Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 4:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253281 7.5 危険 Smarty - Smarty におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-5054 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
253282 7.5 危険 Smarty - Smarty における任意の PHP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-5053 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
253283 10 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2009-5052 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
253284 5 警告 Hastymail - Hastymail2 におけるクッキーを取り込まれる脆弱性 CWE-16
環境設定 		CVE-2009-5051 2012-03-27 18:42 2011-01-18 Show GitHub Exploit DB Packet Storm
253285 5 警告 ViewVC - ViewVC における cvsdb row_limit 設定を迂回される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5024 2012-03-27 18:42 2011-05-23 Show GitHub Exploit DB Packet Storm
253286 6.8 警告 catb - gif2png における任意のコマンドを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-5018 2012-03-27 18:42 2011-01-14 Show GitHub Exploit DB Packet Storm
253287 4 警告 IBM - IBM Lotus Notes Traveler の traveler.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2009-5036 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
253288 4.3 警告 IBM - IBM Lotus Notes Traveler の Nokia クライアントにおける他人への電子メールを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-5035 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
253289 4 警告 IBM - IBM Lotus Notes Traveler におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5034 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
253290 4 警告 IBM - IBM Lotus Notes Traveler における他人のユーザデータにアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2009-5033 2012-03-27 18:42 2010-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246031 7.8 HIGH
Local 		mgetty_project mgetty An issue was discovered in mgetty before 1.2.1. In contrib/next-login/login.c, the command-line parameter username is passed unsanitized to strcpy(), which can cause a stack-based buffer overflow. CWE-787
 Out-of-bounds Write 		CVE-2018-16743 2024-11-21 12:53 2018-09-14 Show GitHub Exploit DB Packet Storm
246032 7.8 HIGH
Local 		mgetty_project mgetty An issue was discovered in mgetty before 1.2.1. In contrib/scrts.c, a stack-based buffer overflow can be triggered via a command-line parameter. CWE-787
 Out-of-bounds Write 		CVE-2018-16742 2024-11-21 12:53 2018-09-14 Show GitHub Exploit DB Packet Storm
246033 7.8 HIGH
Local 		mgetty_project
debian 		mgetty
debian_linux 		An issue was discovered in mgetty before 1.2.1. In fax/faxq-helper.c, the function do_activate() does not properly sanitize shell metacharacters to prevent command injection. It is possible to use th… CWE-78
OS Command  		CVE-2018-16741 2024-11-21 12:53 2018-09-14 Show GitHub Exploit DB Packet Storm
246034 7.2 HIGH
Network 		squashtest squash_tm Squash TM through 1.18.0 presents the cleartext passwords of external services in the administration panel, as demonstrated by a ta-server-password field in the HTML source code. CWE-522
 Insufficiently Protected Credentials 		CVE-2018-16987 2024-11-21 12:53 2018-09-14 Show GitHub Exploit DB Packet Storm
246035 7.5 HIGH
Network 		lizard_project lizard In Lizard (formerly LZ5) 2.0, use of an invalid memory address was discovered in LZ5_compress_continue in lz5_compress.c, related to LZ5_compress_fastSmall and MEM_read32. The vulnerability causes a … CWE-125
Out-of-bounds Read 		CVE-2018-16985 2024-11-21 12:53 2018-09-13 Show GitHub Exploit DB Packet Storm
246036 9.8 CRITICAL
Network 		noscript
torproject 		noscript
tor_browser 		NoScript Classic before 5.1.8.7, as used in Tor Browser 7.x and other products, allows attackers to bypass script blocking via the text/html;/json Content-Type value. NVD-CWE-noinfo
CVE-2018-16983 2024-11-21 12:53 2018-09-13 Show GitHub Exploit DB Packet Storm
246037 5.5 MEDIUM
Local 		byvoid open_chinese_convert Open Chinese Convert (OpenCC) 1.0.5 allows attackers to cause a denial of service (segmentation fault) because BinaryDict::NewFromFile in BinaryDict.cpp may have out-of-bounds keyOffset and valueOffs… CWE-125
Out-of-bounds Read 		CVE-2018-16982 2024-11-21 12:53 2018-09-13 Show GitHub Exploit DB Packet Storm
246038 8.8 HIGH
Network 		nothings
debian 		stb_image.h
debian_linux 		stb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function. CWE-787
 Out-of-bounds Write 		CVE-2018-16981 2024-11-21 12:53 2018-09-13 Show GitHub Exploit DB Packet Storm
246039 6.1 MEDIUM
Network 		dotcms dotcms dotCMS V5.0.1 has XSS in the /html/portlet/ext/contentlet/image_tools/index.jsp fieldName and inode parameters. CWE-79
Cross-site Scripting 		CVE-2018-16980 2024-11-21 12:53 2018-09-13 Show GitHub Exploit DB Packet Storm
246040 6.1 MEDIUM
Network 		monstra monstra Monstra CMS V3.0.4 allows HTTP header injection in the plugins/captcha/crypt/cryptographp.php cfg parameter, a related issue to CVE-2012-2943. CWE-113
HTTP Response Splitting 		CVE-2018-16979 2024-11-21 12:53 2018-09-13 Show GitHub Exploit DB Packet Storm