Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253391 4.3 警告 WeBid Support - WeBid におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4873 2012-01-19 10:27 2011-10-7 Show GitHub Exploit DB Packet Storm
253392 7.5 危険 PilotCart - ASPilot Pilot Cart の newsroom.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4872 2012-01-19 10:27 2011-10-7 Show GitHub Exploit DB Packet Storm
253393 10 危険 SmartSoft - SmartFTP における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2010-4871 2012-01-19 10:26 2011-10-7 Show GitHub Exploit DB Packet Storm
253394 7.5 危険 bloofox - BloofoxCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4870 2012-01-19 10:25 2011-10-7 Show GitHub Exploit DB Packet Storm
253395 10 危険 アドビシステムズ - Adobe Reader および Acrobat の PRC コンポーネントにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4369 2012-01-17 18:13 2011-12-16 Show GitHub Exploit DB Packet Storm
253396 4.3 警告 CourseForum Technologies - ProjectForum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4277 2012-01-17 17:44 2011-10-3 Show GitHub Exploit DB Packet Storm
253397 2.1 注意 IBM - IBM WebSphere Application Server の Default Messaging コンポーネントにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-5066 2012-01-17 16:42 2011-04-11 Show GitHub Exploit DB Packet Storm
253398 4.3 警告 IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5065 2012-01-17 16:41 2011-10-11 Show GitHub Exploit DB Packet Storm
253399 7.5 危険 WHMCS Limited - WHMCompleteSolution の functions.php における任意のコード実行を誘発される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-5061 2012-01-17 16:40 2012-01-11 Show GitHub Exploit DB Packet Storm
253400 7.1 危険 ISC, Inc. - ISC DHCP の dhcpd のロギング機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4868 2012-01-17 16:39 2012-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246271 6.5 MEDIUM
Network 		redhat
debian 		gluster_storage
enterprise_linux_server
enterprise_linux_virtualization
virtualization
virtualization_host
debian_linux 		The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GF_XATTROP_ENTRY_IN… - CVE-2018-14654 2024-11-21 12:49 2018-11-1 Show GitHub Exploit DB Packet Storm
246272 8.8 HIGH
Network 		redhat
debian 		gluster_storage
debian_linux
enterprise_linux_server
enterprise_linux_virtualization 		The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer overflow in the '__server_getspec' function via the 'gf_getspec_req' RPC message. A remote authenticated a… - CVE-2018-14653 2024-11-21 12:49 2018-11-1 Show GitHub Exploit DB Packet Storm
246273 6.5 MEDIUM
Network 		redhat
debian 		gluster_storage
debian_linux
enterprise_linux_server
enterprise_linux_virtualization
enterprise_virtualization_host 		The Gluster file system through versions 3.12 and 4.1.4 is vulnerable to a buffer overflow in the 'features/index' translator via the code handling the 'GF_XATTR_CLRLK_CMD' xattr in the 'pl_getxattr'… - CVE-2018-14652 2024-11-21 12:49 2018-11-1 Show GitHub Exploit DB Packet Storm
246274 9.8 CRITICAL
Network 		tenda ac7_firmware
ac9_firmware
ac10_firmware 		An issue was discovered on Tenda AC7 devices with firmware through V15.03.06.44_CN(AC7), AC9 devices with firmware through V15.03.05.19(6318)_CN(AC9), and AC10 devices with firmware through V15.03.06… CWE-78
OS Command  		CVE-2018-14558 2024-11-21 12:49 2018-10-31 Show GitHub Exploit DB Packet Storm
246275 6.6 MEDIUM
Physics 		x.org
redhat
canonical
debian 		xorg-server
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_eus
enterprise_linux_server_aus
ubun… 		A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in… CWE-863
 Incorrect Authorization 		CVE-2018-14665 2024-11-21 12:49 2018-10-26 Show GitHub Exploit DB Packet Storm
246276 7.8 HIGH
Local 		fujielectric energy_savings_estimator An uncontrolled search path element (DLL Hijacking) vulnerability has been identified in Fuji Electric Energy Savings Estimator versions V.1.0.2.0 and prior. Exploitation of this vulnerability could … CWE-427
 Uncontrolled Search Path Element 		CVE-2018-14812 2024-11-21 12:49 2018-10-25 Show GitHub Exploit DB Packet Storm
246277 7.8 HIGH
Local 		advantech webaccess Advantech WebAccess 8.3.1 and earlier has an improper privilege management vulnerability, which may allow an attacker to access those files and perform actions at a system administrator level. CWE-269
 Improper Privilege Management 		CVE-2018-14828 2024-11-21 12:49 2018-10-24 Show GitHub Exploit DB Packet Storm
246278 7.5 HIGH
Network 		advantech webaccess Advantech WebAccess 8.3.1 and earlier has a .dll component that is susceptible to external control of file name or path vulnerability, which may allow an arbitrary file deletion when processing. CWE-20
 Improper Input Validation  		CVE-2018-14820 2024-11-21 12:49 2018-10-24 Show GitHub Exploit DB Packet Storm
246279 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabilities that have been identified, which may allow an attacker to execute arbitrary code. CWE-787
 Out-of-bounds Write 		CVE-2018-14816 2024-11-21 12:49 2018-10-24 Show GitHub Exploit DB Packet Storm
246280 9.8 CRITICAL
Network 		advantech webaccess Advantech WebAccess 8.3.1 and earlier has a path traversal vulnerability which may allow an attacker to execute arbitrary code. CWE-22
Path Traversal 		CVE-2018-14806 2024-11-21 12:49 2018-10-24 Show GitHub Exploit DB Packet Storm