Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253211 7.5 危険 BrotherScripts - BrotherScripts Business Directory の articlesdetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4969 2011-12-9 14:44 2011-11-1 Show GitHub Exploit DB Packet Storm
253212 7.5 危険 wikiwebhelp - Wiki Web Help の handlers/getpage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4970 2011-12-9 14:44 2011-11-1 Show GitHub Exploit DB Packet Storm
253213 7.5 危険 YPNinc - YPNinc JokeScript の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4972 2011-12-9 14:43 2011-11-1 Show GitHub Exploit DB Packet Storm
253214 4.3 警告 Sourcefabric - Campsite の検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4973 2011-12-9 14:43 2011-11-1 Show GitHub Exploit DB Packet Storm
253215 7.5 危険 BrotherScripts - Auto Dealer の info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4974 2011-12-9 14:42 2011-11-1 Show GitHub Exploit DB Packet Storm
253216 7.5 危険 Techjoomla - Joomla! 用の Techjoomla SocialAds における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4975 2011-12-9 14:41 2011-11-1 Show GitHub Exploit DB Packet Storm
253217 4.3 警告 MetInfo - MetInfo の search/search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4976 2011-12-9 14:40 2011-11-1 Show GitHub Exploit DB Packet Storm
253218 7.5 危険 Miniwork - Joomla! 用 Canteen コンポーネントの menu.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4977 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
253219 4.3 警告 Nicholas Berry - CANDID の image/view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4978 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
253220 7.5 危険 Nicholas Berry - CANDID の image/view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4979 2011-12-9 14:38 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246381 6.5 MEDIUM
Network 		imagemagick
canonical 		imagemagick
ubuntu_linux 		In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in MagickCore/animate.c. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2018-13153 2024-11-21 12:46 2018-07-5 Show GitHub Exploit DB Packet Storm
246382 7.5 HIGH
Network 		lef_project lef The mintToken, buy, and sell functions of a smart contract implementation for LEF, an Ethereum token, have an integer overflow. CWE-190
 Integer Overflow or Wraparound 		CVE-2018-13146 2024-11-21 12:46 2018-07-5 Show GitHub Exploit DB Packet Storm
246383 7.5 HIGH
Network 		javaswaptest_project javaswaptest The mintToken function of a smart contract implementation for JavaSwapTest (JST), an Ethereum token, has an integer overflow. CWE-190
 Integer Overflow or Wraparound 		CVE-2018-13145 2024-11-21 12:46 2018-07-5 Show GitHub Exploit DB Packet Storm
246384 7.5 HIGH
Network 		pandora_project pandora The transfer and transferFrom functions of a smart contract implementation for Pandora (PDX), an Ethereum token, have an integer overflow. NOTE: this has been disputed by a third party. CWE-190
 Integer Overflow or Wraparound 		CVE-2018-13144 2024-11-21 12:46 2018-07-5 Show GitHub Exploit DB Packet Storm
246385 8.8 HIGH
Network 		libsndfile_project
debian 		libsndfile
debian_linux 		A stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a c… CWE-787
 Out-of-bounds Write 		CVE-2018-13139 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
246386 6.1 MEDIUM
Network 		ultimatemember ultimate_member The Ultimate Member (aka ultimatemember) plugin before 2.0.18 for WordPress has XSS via the wp-admin settings screen. CWE-79
Cross-site Scripting 		CVE-2018-13136 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
246387 6.1 MEDIUM
Network 		tp-link archer_c1200_firmware TP-Link Archer C1200 1.13 Build 2018/01/24 rel.52299 EU devices have XSS via the PATH_INFO to the /webpages/data URI. CWE-79
Cross-site Scripting 		CVE-2018-13134 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
246388 7.8 HIGH
Local 		goldenfrog vyprvpn Golden Frog VyprVPN before 2018-06-21 has a vulnerability associated with the installation process on Windows. CWE-426
 Untrusted Search Path 		CVE-2018-13133 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
246389 7.5 HIGH
Network 		spadeico_project spadeico Spadeico is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner. CWE-190
 Integer Overflow or Wraparound 		CVE-2018-13132 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm
246390 7.5 HIGH
Network 		spadepresale_project spadepresale SpadePreSale is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner. CWE-190
 Integer Overflow or Wraparound 		CVE-2018-13131 2024-11-21 12:46 2018-07-4 Show GitHub Exploit DB Packet Storm