Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256291	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer の qcpfformat.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2950	2011-09-9 10:07	2011-08-16	Show	GitHub Exploit DB Packet Storm

256292	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer Enterprise におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2949	2011-09-9 10:06	2011-08-16	Show	GitHub Exploit DB Packet Storm

256293	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer Enterprise における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2948	2011-09-9 10:05	2011-08-16	Show	GitHub Exploit DB Packet Storm

256294	3.7	注意	オラクル	-	Oracle VM VirtualBox における Guest Additions for Windows の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2011-2300	2011-09-9 09:57	2011-07-19	Show	GitHub Exploit DB Packet Storm

256295	6.2	警告	オラクル	-	Oracle VM VirtualBox の脆弱性	CWE-noinfo 情報不足	CVE-2011-2305	2011-09-9 09:54	2011-07-19	Show	GitHub Exploit DB Packet Storm

256296	3.5	注意	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2274	2011-09-9 09:52	2011-07-19	Show	GitHub Exploit DB Packet Storm

256297	3.5	注意	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2282	2011-09-9 09:51	2011-07-19	Show	GitHub Exploit DB Packet Storm

256298	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2280	2011-09-9 09:50	2011-07-19	Show	GitHub Exploit DB Packet Storm

256299	4.3	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2275	2011-09-9 09:49	2011-07-19	Show	GitHub Exploit DB Packet Storm

256300	4.3	警告	リアルネットワークス	-	RealNetworks RealPlayer の ActiveX コントロールにおけるクロスゾーンスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2947	2011-09-8 13:36	2011-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246111	9.8	CRITICAL Network	moxa	thingspro	Hidden Token Access in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 2.1.	NVD-CWE-noinfo	CVE-2018-18395	2024-11-21 12:55	2018-10-19	Show	GitHub Exploit DB Packet Storm

246112	9.8	CRITICAL Network	moxa	thingspro	Sensitive Information Stored in Clear Text in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 2.1.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2018-18394	2024-11-21 12:55	2018-10-19	Show	GitHub Exploit DB Packet Storm

246113	9.8	CRITICAL Network	moxa	thingspro	Password Management Issue in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 2.1.	NVD-CWE-noinfo	CVE-2018-18393	2024-11-21 12:55	2018-10-19	Show	GitHub Exploit DB Packet Storm

246114	8.8	HIGH Network	moxa	thingspro	Privilege Escalation via Broken Access Control in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 2.1.	NVD-CWE-noinfo	CVE-2018-18392	2024-11-21 12:55	2018-10-19	Show	GitHub Exploit DB Packet Storm

246115	8.8	HIGH Network	moxa	thingspro	User Privilege Escalation in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 2.1.	NVD-CWE-noinfo	CVE-2018-18391	2024-11-21 12:55	2018-10-19	Show	GitHub Exploit DB Packet Storm

246116	7.5	HIGH Network	moxa	thingspro	User Enumeration in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 2.1.	CWE-200 Information Exposure	CVE-2018-18390	2024-11-21 12:55	2018-10-19	Show	GitHub Exploit DB Packet Storm

246117	9.8	CRITICAL Network	kibokolabs	arigato_autoresponder_and_newsletter	The Arigato Autoresponder and Newsletter (aka bft-autoresponder) v2.5.1.7 plugin for WordPress allows remote attackers to execute arbitrary code via PHP code in attachments[] data to models/attachmen…	CWE-94 Code Injection	CVE-2018-18461	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246118	6.1	MEDIUM Network	3cx	live_chat	XSS exists in the wp-live-chat-support v8.0.15 plugin for WordPress via the modules/gdpr.php term parameter in a wp-admin/admin.php wplivechat-menu-gdpr-page request.	CWE-79 Cross-site Scripting	CVE-2018-18460	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246119	5.5	MEDIUM Local	xpdfreader	xpdf	The function DCTStream::getBlock in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted pdf file, as demonstrated by pdftoppm.	CWE-476 NULL Pointer Dereference	CVE-2018-18459	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm

246120	5.5	MEDIUM Local	xpdfreader	xpdf	The function DCTStream::decodeImage in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted pdf file, as demonstrated by pdftoppm.	CWE-476 NULL Pointer Dereference	CVE-2018-18458	2024-11-21 12:55	2018-10-18	Show	GitHub Exploit DB Packet Storm