Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 21, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253201 | 6.8 | 警告 | brunetton | - | Brunetton LittlePhpGallery の gallery.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-4406 | 2012-03-27 18:42 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253202 | 4.3 | 警告 | anything-digital | - | Joomla! の Yannick Gaultier コンポーネントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-4405 | 2012-03-27 18:42 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253203 | 7.5 | 危険 | anything-digital | - | Joomla! の Yannick Gaultier コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4404 | 2012-03-27 18:42 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253204 | 5 | 警告 | devbits | - | WordPress の Register Plus プラグインにおける重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-4403 | 2012-03-27 18:42 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253205 | 4.3 | 警告 | devbits | - | WordPress の wp-login.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-4402 | 2012-03-27 18:42 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253206 | 5 | 警告 | dynpg | - | DynPG CMS の languages.inc.php における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-4401 | 2012-03-27 18:42 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253207 | 7.5 | 危険 | dynpg | - | DynPG CMS の in _rights.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-4400 | 2012-03-27 18:42 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253208 | 4.3 | 警告 | dynpg | - | DynPG CMS の languages.inc.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-4399 | 2012-03-27 18:42 | 2010-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253209 | 4.3 | 警告 | Nullsoft | - | Winamp の in_mkv プラグインにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2010-4374 | 2012-03-27 18:42 | 2010-11-27 | Show | GitHub Exploit DB Packet Storm |
| 253210 | 4.3 | 警告 | Nullsoft | - | Winamp の in_mp4 プラグインにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-DesignError
|
CVE-2010-4373 | 2012-03-27 18:42 | 2010-11-27 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 21, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 245681 | 6.1 |
MEDIUM
Network |
control-webpanel | webpanel | CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows XSS via the admin/index.php module parameter. |
CWE-79
Cross-site Scripting |
CVE-2018-18774 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245682 | 8.8 |
HIGH
Network |
control-webpanel | webpanel | CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows CSRF via admin/index.php?module=rootpwd, as demonstrated by changing the root password. |
CWE-352
Origin Validation Error |
CVE-2018-18773 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245683 | 8.8 |
HIGH
Network |
control-webpanel | webpanel | CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows CSRF via admin/index.php?module=send_ssh, as demonstrated by executing an arbitrary OS command. |
CWE-352
Origin Validation Error |
CVE-2018-18772 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245684 | 6.1 |
MEDIUM
Network |
zohocorp | manageengine_opmanager | Zoho ManageEngine OpManager 12.3 before 123219 has a Self XSS Vulnerability. |
CWE-79
Cross-site Scripting |
CVE-2018-18716 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245685 | 6.1 |
MEDIUM
Network |
zohocorp | manageengine_opmanager | Zoho ManageEngine OpManager 12.3 before 123219 has stored XSS. |
CWE-79
Cross-site Scripting |
CVE-2018-18715 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245686 | 7.4 |
HIGH
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_pro_ii_firmware |
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, and… |
NVD-CWE-noinfo
|
CVE-2018-18564 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245687 | 6.8 |
MEDIUM
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_pro_ii_firmware coaguchek_xs_plus_firmware coaguchek_xs_pro_firmware |
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, Coa… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2018-18565 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245688 | 9.6 |
CRITICAL
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_pro_ii_firmware coaguchek_xs_plus_firmware coaguchek_xs_pro_firmware |
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, Coa… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2018-18563 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245689 | 8.8 |
HIGH
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_firmware base_unit_hub_firmware |
An issue was discovered in Roche Accu-Chek Inform II Base Unit / Base Unit Hub before 03.01.04 and CoaguChek / cobas h232 Handheld Base Unit before 03.01.04. Weak access credentials may enable attack… |
CWE-521
Weak Password Requirements |
CVE-2018-18562 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245690 | 8.0 |
HIGH
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_firmware base_unit_hub_firmware |
An issue was discovered in Roche Accu-Chek Inform II Base Unit / Base Unit Hub before 03.01.04 and CoaguChek / cobas h232 Handheld Base Unit before 03.01.04. Insecure permissions in a service interfa… |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2018-18561 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |