Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255921 5 警告 オラクル - Oracle MySQL の MySQL Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-2262 2012-01-23 11:03 2012-01-17 Show GitHub Exploit DB Packet Storm
255922 5.5 警告 オラクル - Oracle MySQL の MySQL Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2012-0113 2012-01-23 11:03 2012-01-17 Show GitHub Exploit DB Packet Storm
255923 2.1 注意 オラクル - Oracle Communications Unified における Calendar Server の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3570 2012-01-23 10:59 2012-01-17 Show GitHub Exploit DB Packet Storm
255924 3.3 注意 オラクル - Oracle Communications Unified における Calendar Server の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3574 2012-01-23 10:58 2012-01-17 Show GitHub Exploit DB Packet Storm
255925 4 警告 オラクル - Oracle Communications Unified における Calendar Server の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3573 2012-01-23 10:58 2012-01-17 Show GitHub Exploit DB Packet Storm
255926 4.6 警告 オラクル - Oracle Communications Unified における Calendar Server の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3565 2012-01-23 10:56 2012-01-17 Show GitHub Exploit DB Packet Storm
255927 2.1 注意 オラクル - Oracle GlassFish Enterprise Server における認証の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3564 2012-01-23 10:42 2012-01-17 Show GitHub Exploit DB Packet Storm
255928 3.7 注意 オラクル - Oracle GlassFish Server における認証の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0081 2012-01-23 10:33 2012-01-17 Show GitHub Exploit DB Packet Storm
255929 5 警告 オラクル - Oracle GlassFish Server における Web Container の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0104 2012-01-23 10:32 2012-01-17 Show GitHub Exploit DB Packet Storm
255930 1.9 注意 オラクル - Oracle Solaris における Kernel の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-0098 2012-01-23 10:25 2012-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
245811 8.8 HIGH
Network 		libming libming libming 0.4.8 has a NULL pointer dereference in the pushdup function of the decompile.c file. CWE-476
 NULL Pointer Dereference 		CVE-2018-20425 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245812 5.9 MEDIUM
Network 		comsenz discuzx Discuz! DiscuzX 3.4, when WeChat login is enabled, allows remote attackers to delete the common_member_wechatmp data structure via an ac=unbindmp request to plugin.php. CWE-20
 Improper Input Validation  		CVE-2018-20424 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245813 8.1 HIGH
Network 		comsenz discuzx Discuz! DiscuzX 3.4, when WeChat login is enabled, allows remote attackers to bypass a "disabled registration" setting by adding a non-existing wxopenid value to the plugin.php ac=wxregister query st… NVD-CWE-noinfo
CVE-2018-20423 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245814 8.1 HIGH
Network 		comsenz discuzx Discuz! DiscuzX 3.4, when WeChat login is enabled, allows remote attackers to bypass authentication by leveraging a non-empty #wechat#common_member_wechatmp to gain login access to an account via a p… CWE-287
Improper Authentication 		CVE-2018-20422 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245815 4.8 MEDIUM
Network 		craftcms craft_cms index.php?p=admin/actions/entries/save-entry in Craft CMS 3.0.25 allows XSS by saving a new title from the console tab. CWE-79
Cross-site Scripting 		CVE-2018-20418 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245816 7.5 HIGH
Network 		ethereum go_ethereum Go Ethereum (aka geth) 1.8.19 allows attackers to cause a denial of service (memory consumption) by rewriting the length of a dynamic array in memory, and then writing data to a single memory locatio… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2018-20421 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245817 4.9 MEDIUM
Network 		weberp weberp In webERP 4.15, Z_CreateCompanyTemplateFile.php has Incorrect Access Control, leading to the overwrite of an existing .sql file on the target web site by creating a template and then using ../ direct… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-20420 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245818 8.8 HIGH
Network 		douco douphp DouCo DouPHP 1.5 has upload/admin/manager.php?rec=insert CSRF to add an administrator account. CWE-352
 Origin Validation Error 		CVE-2018-20419 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245819 7.5 HIGH
Network 		wellintech kingscada WellinTech KingSCADA before 3.7.0.0.1 contains a stack-based buffer overflow. The vulnerability is triggered when sending a specially crafted packet to the AlarmServer (AEserver.exe) service listenin… CWE-787
 Out-of-bounds Write 		CVE-2018-20410 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm
245820 6.5 MEDIUM
Network 		axiosys bento4 An issue was discovered in Bento4 1.5.1-627. There is a heap-based buffer over-read in AP4_AvccAtom::Create in Core/Ap4AvccAtom.cpp, as demonstrated by mp42hls. CWE-125
Out-of-bounds Read 		CVE-2018-20409 2024-11-21 13:01 2018-12-24 Show GitHub Exploit DB Packet Storm