Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
255651 7.5 危険 vlinks - Vlinks の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-5091 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
255652 6.8 警告 daman371 - Bloggeruniverse の editcomments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-5090 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
255653 4.3 警告 ideacart - IdeaCart の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-5089 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
255654 7.5 危険 ideacart - IdeaCart 0.02 の secure/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2009-5088 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
255655 5 警告 GeoVision - Geovision Digital Video Surveillance System の geohttpserver におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2009-5087 2012-03-27 18:42 2011-09-12 Show GitHub Exploit DB Packet Storm
255656 2.6 注意 IBM - IBM TFIM における信頼制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2009-5085 2012-03-27 18:42 2011-08-12 Show GitHub Exploit DB Packet Storm
255657 1.9 注意 IBM - IBM TFIM における重要な情報を取得される脆弱性 CWE-310
暗号の問題
CVE-2009-5084 2012-03-27 18:42 2011-08-12 Show GitHub Exploit DB Packet Storm
255658 6.8 警告 IBM - IBM TFIM における認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2009-5083 2012-03-27 18:42 2011-08-12 Show GitHub Exploit DB Packet Storm
255659 3.3 注意 GNU Project - GNU troff の configure などのスクリプトにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題
CVE-2009-5082 2012-03-27 18:42 2011-06-30 Show GitHub Exploit DB Packet Storm
255660 3.3 注意 GNU Project - GNU troff の config.guess などのスクリプトにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題
CVE-2009-5081 2012-03-27 18:42 2011-06-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248241 9.8 CRITICAL
Network
tibco jasperreports_server
jaspersoft_reporting_and_analytics
jaspersoft
The REST API component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS wit… CWE-863
 Incorrect Authorization
CVE-2018-18815 2024-11-21 12:56 2019-03-8 Show GitHub Exploit DB Packet Storm
248242 6.5 MEDIUM
Network
tibco jasperreports_server
jasperreports_library
jaspersoft_reporting_and_analytics
jaspersoft
The default server implementation of TIBCO Software Inc.'s TIBCO JasperReports Library, TIBCO JasperReports Library Community Edition, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperRe… CWE-22
Path Traversal
CVE-2018-18809 2024-11-21 12:56 2019-03-8 Show GitHub Exploit DB Packet Storm
248243 7.5 HIGH
Network
tibco jasperreports_server
jaspersoft_reporting_and_analytics
jaspersoft
The domain management component of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft fo… CWE-362
Race Condition
CVE-2018-18808 2024-11-21 12:56 2019-03-8 Show GitHub Exploit DB Packet Storm
248244 6.5 MEDIUM
Network
mozilla firefox
thunderbird
firefox_esr
A same-origin policy violation allowing the theft of cross-origin URL entries when using a meta http-equiv="refresh" on a page to cause a redirection to another site using performance.getEntries(). T… CWE-346
 Origin Validation Error
CVE-2018-18499 2024-11-21 12:56 2019-03-1 Show GitHub Exploit DB Packet Storm
248245 6.5 MEDIUM
Network
mozilla
canonical
firefox
ubuntu_linux
Limitations on the URIs allowed to WebExtensions by the browser.windows.create API can be bypassed when a pipe in the URL field is used within the extension to load multiple pages as a single argumen… NVD-CWE-noinfo
CVE-2018-18497 2024-11-21 12:56 2019-03-1 Show GitHub Exploit DB Packet Storm
248246 8.8 HIGH
Network
mozilla firefox When the RSS Feed preview about:feeds page is framed within another page, it can be used in concert with scripted content for a clickjacking attack that confuses users into downloading and executing … CWE-1021
 Improper Restriction of Rendered UI Layers or Frames
CVE-2018-18496 2024-11-21 12:56 2019-03-1 Show GitHub Exploit DB Packet Storm
248247 9.8 CRITICAL
Network
mozilla
debian
canonical
redhat
firefox
firefox_esr
thunderbird
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterpri…
A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when a raw value is used instead of the checked value. This leads to a possible out-of-bo… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound
CVE-2018-18498 2024-11-21 12:56 2019-03-1 Show GitHub Exploit DB Packet Storm
248248 6.5 MEDIUM
Network
mozilla
canonical
firefox
ubuntu_linux
WebExtension content scripts can be loaded into about: pages in some circumstances, in violation of the permissions granted to extensions. This could allow an extension to interfere with the loading … CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-18495 2024-11-21 12:56 2019-03-1 Show GitHub Exploit DB Packet Storm
248249 6.5 MEDIUM
Network
mozilla
debian
canonical
redhat
firefox
thunderbird
firefox_esr
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterpri…
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause a redirection to another site using performance.getEntries(). This i… CWE-346
 Origin Validation Error
CVE-2018-18494 2024-11-21 12:56 2019-03-1 Show GitHub Exploit DB Packet Storm
248250 9.8 CRITICAL
Network
mozilla
debian
canonical
redhat
firefox
thunderbird
firefox_esr
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterpri…
A buffer overflow can occur in the Skia library during buffer offset calculations with hardware accelerated canvas 2D actions due to the use of 32-bit calculations instead of 64-bit. This results in … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-18493 2024-11-21 12:56 2019-03-1 Show GitHub Exploit DB Packet Storm