Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253281	9.3	危険	Opera Software ASA	-	Opera の opera.dll における整数切り捨て問題の脆弱性	CWE-119 バッファエラー	CVE-2011-0682	2012-03-27 18:42	2011-01-27	Show	GitHub Exploit DB Packet Storm

253282	4.3	警告	Opera Software ASA	-	Opera の CSS 実装における CSS フィルタを回避される脆弱性	CWE-Other その他	CVE-2011-0681	2012-03-27 18:42	2011-01-27	Show	GitHub Exploit DB Packet Storm

253283	5	警告	Google	-	Android の data/WorkingMessage.java における SMS メッセージを読まれる脆弱性	CWE-DesignError	CVE-2011-0680	2012-03-27 18:42	2011-01-31	Show	GitHub Exploit DB Packet Storm

253284	5	警告	IBM	-	IBM Lotus WCM および IBM Lotus Quickr for WebSphere Portal で使用される IBM WebSphere Portal における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-0679	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

253285	2.1	注意	looknstop	-	Look 'n' Stop Firewall の lnsfw1.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0652	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

253286	7.5	危険	Icon Labs	-	Icon Labs Iconfidant SSL Server の鍵交換機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0651	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

253287	6.8	警告	Greenbone Networks GmbH	-	GSA におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0650	2012-03-27 18:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

253288	7.2	危険	TIBCO Software	-	複数の TIBCO 製品における root 権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-0649	2012-03-27 18:42	2011-02-1	Show	GitHub Exploit DB Packet Storm

253289	8.5	危険	DELL EMC (旧 EMC Corporation)	-	EMC Avamar における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-0648	2012-03-27 18:42	2011-03-16	Show	GitHub Exploit DB Packet Storm

253290	10	危険	DELL EMC (旧 EMC Corporation)	-	EMC Replication Manager Client および NetWorker Module for Microsoft Applications の irccd.exe サービスにおける任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0647	2012-03-27 18:42	2011-02-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245551	9.8	CRITICAL Network	open_faculty_evaluation_system_project	open_faculty_evaluation_system	Open Faculty Evaluation System 7 for PHP 7 allows submit_feedback.php SQL Injection, a different vulnerability than CVE-2018-18757.	CWE-89 SQL Injection	CVE-2018-18758	2024-11-21 12:56	2019-06-20	Show	GitHub Exploit DB Packet Storm

245552	9.8	CRITICAL Network	open_faculty_evaluation_system_project	open_faculty_evaluation_system	Open Faculty Evaluation System 5.6 for PHP 5.6 allows submit_feedback.php SQL Injection, a different vulnerability than CVE-2018-18758.	CWE-89 SQL Injection	CVE-2018-18757	2024-11-21 12:56	2019-06-20	Show	GitHub Exploit DB Packet Storm

245553	5.3	MEDIUM Network	my-netdata	netdata	An issue was discovered in Netdata 1.10.0. Full Path Disclosure (FPD) exists via api/v1/alarms. NOTE: the vendor says "is intentional.	CWE-200 Information Exposure	CVE-2018-18839	2024-11-21 12:56	2019-06-19	Show	GitHub Exploit DB Packet Storm

245554	7.5	HIGH Network	my-netdata	netdata	An issue was discovered in Netdata 1.10.0. Log Injection (or Log Forgery) exists via a %0a sequence in the url parameter to api/v1/registry.	CWE-116 Improper Encoding or Escaping of Output	CVE-2018-18838	2024-11-21 12:56	2019-06-19	Show	GitHub Exploit DB Packet Storm

245555	6.1	MEDIUM Network	my-netdata	netdata	An issue was discovered in Netdata 1.10.0. HTTP Header Injection exists via the api/v1/data filename parameter because of web_client_api_request_v1_data in web/api/web_api_v1.c.	CWE-113 HTTP Response Splitting	CVE-2018-18837	2024-11-21 12:56	2019-06-19	Show	GitHub Exploit DB Packet Storm

245556	6.5	MEDIUM Network	my-netdata	netdata	An issue was discovered in Netdata 1.10.0. JSON injection exists via the api/v1/data tqx parameter because of web_client_api_request_v1_data in web/api/web_api_v1.c.	CWE-94 Code Injection	CVE-2018-18836	2024-11-21 12:56	2019-06-19	Show	GitHub Exploit DB Packet Storm

245557	8.8	HIGH Network	tubigan	welcome_to_our_resort	The Tubigan "Welcome to our Resort" 1.0 software allows CSRF via admin/mod_users/controller.php?action=edit.	CWE-352 Origin Validation Error	CVE-2018-18802	2024-11-21 12:56	2019-06-19	Show	GitHub Exploit DB Packet Storm

245558	7.5	HIGH Network	columbiaweather	weather_microserver_firmware	In firmware version MS_2.6.9900 of Columbia Weather MicroServer, the BACnet daemon does not properly validate input, which could allow a remote attacker to send specially crafted packets causing the …	CWE-20 Improper Input Validation	CVE-2018-18878	2024-11-21 12:56	2019-06-19	Show	GitHub Exploit DB Packet Storm

245559	8.8	HIGH Network	columbiaweather	weather_microserver_firmware	In firmware version MS_2.6.9900 of Columbia Weather MicroServer, an authenticated web user can access an alternative configuration page config_main.php that allows manipulation of the device.	CWE-287 Improper Authentication	CVE-2018-18877	2024-11-21 12:56	2019-06-19	Show	GitHub Exploit DB Packet Storm

245560	5.3	MEDIUM Network	columbiaweather	weather_microserver_firmware	In firmware version MS_2.6.9900 of Columbia Weather MicroServer, a readouts_rd.php directory traversal issue makes it possible to read any file present on the underlying operating system.	CWE-22 Path Traversal	CVE-2018-18876	2024-11-21 12:56	2019-06-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed