Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256131 4.3 警告 アップル
GNU Project
ターボリナックス
サイバートラスト株式会社
レッドハット		 - Mailman における複数のクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0564 2011-06-3 08:55 2008-02-5 Show GitHub Exploit DB Packet Storm
256132 10 危険 7-Technologies - 7-Technologies Interactive Graphical SCADA System の IGSSdataServer.exe におけるスタックベースのオーバーフロー脆弱性 CWE-119
バッファエラー 		CVE-2011-1567 2011-06-2 09:51 2011-04-5 Show GitHub Exploit DB Packet Storm
256133 10 危険 7-Technologies - 7-Technologies Interactive Graphical SCADA System の dc.exe におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-1566 2011-06-2 09:50 2011-04-5 Show GitHub Exploit DB Packet Storm
256134 10 危険 7-Technologies - 7-Technologies Interactive Graphical SCADA System の IGSSdataServer.exe におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-1565 2011-06-2 09:48 2011-04-5 Show GitHub Exploit DB Packet Storm
256135 10 危険 RealFlex Technologies - DATAC RealFlex RealWin の HMI アプリケーションにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1564 2011-06-2 09:47 2011-04-5 Show GitHub Exploit DB Packet Storm
256136 10 危険 RealFlex Technologies - DATAC RealFlex RealWin の HMI アプリケーションにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1563 2011-06-2 09:46 2011-04-5 Show GitHub Exploit DB Packet Storm
256137 4.7 警告 レッドハット
Richard W.M. Jones		 - virt-v2v および virt-inspector などの製品に使用される libguestfs におけるホスト OS 上のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2010-3851 2011-06-1 10:25 2010-11-4 Show GitHub Exploit DB Packet Storm
256138 4.4 警告 Todd C. Miller
レッドハット		 - sudo の check.c における認証要求を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0010 2011-05-31 11:41 2011-01-18 Show GitHub Exploit DB Packet Storm
256139 - - SmarterTools Inc. - SmarterTools 製ウェブサーバに複数の脆弱性 - - 2011-05-31 11:40 2011-05-19 Show GitHub Exploit DB Packet Storm
256140 - - OpenSSL Project - OpenSSL における ECDSA 秘密鍵が漏えいしてしまう問題 - - 2011-05-31 11:23 2011-05-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246171 8.8 HIGH
Network 		netgate pfsense An authenticated command injection vulnerability exists in status_interfaces.php via dhcp_relinquish_lease() in pfSense before 2.4.4 due to its passing user input from the $_POST parameters "ifdescr"… CWE-78
OS Command  		CVE-2018-16055 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm
246172 8.1 HIGH
Network 		zohocorp manageengine_applications_manager A serialization vulnerability in Zoho ManageEngine Applications Manager before build 13740 allows for remote code execution on Windows via a payload on an SMB share. CWE-502
 Deserialization of Untrusted Data 		CVE-2018-16364 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm
246173 7.5 HIGH
Network 		strongswan
debian
canonical 		strongswan
debian_linux
ubuntu_linux 		In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorit… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2018-16152 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm
246174 7.5 HIGH
Network 		strongswan
debian
canonical 		strongswan
debian_linux
ubuntu_linux 		In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded al… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2018-16151 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm
246175 7.5 HIGH
Network 		localize_my_post_project localize_my_post The Localize My Post plugin 1.0 for WordPress allows Directory Traversal via the ajax/include.php file parameter. CWE-22
Path Traversal 		CVE-2018-16299 2024-11-21 12:52 2018-09-25 Show GitHub Exploit DB Packet Storm
246176 9.8 CRITICAL
Network 		wechat_brodcast_project wechat_brodcast The Wechat Broadcast plugin 1.2.0 and earlier for WordPress allows Directory Traversal via the Image.php url parameter. CWE-22
Path Traversal 		CVE-2018-16283 2024-11-21 12:52 2018-09-25 Show GitHub Exploit DB Packet Storm
246177 9.8 CRITICAL
Network 		deiser profields-project_custom_fields The DEISER "Profields - Project Custom Fields" app before 6.0.2 for Jira has Incorrect Access Control. NVD-CWE-noinfo
CVE-2018-16281 2024-11-21 12:52 2018-09-22 Show GitHub Exploit DB Packet Storm
246178 8.8 HIGH
Network 		moxa edr-810_firmware A command injection vulnerability in the web server functionality of Moxa EDR-810 V4.2 build 18041013 allows remote attackers to execute arbitrary OS commands with root privilege via the caname param… CWE-78
OS Command  		CVE-2018-16282 2024-11-21 12:52 2018-09-21 Show GitHub Exploit DB Packet Storm
246179 8.8 HIGH
Network 		matrix
debian 		synapse
debian_linux 		Matrix Synapse before 0.33.3.1 allows remote attackers to spoof events and possibly have unspecified other impacts by leveraging improper transaction and event signature validation. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2018-16515 2024-11-21 12:52 2018-09-19 Show GitHub Exploit DB Packet Storm
246180 6.5 MEDIUM
Adjacent 		qbeecam
swisscom 		qbee_multi-sensor_camera_firmware
swisscom_home_app
qbeecam 		The QBee MultiSensor Camera through 4.16.4 accepts unencrypted network traffic from clients (such as the QBee Cam application through 1.0.5 for Android and the Swisscom Home application up to 10.7.2 … CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2018-16225 2024-11-21 12:52 2018-09-19 Show GitHub Exploit DB Packet Storm