Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254771 7.8 危険 Apache Software Foundation - Apache Geronimo におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5034 2012-01-4 16:47 2011-12-30 Show GitHub Exploit DB Packet Storm
254772 7.8 危険 JRuby - JRuby におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4838 2012-01-4 16:43 2011-12-28 Show GitHub Exploit DB Packet Storm
254773 5 警告 Plone Foundation - Plone におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4462 2012-01-4 16:38 2011-12-30 Show GitHub Exploit DB Packet Storm
254774 9.3 危険 マイクロソフト - Microsoft .NET Framework における任意のユーザアカウントへアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3417 2012-01-4 16:34 2011-12-29 Show GitHub Exploit DB Packet Storm
254775 8.5 危険 マイクロソフト - Microsoft .NET Framework における任意のユーザアカウントへアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3416 2012-01-4 16:33 2011-12-29 Show GitHub Exploit DB Packet Storm
254776 9.3 危険 Google
Hex-Rays		 - IDA Pro の IDAPython プラグインにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4783 2011-12-28 16:47 2011-07-27 Show GitHub Exploit DB Packet Storm
254777 7.2 危険 NVIDIA - NVIDIA Stereoscopic 3D ドライバにおける権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4784 2011-12-28 16:44 2011-12-27 Show GitHub Exploit DB Packet Storm
254778 4.3 警告 WP Symposium - WordPress 用の WP Symposium プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3841 2011-12-28 16:40 2011-12-7 Show GitHub Exploit DB Packet Storm
254779 7.8 危険 IBM - IBM Lotus Domino の認証機能におけるサービス運用妨害 (DoS) 状態となる脆弱性 CWE-noinfo
情報不足 		CVE-2011-1393 2011-12-28 16:40 2011-12-27 Show GitHub Exploit DB Packet Storm
254780 5.5 警告 zFTPServer - zFTPServer Suite におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4717 2011-12-28 16:31 2011-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246321 5.4 MEDIUM
Network 		fedoraproject
redhat 		sssd
enterprise_linux 		A flaw was found in sssd Group Policy Objects implementation. When the GPO is not readable by SSSD due to a too strict permission settings on the server side, SSSD will allow all authenticated users … CWE-269
 Improper Privilege Management 		CVE-2018-16838 2024-11-21 12:53 2019-03-26 Show GitHub Exploit DB Packet Storm
246322 5.4 MEDIUM
Network 		printeron printeron PrinterOn Enterprise 4.1.4 suffers from multiple authenticated stored XSS vulnerabilities via the (1) "Machine Host Name" or "Server Serial Number" field in the clustering configuration, (2) "name" f… CWE-79
Cross-site Scripting 		CVE-2018-17167 2024-11-21 12:53 2019-03-22 Show GitHub Exploit DB Packet Storm
246323 7.5 HIGH
Network 		shellinabox_project shellinabox libhttp/url.c in shellinabox through 2.20 has an implementation flaw in the HTTP request parsing logic. By sending a crafted multipart/form-data HTTP request, an attacker could exploit this to force … CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2018-16789 2024-11-21 12:53 2019-03-22 Show GitHub Exploit DB Packet Storm
246324 9.8 CRITICAL
Network 		dolibarr dolibarr An issue was discovered in Dolibarr through 7.0.0. expensereport/card.php in the expense reports module allows SQL injection via the integer parameters qty and value_unit. CWE-89
SQL Injection 		CVE-2018-16809 2024-11-21 12:53 2019-03-8 Show GitHub Exploit DB Packet Storm
246325 6.1 MEDIUM
Network 		dolibarr dolibarr An issue was discovered in Dolibarr through 7.0.0. There is Stored XSS in expensereport/card.php in the expense reports plugin via the comments parameter, or a public or private note. CWE-79
Cross-site Scripting 		CVE-2018-16808 2024-11-21 12:53 2019-03-8 Show GitHub Exploit DB Packet Storm
246326 6.1 MEDIUM
Network 		ucms_project ucms An issue was discovered in UCMS 1.4.6. There is XSS in the title bar, as demonstrated by a do=list request. CWE-79
Cross-site Scripting 		CVE-2018-16804 2024-11-21 12:53 2019-03-8 Show GitHub Exploit DB Packet Storm
246327 7.5 HIGH
Network 		haxx
canonical
debian
netapp
siemens
oracle
redhat
f5 		libcurl
ubuntu_linux
debian_linux
clustered_data_ontap
sinema_remote_connect_client
http_server
secure_global_desktop
communications_operations_monitor
enterprise_linux
big… 		libcurl versions from 7.36.0 to before 7.64.0 is vulnerable to a heap buffer out-of-bounds read. The function handling incoming NTLM type-2 messages (`lib/vauth/ntlm.c:ntlm_decode_type2_target`) does… CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2018-16890 2024-11-21 12:53 2019-02-7 Show GitHub Exploit DB Packet Storm
246328 7.0 HIGH
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		A flaw was found in the Linux kernel's handle_rx() function in the [vhost_net] driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds write in a kmalloc-8 slab on … CWE-787
 Out-of-bounds Write 		CVE-2018-16880 2024-11-21 12:53 2019-01-30 Show GitHub Exploit DB Packet Storm
246329 7.5 HIGH
Network 		redhat ceph Ceph does not properly sanitize encryption keys in debug logging for v4 auth. This results in the leaking of encryption key information in log files via plaintext. Versions up to v13.2.4 are vulnerab… - CVE-2018-16889 2024-11-21 12:53 2019-01-28 Show GitHub Exploit DB Packet Storm
246330 7.5 HIGH
Network 		rsyslog
redhat
debian 		rsyslog
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_for_scientific_computing
enterprise_linux_server
enterprise_linux_for_power_little_endian
enterprise_l… 		A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions befo… CWE-190
 Integer Overflow or Wraparound 		CVE-2018-16881 2024-11-21 12:53 2019-01-26 Show GitHub Exploit DB Packet Storm