Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254111 4.3 警告 Invensys - Invensys Wonderware HMI Reports におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4038 2012-02-14 15:10 2012-02-10 Show GitHub Exploit DB Packet Storm
254112 6.8 警告 IvanView - IvanView におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1052 2012-02-14 15:09 2012-02-13 Show GitHub Exploit DB Packet Storm
254113 6.8 警告 XnSoft - XnView の JPEG2000 プラグインにある Xjp2.dll におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1051 2012-02-14 15:08 2012-02-13 Show GitHub Exploit DB Packet Storm
254114 4.3 警告 Mathopd - Mathopd におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1050 2012-02-14 14:59 2012-02-2 Show GitHub Exploit DB Packet Storm
254115 4.3 警告 Zoho Corporation - ManageEngine ADManager Plus におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1049 2012-02-14 14:48 2012-02-13 Show GitHub Exploit DB Packet Storm
254116 4.3 警告 eFront Learning - eFront Community++ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1048 2012-02-14 14:48 2012-02-12 Show GitHub Exploit DB Packet Storm
254117 7.5 危険 ソフォス - Cyberoam Central Console におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1047 2012-02-14 14:47 2012-02-12 Show GitHub Exploit DB Packet Storm
254118 4.3 警告 Symphony CMS - Symphony CMS における SQL インジェクションの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4341 2012-02-14 14:46 2012-02-12 Show GitHub Exploit DB Packet Storm
254119 3.5 注意 Symphony CMS - Symphony CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4340 2012-02-14 14:45 2012-02-12 Show GitHub Exploit DB Packet Storm
254120 4.3 警告 Deon George - phpLDAPadmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0834 2012-02-14 14:45 2012-02-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246291 6.1 MEDIUM
Network 		sonatype nexus_repository_manager Sonatype Nexus Repository Manager before 3.14 allows XSS. CWE-79
Cross-site Scripting 		CVE-2018-16619 2024-11-21 12:53 2018-11-16 Show GitHub Exploit DB Packet Storm
246292 9.8 CRITICAL
Network 		postgresql
redhat
canonical 		postgresql
enterprise_linux
ubuntu_linux 		postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cau… CWE-89
SQL Injection 		CVE-2018-16850 2024-11-21 12:53 2018-11-14 Show GitHub Exploit DB Packet Storm
246293 6.1 MEDIUM
Local 		f5
debian
canonical
opensuse
apple 		nginx
debian_linux
ubuntu_linux
leap
xcode 		nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might r… - CVE-2018-16845 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
246294 7.5 HIGH
Network 		f5
debian
canonical
apple 		nginx
debian_linux
ubuntu_linux
xcode 		nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not … - CVE-2018-16844 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
246295 7.5 HIGH
Network 		f5
debian
canonical
opensuse
apple 		nginx
debian_linux
ubuntu_linux
leap
xcode 		nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_mod… - CVE-2018-16843 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
246296 8.8 HIGH
Adjacent 		ti ble-stack Texas Instruments BLE-STACK v2.2.1 for SimpleLink CC2640 and CC2650 devices allows remote attackers to execute arbitrary code via a malformed packet that triggers a buffer overflow. CWE-787
 Out-of-bounds Write 		CVE-2018-16986 2024-11-21 12:53 2018-11-7 Show GitHub Exploit DB Packet Storm
246297 7.8 HIGH
Local 		qemu
canonical 		qemu
ubuntu_linux 		An OOB heap buffer r/w access issue was found in the NVM Express Controller emulation in QEMU. It could occur in nvme_cmb_ops routines in nvme device. A guest user/process could use this flaw to cras… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2018-16847 2024-11-21 12:53 2018-11-3 Show GitHub Exploit DB Packet Storm
246298 7.5 HIGH
Network 		redhat openstack-mistral A flaw was found in openstack-mistral. By manipulating the SSH private key filename, the std.ssh action can be used to disclose the presence of arbitrary files within the filesystem of the executor r… CWE-200
Information Exposure 		CVE-2018-16849 2024-11-21 12:53 2018-11-3 Show GitHub Exploit DB Packet Storm
246299 9.1 CRITICAL
Network 		haxx
canonical
debian 		curl
ubuntu_linux
debian_linux 		Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the tool_msgs.c:voutf() function that may result in information exposure and denial of service. CWE-125
Out-of-bounds Read 		CVE-2018-16842 2024-11-21 12:53 2018-11-1 Show GitHub Exploit DB Packet Storm
246300 9.8 CRITICAL
Network 		haxx
canonical 		curl
ubuntu_linux 		A heap use-after-free flaw was found in curl versions from 7.59.0 through 7.61.1 in the code related to closing an easy handle. When closing and cleaning up an 'easy' handle in the `Curl_close()` fun… CWE-416
 Use After Free 		CVE-2018-16840 2024-11-21 12:53 2018-11-1 Show GitHub Exploit DB Packet Storm