Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254391 5 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3911 2011-12-16 16:01 2011-12-13 Show GitHub Exploit DB Packet Storm
254392 5 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3910 2011-12-16 15:58 2011-12-13 Show GitHub Exploit DB Packet Storm
254393 5 警告 Google - Google Chrome の PDF パーサーにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3906 2011-12-16 15:54 2011-12-13 Show GitHub Exploit DB Packet Storm
254394 7.5 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3904 2011-12-16 15:53 2011-12-13 Show GitHub Exploit DB Packet Storm
254395 5 警告 Google - Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3903 2011-12-16 15:42 2011-12-13 Show GitHub Exploit DB Packet Storm
254396 5 警告 WHMCS Limited - WHMCS の clientarea.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4813 2011-12-16 15:31 2011-12-14 Show GitHub Exploit DB Packet Storm
254397 4.3 警告 BST - BestShopPro の nowosci.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4812 2011-12-16 15:28 2011-12-14 Show GitHub Exploit DB Packet Storm
254398 7.5 危険 BST - BestShopPro の pokaz_podkat.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4811 2011-12-16 15:28 2011-12-14 Show GitHub Exploit DB Packet Storm
254399 5 警告 WHMCS Limited - WHMCS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4810 2011-12-16 15:27 2011-12-14 Show GitHub Exploit DB Packet Storm
254400 5 警告 phpAlbum - phpAlbum の main.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4807 2011-12-16 15:23 2011-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246211 7.8 HIGH
Local 		micco unlha32.dll Untrusted search path vulnerability in Self-Extracting Archives created by UNLHA32.DLL prior to Ver 3.00 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2018-16189 2024-11-21 12:52 2019-02-14 Show GitHub Exploit DB Packet Storm
246212 7.5 HIGH
Network 		static-resource-server_project static-resource-server A path traversal vulnerability was found in module static-resource-server 1.7.2 that allows unauthorized read access to any file on the server by appending slashes in the URL. CWE-22
Path Traversal 		CVE-2018-16493 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm
246213 9.8 CRITICAL
Network 		extend_project extend A prototype pollution vulnerability was found in module extend <2.0.2, ~<3.0.2 that allows an attacker to inject arbitrary properties onto Object.prototype. CWE-74
Injection 		CVE-2018-16492 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm
246214 9.8 CRITICAL
Network 		dreamerslab node.extend A prototype pollution vulnerability was found in node.extend <1.1.7, ~<2.0.1 that allows an attacker to inject arbitrary properties onto Object.prototype. CWE-74
Injection 		CVE-2018-16491 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm
246215 7.5 HIGH
Network 		mpath_project mpath A prototype pollution vulnerability was found in module mpath <0.5.1 that allows an attacker to inject arbitrary properties onto Object.prototype. CWE-74
Injection 		CVE-2018-16490 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm
246216 9.8 CRITICAL
Network 		just-extend_project just-extend A prototype pollution vulnerability was found in just-extend <4.0.0 that allows attack to inject properties onto Object.prototype through its functions. CWE-74
Injection 		CVE-2018-16489 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm
246217 5.6 MEDIUM
Network 		lodash lodash A prototype pollution vulnerability was found in lodash <4.17.11 where the functions merge, mergeWith, and defaultsDeep can be tricked into adding or modifying properties of Object.prototype. NVD-CWE-noinfo
CVE-2018-16487 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm
246218 9.8 CRITICAL
Network 		defaults-deep_project defaults-deep A prototype pollution vulnerability was found in defaults-deep <=0.2.4 that would allow a malicious user to inject properties onto Object.prototype. CWE-74
Injection 		CVE-2018-16486 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm
246219 6.5 MEDIUM
Network 		m-server_project m-server Path Traversal vulnerability in module m-server <1.4.1 allows malicious user to access unauthorized content of any file in the directory tree e.g. /etc/passwd by appending slashes to the URL request. CWE-22
Path Traversal 		CVE-2018-16485 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm
246220 5.4 MEDIUM
Network 		m-server_project m-server A XSS vulnerability was found in module m-server <1.4.2 that allows malicious Javascript code or HTML to be executed, due to the lack of escaping for special characters in folder names. CWE-79
Cross-site Scripting 		CVE-2018-16484 2024-11-21 12:52 2019-02-2 Show GitHub Exploit DB Packet Storm