Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 11, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253291 | 4.3 | 警告 | Zimbra | - | Zimbra Web Client の zimbra/h/calendar におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1213 | 2012-02-27 16:48 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253292 | 4.3 | 警告 | SMW+ | - | Semantic Enterprise Wiki の smwfOnSfSetTargetName 関数におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1212 | 2012-02-27 16:47 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253293 | 7.5 | 危険 | Powie | - | Powie pFile の pfile/file.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-1210 | 2012-02-27 15:51 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253294 | 4.3 | 警告 | Fork CMS | - | Fork CMS の backend/core/engine/base.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1209 | 2012-02-27 15:48 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253295 | 4.3 | 警告 | Fork CMS | - | Fork CMS の backend/core/engine/base.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1208 | 2012-02-27 15:48 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253296 | 5 | 警告 | Fork CMS | - | Fork CMS の frontend/core/engine/javascript.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2012-1207 | 2012-02-27 15:41 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253297 | 9.3 | 危険 | Hancom Inc. | - | Hancom Office 2010 SE における整数オーバフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2012-1206 | 2012-02-27 15:38 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253298 | 7.5 | 危険 | alanft | - | WordPress 用 Relocate Upload プラグインにおける PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2012-1205 | 2012-02-27 15:35 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253299 | 4.3 | 警告 | LEPTON Project | - | LEPTON におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-1000 | 2012-02-27 15:25 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
| 253300 | 7.5 | 危険 | LEPTON Project | - | LEPTON の modules/news/rss.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2012-0999 | 2012-02-27 15:24 | 2012-02-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 11, 2026, 5:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246091 | 5.3 |
MEDIUM
Network |
google redhat |
chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
A race condition between permission prompts and navigations in Prompts in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HT… |
CWE-362
Race Condition |
CVE-2018-16079 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm |
| 246092 | 6.5 |
MEDIUM
Network |
google redhat |
chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
Unsafe handling of credit card details in Autofill in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML … |
CWE-200
Information Exposure |
CVE-2018-16078 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm |
| 246093 | 8.8 |
HIGH
Network |
google redhat |
chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
Missing bounds check in PDFium in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file. |
CWE-125
Out-of-bounds Read |
CVE-2018-16076 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm |
| 246094 | 6.5 |
MEDIUM
Network |
chrome | A missing origin check related to HLS manifests in Blink in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to bypass same origin policy via a crafted HTML page. |
CWE-346
Origin Validation Error |
CVE-2018-16072 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm | |
| 246095 | 8.8 |
HIGH
Network |
google redhat |
chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
A use after free in WebRTC in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2018-16071 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm |
| 246096 | 9.6 |
CRITICAL
Network |
google debian redhat |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
Missing validation in Mojo in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. |
CWE-20
Improper Input Validation |
CVE-2018-16068 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm |
| 246097 | 6.5 |
MEDIUM
Network |
google debian redhat |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
A use after free in WebAudio in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2018-16067 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm |
| 246098 | 6.5 |
MEDIUM
Network |
google debian redhat |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
A use after free in Blink in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CWE-787 CWE-416 Out-of-bounds Write Use After Free |
CVE-2018-16066 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm |
| 246099 | 8.8 |
HIGH
Network |
google debian redhat |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
A Javascript reentrancy issues that caused a use-after-free in V8 in Google Chrome prior to 69.0.3497.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CWE-416
Use After Free |
CVE-2018-16065 | 2024-11-21 12:52 | 2019-01-10 | Show | GitHub Exploit DB Packet Storm |
| 246100 | 8.2 |
HIGH
Network |
siemens |
simatic_s7-400_firmware simatic_s7-400_pn\/dp_v7_firmware simatic_s7-400h_firmware simatic_s7-410_firmware |
A vulnerability has been identified in SIMATIC S7-400 CPU 412-1 DP V7 (All versions), SIMATIC S7-400 CPU 412-2 DP V7 (All versions), SIMATIC S7-400 CPU 414-2 DP V7 (All versions), SIMATIC S7-400 … | - | CVE-2018-16557 | 2024-11-21 12:52 | 2018-12-14 | Show | GitHub Exploit DB Packet Storm |