Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253271 5 警告 Ruby on Rails project - Ruby on Rails のテンプレート選択機能における任意のビューを表示される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2929 2012-03-27 18:43 2011-08-17 Show GitHub Exploit DB Packet Storm
253272 4.9 警告 Linux - Linux kernel の befs_follow_link 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2928 2012-03-27 18:43 2011-08-29 Show GitHub Exploit DB Packet Storm
253273 7.5 危険 Adaptive Computing - Terascale Open-Source Resource におけるホストベースの認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-2907 2012-03-27 18:43 2011-08-15 Show GitHub Exploit DB Packet Storm
253274 6.8 警告 rhythm - tcptrack におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2903 2012-03-27 18:43 2011-09-2 Show GitHub Exploit DB Packet Storm
253275 7.5 危険 shttpd
yaSSL
valenok		 - Mongoose などの put_dir 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2900 2012-03-27 18:43 2011-08-5 Show GitHub Exploit DB Packet Storm
253276 5.1 警告 アップル
SWI-Prolog
The GIMP Team		 - CUPS などの製品で使用される LZW デコンプレッサにおける無限ループの脆弱性 CWE-119
バッファエラー 		CVE-2011-2896 2012-03-27 18:43 2011-08-19 Show GitHub Exploit DB Packet Storm
253277 4.3 警告 IBM - IBM Lotus Symphony 3 の DataPilot 機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2893 2012-03-27 18:43 2011-07-27 Show GitHub Exploit DB Packet Storm
253278 4.3 警告 Joomla! - Joomla! におけるクリックジャッキング攻撃を誘発する脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2892 2012-03-27 18:43 2011-04-14 Show GitHub Exploit DB Packet Storm
253279 5 警告 Joomla! - Joomla! における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2891 2012-03-27 18:43 2011-04-11 Show GitHub Exploit DB Packet Storm
253280 5 警告 Joomla! - Joomla! の MediaViewMedia クラスにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2890 2012-03-27 18:43 2011-07-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
245441 6.1 MEDIUM
Network 		search-guard search_guard The floragunn Search Guard plugin before 6.x-16 for Kibana allows URL injection for login redirects on the login page when basePath is set. CWE-601
Open Redirect 		CVE-2018-20698 2024-11-21 13:02 2019-04-10 Show GitHub Exploit DB Packet Storm
245442 6.1 MEDIUM
Network 		salesagility suitecrm An XSS combined with CSRF vulnerability discovered in SalesAgility SuiteCRM 7.x before 7.8.24 and 7.10.x before 7.10.11 leads to cookie stealing, aka session hijacking. This issue affects the "add da… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2018-20816 2024-11-21 13:02 2019-04-6 Show GitHub Exploit DB Packet Storm
245443 5.4 MEDIUM
Network 		wso2 api_manager
identity_server
identity_server_as_key_manager 		An issue was discovered in WSO2 API Manager 2.1.0 and 2.6.0. Reflected XSS exists in the carbon part of the product. CWE-79
Cross-site Scripting 		CVE-2018-20737 2024-11-21 13:02 2019-03-22 Show GitHub Exploit DB Packet Storm
245444 5.4 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.1.0 and 2.6.0. A DOM-based XSS exists in the store part of the product. CWE-79
Cross-site Scripting 		CVE-2018-20736 2024-11-21 13:02 2019-03-22 Show GitHub Exploit DB Packet Storm
245445 6.1 MEDIUM
Network 		phamm phamm Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter). CWE-79
Cross-site Scripting 		CVE-2018-20806 2024-11-21 13:02 2019-03-18 Show GitHub Exploit DB Packet Storm
245446 7.5 HIGH
Network 		highcharts highcharts In js/parts/SvgRenderer.js in Highcharts JS before 6.1.0, the use of backtracking regular expressions permitted an attacker to conduct a denial of service attack against the SVGRenderer component, ak… CWE-185
 Incorrect Regular Expression 		CVE-2018-20801 2024-11-21 13:02 2019-03-15 Show GitHub Exploit DB Packet Storm
245447 6.5 MEDIUM
Network 		otrs otrs An issue was discovered in Open Ticket Request System (OTRS) 5.0.31 and 6.0.13. Users updating to 6.0.13 (also patchlevel updates) or 5.0.31 (only major updates) will experience data loss in their ag… CWE-20
 Improper Input Validation  		CVE-2018-20800 2024-11-21 13:02 2019-03-14 Show GitHub Exploit DB Packet Storm
245448 7.5 HIGH
Network 		netgate pfsense In pfSense 2.4.4_1, blocking of source IP addresses on the basis of failed HTTPS authentication is inconsistent with blocking of source IP addresses on the basis of failed SSH authentication (the beh… NVD-CWE-noinfo
CVE-2018-20799 2024-11-21 13:02 2019-03-2 Show GitHub Exploit DB Packet Storm
245449 7.5 HIGH
Network 		netgate pfsense The expiretable configuration in pfSense 2.4.4_1 establishes block durations that are incompatible with the block durations implemented by sshguard, which might make it easier for attackers to bypass… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-20798 2024-11-21 13:02 2019-03-2 Show GitHub Exploit DB Packet Storm
245450 6.5 MEDIUM
Network 		podofo_project podofo An issue was discovered in PoDoFo 0.9.6. There is an attempted excessive memory allocation in PoDoFo::podofo_calloc in base/PdfMemoryManagement.cpp when called from PoDoFo::PdfPredictorDecoder::PdfPr… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-20797 2024-11-21 13:02 2019-02-28 Show GitHub Exploit DB Packet Storm