Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
254191 5 警告 opensymphony
Apache Software Foundation
- Apache Struts の XWork における重要情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-2088 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
254192 4.3 警告 Apache Software Foundation - Apache Struts の javatemplates プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-2087 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
254193 5 警告 inventivetec - MediaCAST における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-2081 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
254194 7.5 危険 inventivetec - MediaCAST における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-2080 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
254195 7.5 危険 inventivetec - MediaCAST における詳細不明な影響を受ける脆弱性 CWE-20
不適切な入力確認
CVE-2011-2079 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
254196 4.3 警告 inventivetec - MediaCAST の New Atlanta BlueDragon 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-2078 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
254197 7.5 危険 inventivetec - MediaCAST の New Atlanta BlueDragon 管理インターフェースのデフォルト設定における脆弱性 CWE-16
環境設定
CVE-2011-2077 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
254198 5 警告 inventivetec - MediaCAST における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-2076 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
254199 8.5 危険 Skype Technologies S.A. - Skype のクライアントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2074 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
254200 4.3 警告 SquirrelMail Project - SquirrelMail の functions/mime.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-2023 2012-03-27 18:43 2011-07-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
245981 6.1 MEDIUM
Network
ivanti connect_secure An XSS issue has been found with rd.cgi in Pulse Secure Pulse Connect Secure 8.3RX before 8.3R3 due to improper header sanitization. This is not applicable to 8.1RX. CWE-79
Cross-site Scripting
CVE-2018-20808 2024-11-21 13:02 2019-06-29 Show GitHub Exploit DB Packet Storm
245982 6.1 MEDIUM
Network
ivanti connect_secure An XSS issue has been found in welcome.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.1.x before 8.1R12, 8.2.x before 8.2R9, and 8.3.x before 8.3R3 due to one of the URL parameters not being saniti… CWE-79
Cross-site Scripting
CVE-2018-20807 2024-11-21 13:02 2019-06-29 Show GitHub Exploit DB Packet Storm
245983 8.8 HIGH
Network
uclouvain
debian
openjpeg
debian_linux
An improper computation of p_tx0, p_tx1, p_ty0 and p_ty1 in the function opj_get_encoding_parameters in openjp2/pi.c in OpenJPEG through 2.3.0 can lead to an integer overflow. CWE-190
 Integer Overflow or Wraparound
CVE-2018-20847 2024-11-21 13:02 2019-06-27 Show GitHub Exploit DB Packet Storm
245984 6.5 MEDIUM
Network
uclouvain openjpeg Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to caus… CWE-20
 Improper Input Validation 
CVE-2018-20846 2024-11-21 13:02 2019-06-27 Show GitHub Exploit DB Packet Storm
245985 6.5 MEDIUM
Network
uclouvain openjpeg Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (applicati… CWE-369
 Divide By Zero
CVE-2018-20845 2024-11-21 13:02 2019-06-27 Show GitHub Exploit DB Packet Storm
245986 7.5 HIGH
Network
libexpat_project
canonical
debian
fedoraproject
opensuse
oracle
tenable
libexpat
ubuntu_linux
debian_linux
fedora
leap
http_server
outside_in_technology
hospitality_res_3700
nessus
In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enoug… CWE-611
XXE
CVE-2018-20843 2024-11-21 13:02 2019-06-25 Show GitHub Exploit DB Packet Storm
245987 9.8 CRITICAL
Network
hootoo tripmate_titan_ht-tm05_firmware HooToo TripMate Titan HT-TM05 and HT-05 routers with firmware 2.000.022 and 2.000.082 allow remote command execution via shell metacharacters in the mac parameter of a protocol.csp?function=set&fname… CWE-78
OS Command 
CVE-2018-20841 2024-11-21 13:02 2019-06-12 Show GitHub Exploit DB Packet Storm
245988 9.8 CRITICAL
Network
qemu qemu In QEMU 3.1.0, load_device_tree in device_tree.c calls the deprecated load_image function, which has a buffer overflow risk. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-20815 2024-11-21 13:02 2019-06-1 Show GitHub Exploit DB Packet Storm
245989 8.6 HIGH
Network
google api_c\+\+_client An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10. It potentially causes an outage of third-party services that were not designed to recov… CWE-754
 Improper Check for Unusual or Exceptional Conditions
CVE-2018-20840 2024-11-21 13:02 2019-05-31 Show GitHub Exploit DB Packet Storm
245990 4.3 MEDIUM
Physics
systemd_project
netapp
systemd
cn1610_firmware
solidfire_\&_hci_management_node
snapprotect
systemd 242 changes the VT1 mode upon a logout, which allows attackers to read cleartext passwords in certain circumstances, such as watching a shutdown, or using Ctrl-Alt-F1 and Ctrl-Alt-F2. This oc… NVD-CWE-noinfo
CVE-2018-20839 2024-11-21 13:02 2019-05-17 Show GitHub Exploit DB Packet Storm