Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255431	4.3	警告	Mozilla Foundation	-	Mozilla Firefox などで使用される Mozilla Gecko における任意のイメージの近似コピーを取得される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2366	2011-07-13 10:06	2011-06-21	Show	GitHub Exploit DB Packet Storm

255432	10	危険	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey の WebGL 実装における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2368	2011-07-13 10:05	2011-06-21	Show	GitHub Exploit DB Packet Storm

255433	6.4	警告	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey の WebGL 実装における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2367	2011-07-13 10:04	2011-06-21	Show	GitHub Exploit DB Packet Storm

255434	2.6	注意	ISC, Inc.	-	ISC BIND 9.8 系にサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-2465	2011-07-11 14:25	2011-07-6	Show	GitHub Exploit DB Packet Storm

255435	2.6	注意	マイクロソフト	-	Internet Explorer におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2011-07-8 12:01	2011-07-8	Show	GitHub Exploit DB Packet Storm

255436	4.9	警告	アップル	-	Apple Mac OS X の kernel の IPv6 実装におけるサービス運用妨害 (Null ポインタデリファレンス、およびリブート) の脆弱性	CWE-Other その他	CVE-2011-1132	2011-07-8 10:12	2011-06-24	Show	GitHub Exploit DB Packet Storm

255437	6.4	警告	アップル	-	Apple Mac OS X の servermgrd における任意のファイルを読まれる脆弱性	CWE-399 リソース管理の問題	CVE-2011-0212	2011-07-8 10:10	2011-06-24	Show	GitHub Exploit DB Packet Storm

255438	6.8	警告	アップル	-	Apple Mac OS X の QuickLook における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0208	2011-07-7 11:34	2011-06-24	Show	GitHub Exploit DB Packet Storm

255439	5	警告	アップル	-	Apple Mac OS X の MobileMe における重要なエイリアス情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-0207	2011-07-7 11:33	2011-06-24	Show	GitHub Exploit DB Packet Storm

255440	6.8	警告	アップル	-	Apple Mac OS X の ImageIO におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0205	2011-07-7 11:30	2011-06-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248511	9.8	CRITICAL Network	microfocus	secure_messaging_gateway	A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements…	CWE-89 SQL Injection	CVE-2018-12464	2024-11-21 12:45	2018-06-30	Show	GitHub Exploit DB Packet Storm

248512	7.8	HIGH Local	polarisoffice	polaris_office_2017	Polaris Office 2017 8.1 allows attackers to execute arbitrary code via a Trojan horse puiframeworkproresenu.dll file in the current working directory.	CWE-426 Untrusted Search Path	CVE-2018-12589	2024-11-21 12:45	2018-06-28	Show	GitHub Exploit DB Packet Storm

248513	5.3	MEDIUM Network	eclipse oracle	jetty retail_xstore_point_of_service	In Eclipse Jetty Server, all 9.x versions, on webapps deployed using default Error Handling, when an intentionally bad query arrives that doesn't match a dynamic url-pattern, and is eventually handle…	NVD-CWE-noinfo	CVE-2018-12536	2024-11-21 12:45	2018-06-28	Show	GitHub Exploit DB Packet Storm

248514	8.8	HIGH Network	joomla	joomla\!	An issue was discovered in Joomla! 2.5.0 through 3.8.8 before 3.8.9. The autoload code checks classnames to be valid, using the "class_exists" function in PHP. In PHP 5.3, this function validates inv…	CWE-20 Improper Input Validation	CVE-2018-12712	2024-11-21 12:45	2018-06-27	Show	GitHub Exploit DB Packet Storm

248515	6.1	MEDIUM Network	joomla	joomla\!	An XSS issue was discovered in the language switcher module in Joomla! 1.6.0 through 3.8.8 before 3.8.9. In some cases, the link of the current language might contain unescaped HTML special character…	CWE-79 Cross-site Scripting	CVE-2018-12711	2024-11-21 12:45	2018-06-27	Show	GitHub Exploit DB Packet Storm

248516	8.8	HIGH Network	lfdycms	lfcms	Cross-site request forgery (CSRF) vulnerability in admin.php in LFCMS 3.7.0 allows remote attackers to hijack the authentication of unspecified users for requests that add administrator users via the…	CWE-352 Origin Validation Error	CVE-2018-12603	2024-11-21 12:45	2018-06-26	Show	GitHub Exploit DB Packet Storm

248517	7.5	HIGH Network	saj-electric	saj_solar_inverter	SAJ Solar Inverter allows remote attackers to obtain potentially sensitive information via a direct request for the inverter_info.htm or english_main.htm URI.	CWE-200 Information Exposure	CVE-2018-12735	2024-11-21 12:45	2018-06-26	Show	GitHub Exploit DB Packet Storm

248518	8.8	HIGH Network	lfdycms	lfcms	A CSRF vulnerability exists in LFCMS 3.7.0: users can be added arbitrarily.	CWE-352 Origin Validation Error	CVE-2018-12602	2024-11-21 12:45	2018-06-26	Show	GitHub Exploit DB Packet Storm

248519	7.5	HIGH Network	block18	block18	The approveAndCallcode function of a smart contract implementation for Block 18 (18T), an tradable Ethereum ERC20 token, allows attackers to steal assets (e.g., transfer the contract's balances into …	CWE-20 Improper Input Validation	CVE-2018-12703	2024-11-21 12:45	2018-06-25	Show	GitHub Exploit DB Packet Storm

248520	7.5	HIGH Network	gve	globalvillage_ecosystem	The approveAndCallcode function of a smart contract implementation for Globalvillage ecosystem (GVE), an Ethereum ERC20 token, allows attackers to steal assets (e.g., transfer the contract's balances…	CWE-20 Improper Input Validation	CVE-2018-12702	2024-11-21 12:45	2018-06-25	Show	GitHub Exploit DB Packet Storm