Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
253741 7.2 危険 F5 Networks - F5 FirePass の sudoers ファイルにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-2053 2012-04-6 15:53 2012-04-5 Show GitHub Exploit DB Packet Storm
253742 7.5 危険 F5 Networks - F5 FirePass の my.activation.php3 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2012-1777 2012-04-6 15:43 2012-03-14 Show GitHub Exploit DB Packet Storm
253743 9.3 危険 シスコシステムズ - Cisco WebEx Recording Format (WRF) Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-1337 2012-04-6 15:41 2012-04-4 Show GitHub Exploit DB Packet Storm
253744 9.3 危険 シスコシステムズ - Cisco WebEx Recording Format (WRF) Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-1336 2012-04-6 15:41 2012-04-4 Show GitHub Exploit DB Packet Storm
253745 9.3 危険 シスコシステムズ - Cisco WebEx Recording Format (WRF) Player におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2012-1335 2012-04-6 15:40 2012-04-4 Show GitHub Exploit DB Packet Storm
253746 5.8 警告 株式会社アイシーズ - せん茶SNS におけるセッション固定の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2012-1238 2012-04-5 14:03 2012-04-5 Show GitHub Exploit DB Packet Storm
253747 2.6 注意 株式会社アイシーズ - せん茶SNS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2012-1237 2012-04-5 14:02 2012-04-5 Show GitHub Exploit DB Packet Storm
253748 6.4 警告 東芝テック - 東芝テック製 e-Studio シリーズにおける認証回避の脆弱性 CWE-287
不適切な認証
CVE-2012-1239 2012-04-5 14:01 2012-04-5 Show GitHub Exploit DB Packet Storm
253749 6.8 警告 Scadatec Limited
TurboPower Abbrevia
- TurboPower Abbrevia におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-4535 2012-04-4 16:46 2011-12-28 Show GitHub Exploit DB Packet Storm
253750 4.3 警告 ARC Informatique - 複数の ARC Informatique 製品の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-4045 2012-04-4 16:44 2011-09-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246141 7.5 HIGH
Network
gitlab gitlab GitLab Community and Enterprise Edition before 11.3.14, 11.4.x before 11.4.12, and 11.5.x before 11.5.5 allows Directory Traversal. CWE-22
Path Traversal
CVE-2018-20229 2024-11-21 13:01 2019-04-5 Show GitHub Exploit DB Packet Storm
246142 5.5 MEDIUM
Local
linux
netapp
linux_kernel
element_software_management_node
The hidma_chan_stats function in drivers/dma/qcom/hidma_dbg.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "callback=" lines in a debugfs file. CWE-200
Information Exposure
CVE-2018-20449 2024-11-21 13:01 2019-04-5 Show GitHub Exploit DB Packet Storm
246143 9.8 CRITICAL
Network
airsonic_project airsonic XXE issue in Airsonic before 10.1.2 during parse. CWE-611
XXE
CVE-2018-20222 2024-11-21 13:01 2019-04-5 Show GitHub Exploit DB Packet Storm
246144 8.1 HIGH
Network
sqlite
apple
opensuse
sqlite
iphone_os
mac_os_x
watchos
tvos
icloud
itunes
leap
SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge" operation that occurs after crafted changes to F… CWE-190
 Integer Overflow or Wraparound
CVE-2018-20506 2024-11-21 13:01 2019-04-4 Show GitHub Exploit DB Packet Storm
246145 7.5 HIGH
Network
sqlite
apple
sqlite
iphone_os
watchos
mac_os_x
icloud
itunes
SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service (application crash) by leveraging the ability to run arbitrary SQL st… CWE-89
SQL Injection
CVE-2018-20505 2024-11-21 13:01 2019-04-4 Show GitHub Exploit DB Packet Storm
246146 7.5 HIGH
Adjacent
opensynergy blue_sdk The L2CAP signaling channel implementation and SDP server implementation in OpenSynergy Blue SDK 3.2 through 6.0 allow remote, unauthenticated attackers to execute arbitrary code or cause a denial of… CWE-20
 Improper Input Validation 
CVE-2018-20378 2024-11-21 13:01 2019-03-30 Show GitHub Exploit DB Packet Storm
246147 8.8 HIGH
Network
librenms librenms LibreNMS through 1.47 allows SQL injection via the html/ajax_table.php sort[hostname] parameter, exploitable by authenticated users during a search. CWE-89
SQL Injection
CVE-2018-20678 2024-11-21 13:01 2019-03-29 Show GitHub Exploit DB Packet Storm
246148 7.8 HIGH
Local
linux
canonical
netapp
linux_kernel
ubuntu_linux
solidfire
hci_management_node
snapprotect
cn1610_firmware
An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A loc… CWE-20
 Improper Input Validation 
CVE-2018-20669 2024-11-21 13:01 2019-03-22 Show GitHub Exploit DB Packet Storm
246149 8.8 HIGH
Network
car_rental_script_project car_rental_script PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery (CSRF) via accountedit.php. CWE-352
 Origin Validation Error
CVE-2018-20648 2024-11-21 13:01 2019-03-22 Show GitHub Exploit DB Packet Storm
246150 6.5 MEDIUM
Network
car_rental_script_project car_rental_script PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory. CWE-22
Path Traversal
CVE-2018-20647 2024-11-21 13:01 2019-03-22 Show GitHub Exploit DB Packet Storm