Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255491 6.2 警告 サイバートラスト株式会社
VMware
Todd C. Miller
レッドハット		 - sudo における権限昇格の脆弱性 CWE-DesignError
CVE-2010-2956 2011-01-14 14:44 2010-09-7 Show GitHub Exploit DB Packet Storm
255492 - - GNU Project
VMware
サイバートラスト株式会社
レッドハット		 - glibc に権限昇格の脆弱性 - CVE-2010-3847 2011-01-14 14:42 2010-10-26 Show GitHub Exploit DB Packet Storm
255493 7.8 危険 マイクロソフト
アドビシステムズ
日本電気		 - Microsoft Visual Studio の ATL における終端文字列の処理に関する重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-2495 2011-01-14 14:33 2009-07-28 Show GitHub Exploit DB Packet Storm
255494 9.3 危険 サン・マイクロシステムズ
アドビシステムズ
日本電気
マイクロソフト
OpenOffice.org Project		 - Microsoft Visual Studio の ATL におけるオブジェクトのインスタンス化処理に関する任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2493 2011-01-14 14:32 2009-07-28 Show GitHub Exploit DB Packet Storm
255495 9.3 危険 マイクロソフト
アドビシステムズ
日本電気		 - Microsoft Visual Studio の ATL における未初期化オブジェクト処理に関する任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0901 2011-01-14 14:31 2009-07-28 Show GitHub Exploit DB Packet Storm
255496 6.9 警告 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3957 2011-01-13 16:22 2010-12-14 Show GitHub Exploit DB Packet Storm
255497 9.3 危険 マイクロソフト - Microsoft Windows の OpenType Font ドライバにおける権限昇格の脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3956 2011-01-13 16:19 2010-12-14 Show GitHub Exploit DB Packet Storm
255498 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3346 2011-01-13 16:15 2010-12-14 Show GitHub Exploit DB Packet Storm
255499 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3345 2011-01-13 16:11 2010-12-14 Show GitHub Exploit DB Packet Storm
255500 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3343 2011-01-13 15:48 2010-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246681 9.8 CRITICAL
Network 		zohocorp manageengine_desktop_central An issue was discovered in Zoho ManageEngine Desktop Central before 100251. By leveraging access to a log file, a context-dependent attacker can obtain (depending on the modules configured) the Base6… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2018-11717 2024-11-21 12:43 2018-07-16 Show GitHub Exploit DB Packet Storm
246682 8.0 HIGH
Adjacent 		debian
videolan 		debian_linux
vlc_media_player 		VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result i… CWE-416
 Use After Free 		CVE-2018-11529 2024-11-21 12:43 2018-07-12 Show GitHub Exploit DB Packet Storm
246683 6.1 MEDIUM
Network 		siemens teamcenter_product_lifecycle_management A reflected Cross-Site-Scripting (XSS) vulnerability has been identified in Siemens PLM Software TEAMCENTER (V9.1.2.5). If a user visits the login portal through the URL crafted by the attacker, the … CWE-79
Cross-site Scripting 		CVE-2018-11450 2024-11-21 12:43 2018-07-10 Show GitHub Exploit DB Packet Storm
246684 7.5 HIGH
Network 		ribboncommunications sonus_sbc_1000_firmware
sonus_sbc_2000_firmware
sbc_swe_lite_firmware 		A Local File Inclusion (LFI) vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows for the downloading of arbitrary files via an unspecified vector. It affects the 1000 a… CWE-22
Path Traversal 		CVE-2018-11543 2024-11-21 12:43 2018-07-9 Show GitHub Exploit DB Packet Storm
246685 9.8 CRITICAL
Network 		ribboncommunications sonus_sbc_1000_firmware
sonus_sbc_2000_firmware
sbc_swe_lite_firmware 		A Remote Command Execution (RCE) vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows for the execution of arbitrary commands via an unspecified vector. It affects the 1… NVD-CWE-noinfo
CVE-2018-11542 2024-11-21 12:43 2018-07-9 Show GitHub Exploit DB Packet Storm
246686 9.8 CRITICAL
Network 		ribboncommunications sonus_sbc_1000_firmware
sonus_sbc_2000_firmware
sbc_swe_lite_web 		A root privilege escalation vulnerability in the Sonus SBC 1000 / SBC 2000 / SBC SWe Lite web interface allows unauthorised access to privileged content via an unspecified vector. It affects the 1000… CWE-862
 Missing Authorization 		CVE-2018-11541 2024-11-21 12:43 2018-07-9 Show GitHub Exploit DB Packet Storm
246687 6.1 MEDIUM
Network 		jirafeau jirafeau script.php in Jirafeau before 3.4.1 is affected by two stored Cross-Site Scripting (XSS) vulnerabilities. These are stored within the shared files description file and allow the execution of a JavaSc… CWE-79
Cross-site Scripting 		CVE-2018-11351 2024-11-21 12:43 2018-07-8 Show GitHub Exploit DB Packet Storm
246688 6.1 MEDIUM
Network 		jirafeau jirafeau An issue was discovered in Jirafeau before 3.4.1. The file "search by name" form is affected by one Cross-Site Scripting vulnerability via the name parameter. CWE-79
Cross-site Scripting 		CVE-2018-11350 2024-11-21 12:43 2018-07-8 Show GitHub Exploit DB Packet Storm
246689 8.8 HIGH
Network 		jirafeau jirafeau The administration panel of Jirafeau before 3.4.1 is vulnerable to three CSRF attacks on search functionalities: search_by_name, search_by_hash, and search_link. CWE-352
 Origin Validation Error 		CVE-2018-11349 2024-11-21 12:43 2018-07-8 Show GitHub Exploit DB Packet Storm
246690 7.8 HIGH
Local 		google android Possible buffer overflow in msm_adsp_stream_callback_put due to lack of input validation of user-provided data that leads to integer overflow in all Android releases(Android for MSM, Firefox OS for M… CWE-190
 Integer Overflow or Wraparound 		CVE-2018-11304 2024-11-21 12:43 2018-07-7 Show GitHub Exploit DB Packet Storm