Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 24, 2026, 12:02 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 256061 | 7.5 | 危険 | BST | - | BestShopPro の pokaz_podkat.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-4811 | 2011-12-16 15:28 | 2011-12-14 | Show | GitHub Exploit DB Packet Storm |
| 256062 | 5 | 警告 | WHMCS Limited | - | WHMCS におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4810 | 2011-12-16 15:27 | 2011-12-14 | Show | GitHub Exploit DB Packet Storm |
| 256063 | 5 | 警告 | phpAlbum | - | phpAlbum の main.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4807 | 2011-12-16 15:23 | 2011-12-14 | Show | GitHub Exploit DB Packet Storm |
| 256064 | 4.3 | 警告 | phpAlbum | - | phpAlbum の main.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4806 | 2011-12-16 15:20 | 2011-12-14 | Show | GitHub Exploit DB Packet Storm |
| 256065 | 4.3 | 警告 | SAP | - | SAP Crystal Report Server の pubDBLogon.jsp におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-4805 | 2011-12-16 15:18 | 2011-12-14 | Show | GitHub Exploit DB Packet Storm |
| 256066 | 7.5 | 危険 | Authenex | - | ASAS Server 上の Authenex Web Management Control における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2011-4801 | 2011-12-16 15:16 | 2011-09-16 | Show | GitHub Exploit DB Packet Storm |
| 256067 | 9 | 危険 | Rhino Software | - | Serv-U FTP サーバにおけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2011-4800 | 2011-12-16 15:15 | 2011-12-14 | Show | GitHub Exploit DB Packet Storm |
| 256068 | 4.3 | 警告 | マイクロソフト | - | Microsoft Internet Explorer におけるコンテンツを読まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2011-3404 | 2011-12-16 11:52 | 2011-12-13 | Show | GitHub Exploit DB Packet Storm |
| 256069 | 9.3 | 危険 | マイクロソフト | - | Windows 2008 および Windows 7 上で稼働する Microsoft Internet Explorer 9 における権限昇格の脆弱性 |
CWE-Other
その他 |
CVE-2011-2019 | 2011-12-16 11:50 | 2011-12-13 | Show | GitHub Exploit DB Packet Storm |
| 256070 | 7.2 | 危険 | マイクロソフト | - | 複数の Microsoft Windows のカーネルにおける権限昇格の脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-2018 | 2011-12-16 11:49 | 2011-12-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 24, 2026, 4 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 245681 | 6.1 |
MEDIUM
Network |
control-webpanel | webpanel | CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows XSS via the admin/index.php module parameter. |
CWE-79
Cross-site Scripting |
CVE-2018-18774 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245682 | 8.8 |
HIGH
Network |
control-webpanel | webpanel | CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows CSRF via admin/index.php?module=rootpwd, as demonstrated by changing the root password. |
CWE-352
Origin Validation Error |
CVE-2018-18773 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245683 | 8.8 |
HIGH
Network |
control-webpanel | webpanel | CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows CSRF via admin/index.php?module=send_ssh, as demonstrated by executing an arbitrary OS command. |
CWE-352
Origin Validation Error |
CVE-2018-18772 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245684 | 6.1 |
MEDIUM
Network |
zohocorp | manageengine_opmanager | Zoho ManageEngine OpManager 12.3 before 123219 has a Self XSS Vulnerability. |
CWE-79
Cross-site Scripting |
CVE-2018-18716 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245685 | 6.1 |
MEDIUM
Network |
zohocorp | manageengine_opmanager | Zoho ManageEngine OpManager 12.3 before 123219 has stored XSS. |
CWE-79
Cross-site Scripting |
CVE-2018-18715 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245686 | 7.4 |
HIGH
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_pro_ii_firmware |
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, and… |
NVD-CWE-noinfo
|
CVE-2018-18564 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245687 | 6.8 |
MEDIUM
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_pro_ii_firmware coaguchek_xs_plus_firmware coaguchek_xs_pro_firmware |
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, Coa… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2018-18565 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245688 | 9.6 |
CRITICAL
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_pro_ii_firmware coaguchek_xs_plus_firmware coaguchek_xs_pro_firmware |
An issue was discovered in Roche Accu-Chek Inform II Instrument before 03.06.00 (Serial number below 14000) and 04.x before 04.03.00 (Serial Number above 14000), CoaguChek Pro II before 04.03.00, Coa… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2018-18563 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245689 | 8.8 |
HIGH
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_firmware base_unit_hub_firmware |
An issue was discovered in Roche Accu-Chek Inform II Base Unit / Base Unit Hub before 03.01.04 and CoaguChek / cobas h232 Handheld Base Unit before 03.01.04. Weak access credentials may enable attack… |
CWE-521
Weak Password Requirements |
CVE-2018-18562 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |
| 245690 | 8.0 |
HIGH
Adjacent |
roche |
accu-chek_inform_ii_firmware cobas_h_232_firmware coaguchek_firmware base_unit_hub_firmware |
An issue was discovered in Roche Accu-Chek Inform II Base Unit / Base Unit Hub before 03.01.04 and CoaguChek / cobas h232 Handheld Base Unit before 03.01.04. Insecure permissions in a service interfa… |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2018-18561 | 2024-11-21 12:56 | 2018-11-21 | Show | GitHub Exploit DB Packet Storm |