1.22, R7500 before 1.0.0.12… CWE-787
 Out-of-bounds Write
CVE-2018-21145 2024-11-21 13:03 2020-04-22 Show GitHub Exploit DB Packet Storm
245492 6.8 MEDIUM
Adjacent
netgear dm200_firmware
r7500_firmware
r7800_firmware
r8900_firmware
r9000_firmware
wndr3700_firmware
wndr4300_firmware
wndr4500_firmware
wnr2000_firmware
Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects DM200 before 1.0.0.52, R7500 before 1.0.0.122, R7800 before 1.0.2.42, R8900 before 1.0.3.1… CWE-787
 Out-of-bounds Write
CVE-2018-21144 2024-11-21 13:03 2020-04-22 Show GitHub Exploit DB Packet Storm
245493 6.5 MEDIUM
Adjacent
netgear gs810emx_firmware NETGEAR GS810EMX devices before 1.0.0.5 are affected by disclosure of sensitive information. CWE-200
Information Exposure
CVE-2018-21143 2024-11-21 13:03 2020-04-22 Show GitHub Exploit DB Packet Storm
245494 4.5 MEDIUM
Adjacent
netgear r6100_firmware
r7500_firmware
r7800_firmware
r8900_firmware
r9000_firmware
wndr3700_firmware
wndr4300_firmware
wndr4500_firmware
wnr2000_firmware
Certain NETGEAR devices are affected by denial of service. This affects R6100 before 1.0.1.22, R7500 before 1.0.0.122, R7800 before 1.0.2.42, R8900 before 1.0.3.10, R9000 before 1.0.3.10, WNDR3700v4 … CWE-20
 Improper Input Validation 
CVE-2018-21141 2024-11-21 13:03 2020-04-22 Show GitHub Exploit DB Packet Storm
245495 4.4 MEDIUM
Local
ibm spectrum_protect
spectrum_protect_for_virtual_environments
IBM Spectrum Protect Backup-Archive Client and IBM Spectrum Protect for Virtual Environments 7.1 and 8.1 creates directories/files in the CIT sub directory that are read/writable by everyone. IBM X-F… CWE-276
Incorrect Default Permissions 
CVE-2018-2025 2024-11-21 13:03 2019-11-26 Show GitHub Exploit DB Packet Storm
245496 8.1 HIGH
Network
ibm qradar_security_information_and_event_manager IBM QRadar SIEM 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 155350. CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-2024 2024-11-21 13:03 2019-07-22 Show GitHub Exploit DB Packet Storm
245497 5.3 MEDIUM
Network
ibm qradar_security_information_and_event_manager IBM QRadar SIEM 7.2 and 7.3 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 155346. CWE-200
Information Exposure
CVE-2018-2022 2024-11-21 13:03 2019-07-17 Show GitHub Exploit DB Packet Storm
245498 6.1 MEDIUM
Network
ibm qradar_security_information_and_event_manager IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentiall… CWE-79
Cross-site Scripting
CVE-2018-2021 2024-11-21 13:03 2019-07-17 Show GitHub Exploit DB Packet Storm
245499 5.3 MEDIUM
Network
ibm api_connect IBM API Connect 2018.1 through 2018.4.1.5 could disclose sensitive information to an unauthorized user that could aid in further attacks against the system. IBM X-Force ID: 155193. CWE-200
Information Exposure
CVE-2018-2013 2024-11-21 13:03 2019-06-26 Show GitHub Exploit DB Packet Storm
245500 5.3 MEDIUM
Network
ibm api_connect IBM API Connect 2018.1 through 2018.4.1.5 could allow an attacker to obtain sensitive information from a specially crafted HTTP request that could aid an attacker in further attacks against the syste… CWE-200
Information Exposure
CVE-2018-2011 2024-11-21 13:03 2019-06-26 Show GitHub Exploit DB Packet Storm