Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 7, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253331 | 5 | 警告 | monoxide0184 | - | Oxide WebServer におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4712 | 2011-12-13 14:59 | 2011-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253332 | 5 | 警告 | Namazu Project | - | Namazu の namazu.cgi におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4711 | 2011-12-13 14:57 | 2011-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253333 | 7.5 | 危険 | Lucid Crew | - | Pixie CMS における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-4710 | 2011-12-13 14:53 | 2011-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253334 | 4.3 | 警告 | Hotaru CMS | - | Hotaru CMS の Search プラグイン内にある Hotaru.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4709 | 2011-12-13 14:52 | 2011-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253335 | 4.3 | 警告 | IBM | - | IBM Rational Asset Manager におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4708 | 2011-12-13 14:51 | 2011-05-5 | Show | GitHub Exploit DB Packet Storm |
| 253336 | 4.3 | 警告 | SAP | - | SAP Netweaver の Virus Scan Interface におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4707 | 2011-12-13 14:50 | 2011-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253337 | 5 | 警告 | Igor Sysoev | - | nginx におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2011-4315 | 2011-12-13 14:49 | 2011-11-15 | Show | GitHub Exploit DB Packet Storm |
| 253338 | 7.5 | 危険 | Mambo Foundation | - | Mambo CMS の administrator/index2.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-2917 | 2011-12-13 14:41 | 2011-12-8 | Show | GitHub Exploit DB Packet Storm |
| 253339 | 6.8 | 警告 | MIT Kerberos | - | MIT Kerberos の process_tgs_req 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-1530 | 2011-12-13 14:40 | 2011-12-6 | Show | GitHub Exploit DB Packet Storm |
| 253340 | 6.4 | 警告 | BlackBerry | - | BlackBerry Administration API におけるテキストファイルを読まれる脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0287 | 2011-12-13 14:35 | 2011-07-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 7, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 246301 | 7.5 |
HIGH
Network |
wireshark | wireshark | In Wireshark through 2.6.2, the create_app_running_mutex function in wsutil/file_util.c calls SetSecurityDescriptorDacl to set a NULL DACL, which allows attackers to modify the access control arbitra… |
CWE-20
Improper Input Validation |
CVE-2018-14438 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246302 | 6.5 |
MEDIUM
Network |
imagemagick canonical |
imagemagick ubuntu_linux |
ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2018-14437 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246303 | 6.5 |
MEDIUM
Network |
imagemagick canonical |
imagemagick ubuntu_linux |
ImageMagick 7.0.8-4 has a memory leak in ReadMIFFImage in coders/miff.c. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2018-14436 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246304 | 6.5 |
MEDIUM
Network |
imagemagick canonical |
imagemagick ubuntu_linux |
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2018-14435 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246305 | 6.5 |
MEDIUM
Network |
imagemagick canonical |
imagemagick ubuntu_linux |
ImageMagick 7.0.8-4 has a memory leak for a colormap in WriteMPCImage in coders/mpc.c. |
CWE-772
Missing Release of Resource after Effective Lifetime |
CVE-2018-14434 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246306 | 7.5 |
HIGH
Network |
uclouvain debian |
openjpeg debian_linux |
Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in lib/openjp3d/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (appl… |
CWE-369
Divide By Zero |
CVE-2018-14423 | 2024-11-21 12:49 | 2018-07-20 | Show | GitHub Exploit DB Packet Storm |
| 246307 | 7.5 |
HIGH
Network |
canonical debian xmlsoft |
ubuntu_linux debian_linux libxml2 |
A NULL pointer dereference vulnerability exists in the xpath.c:xmlXPathCompOpEval() function of libxml2 through 2.9.8 when parsing an invalid XPath expression in the XPATH_OP_AND or XPATH_OP_OR case.… |
CWE-476
NULL Pointer Dereference |
CVE-2018-14404 | 2024-11-21 12:49 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 246308 | 9.8 |
CRITICAL
Network |
techsmith | mp4v2 | MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of… |
CWE-704
Incorrect Type Conversion or Cast |
CVE-2018-14403 | 2024-11-21 12:49 | 2018-07-19 | Show | GitHub Exploit DB Packet Storm |
| 246309 | 9.8 |
CRITICAL
Network |
greenpacket | dv-360_firmware | Green Packet WiMax DV-360 2.10.14-g1.0.6.1 devices allow Command Injection, with unauthenticated remote command execution, via a crafted payload to the HTTPS port, because lighttpd listens on all net… |
CWE-77
Command Injection |
CVE-2018-14067 | 2024-11-21 12:48 | 2020-12-31 | Show | GitHub Exploit DB Packet Storm |
| 246310 | 8.1 |
HIGH
Network |
qualcomm |
apq8053_firmware mdm9205_firmware mdm9206_firmware msm8909w_firmware msm8917_firmware msm8920_firmware msm8937_firmware msm8940_firmware msm8953_firmware sdm450_firmware
u'Error in UE due to race condition in EPCO handling' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, M…
|
CWE-362 |
CWE-476 Race Condition NULL Pointer Dereference
CVE-2018-13903
|
2024-11-21 12:48 |
2020-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|