Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256261 4.3 警告 Zenphoto - Zenphoto の zp-core/admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4907 2012-02-9 11:18 2011-10-8 Show GitHub Exploit DB Packet Storm
256262 7.5 危険 Zenphoto - Zenphoto の zp-core/full-image.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4906 2012-02-9 11:12 2011-10-8 Show GitHub Exploit DB Packet Storm
256263 7.5 危険 SoftbizScripts - Softbiz Article Directory Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4905 2012-02-9 11:12 2011-10-8 Show GitHub Exploit DB Packet Storm
256264 7.5 危険 DrBenHur - DBHcms の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4869 2012-02-9 11:10 2011-10-5 Show GitHub Exploit DB Packet Storm
256265 4.3 警告 W-Agora - W-Agora の search.php3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4868 2012-02-9 11:10 2011-10-5 Show GitHub Exploit DB Packet Storm
256266 7.5 危険 W-Agora - W-Agora の search.php3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4867 2012-02-9 11:10 2011-10-5 Show GitHub Exploit DB Packet Storm
256267 7.5 危険 Chipmunk Scripts - Chipmunk Board の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4866 2012-02-9 11:09 2011-10-5 Show GitHub Exploit DB Packet Storm
256268 7.5 危険 Jextensions - Joomla! 用 JE Guestbook (com_jeguestbook) コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4865 2012-02-9 11:08 2011-10-5 Show GitHub Exploit DB Packet Storm
256269 7.5 危険 Daniel James Scott - Joomla! 用 Club Manager (com_clubmanager) コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4864 2012-02-9 11:08 2011-10-5 Show GitHub Exploit DB Packet Storm
256270 4.3 警告 The GetSimple Team - GetSimple CMS の admin/changedata.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4863 2012-02-9 11:07 2011-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
245831 9.8 CRITICAL
Network 		xerox workcentre_3655i_firmware
workcentre_3655_firmware
workcentre_5890i_firmware
workcentre_5865i_firmware
workcentre_5875i_firmware
workcentre_5845_firmware
workcentre_5865_firmware 		An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An … CWE-94
Code Injection 		CVE-2018-20768 2024-11-21 13:02 2019-02-11 Show GitHub Exploit DB Packet Storm
245832 8.8 HIGH
Network 		xerox workcentre_3655i_firmware
workcentre_3655_firmware
workcentre_5890i_firmware
workcentre_5865i_firmware
workcentre_5875i_firmware
workcentre_5845_firmware
workcentre_5865_firmware 		An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. The… CWE-20
 Improper Input Validation  		CVE-2018-20767 2024-11-21 13:02 2019-02-11 Show GitHub Exploit DB Packet Storm
245833 9.8 CRITICAL
Network 		helpsystems boks A buffer overflow exists in HelpSystems tcpcrypt on Linux, used for BoKS encrypted telnet through BoKS version 6.7.1. Since tcpcrypt is setuid, exploitation leads to privilege escalation. NVD-CWE-noinfo
CVE-2018-20764 2024-11-21 13:02 2019-02-9 Show GitHub Exploit DB Packet Storm
245834 7.8 HIGH
Local 		gpac_project
debian
canonical 		gpac
debian_linux
ubuntu_linux 		In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because of missing szLineConv bounds checking. CWE-787
 Out-of-bounds Write 		CVE-2018-20763 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
245835 7.8 HIGH
Local 		gpac_project
debian
canonical 		gpac
debian_linux
ubuntu_linux 		GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-20762 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
245836 7.8 HIGH
Local 		gpac_project
debian
canonical 		gpac
debian_linux
ubuntu_linux 		GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-20761 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
245837 7.8 HIGH
Local 		gpac
debian
canonical 		gpac
debian_linux
ubuntu_linux 		In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled. CWE-787
 Out-of-bounds Write 		CVE-2018-20760 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
245838 5.4 MEDIUM
Network 		modx modx_revolution MODX Revolution through v2.7.0-pl allows XSS via User Settings such as Description. CWE-79
Cross-site Scripting 		CVE-2018-20758 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
245839 6.1 MEDIUM
Network 		modx modx_revolution MODX Revolution through v2.7.0-pl allows XSS via an extended user field such as Container name or Attribute name. CWE-79
Cross-site Scripting 		CVE-2018-20757 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
245840 6.1 MEDIUM
Network 		modx modx_revolution MODX Revolution through v2.7.0-pl allows XSS via a document resource (such as pagetitle), which is mishandled during an Update action, a Quick Edit action, or the viewing of manager logs. CWE-79
Cross-site Scripting 		CVE-2018-20756 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm