Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256401	4.3	警告	シマンテック	-	Symantec pcAnywhere 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3479	2012-01-27 16:20	2012-01-22	Show	GitHub Exploit DB Packet Storm

256402	10	危険	シマンテック	-	Symantec pcAnywhere 製品における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2011-3478	2012-01-27 16:18	2012-01-22	Show	GitHub Exploit DB Packet Storm

256403	4.3	警告	Digium	-	Asterisk Open Source の chan_sip.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2012-0885	2012-01-27 15:44	2012-01-15	Show	GitHub Exploit DB Packet Storm

256404	4.3	警告	Google	-	Android の Bluetooth サービスにおける連絡先データを取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4276	2012-01-27 15:43	2011-10-28	Show	GitHub Exploit DB Packet Storm

256405	5.8	警告	Tencent	-	Android 用 Tencent QQPhoto における連絡先情報およびパスワードハッシュを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4867	2012-01-27 15:18	2012-01-25	Show	GitHub Exploit DB Packet Storm

256406	6.4	警告	Kaixin001	-	Android 用 Kaixin001 における連絡先情報および平文パスワードを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-4866	2012-01-27 15:18	2012-01-25	Show	GitHub Exploit DB Packet Storm

256407	5.8	警告	Tencent	-	Android 用 Tencent WBlog および MicroBlogPad におけるドラフトメッセージおよび検索キーワードを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4865	2012-01-27 15:12	2012-01-25	Show	GitHub Exploit DB Packet Storm

256408	5.8	警告	Tencent	-	Android 用 Tencent MobileQQ におけるメッセージおよびフレンドリストを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4864	2012-01-27 15:10	2012-01-25	Show	GitHub Exploit DB Packet Storm

256409	5.8	警告	Tencent	-	Android 用 Tencent QQPimSecure における SMS/MMS メッセージおよび連絡先リストを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4863	2012-01-27 15:08	2012-01-25	Show	GitHub Exploit DB Packet Storm

256410	5.8	警告	AnGuanJia	-	Android 用 AnGuanJia における SMS/MMS メッセージおよび連絡先リストを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4773	2012-01-27 15:07	2012-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246101	6.5	MEDIUM Network	opensuse canonical	libsolv ubuntu_linux	There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue affects t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-20534	2024-11-21 13:01	2018-12-29	Show	GitHub Exploit DB Packet Storm

246102	6.5	MEDIUM Network	opensuse canonical	libsolv ubuntu_linux	There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.	CWE-476 NULL Pointer Dereference	CVE-2018-20533	2024-11-21 13:01	2018-12-29	Show	GitHub Exploit DB Packet Storm

246103	6.5	MEDIUM Network	opensuse canonical	libsolv ubuntu_linux	There is a NULL pointer dereference at ext/testcase.c (function testcase_read) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.	CWE-476 NULL Pointer Dereference	CVE-2018-20532	2024-11-21 13:01	2018-12-29	Show	GitHub Exploit DB Packet Storm

246104	5.4	MEDIUM Network	website_seller_script_project	website_seller_script	PHP Scripts Mall Website Seller Script 2.0.5 has XSS via a Profile field such as Company Address, a related issue to CVE-2018-15896.	CWE-79 Cross-site Scripting	CVE-2018-20530	2024-11-21 13:01	2018-12-29	Show	GitHub Exploit DB Packet Storm

246105	6.5	MEDIUM Network	jeecms	jeecms	JEECMS 9 has SSRF via the ueditor/getRemoteImage.jspx upfile parameter.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-20528	2024-11-21 13:01	2018-12-29	Show	GitHub Exploit DB Packet Storm

246106	6.1	MEDIUM Network	urlchatbox	chat_anywhere	The Chat Anywhere extension 2.4.0 for Chrome allows XSS via crafted use of <<a> in a message, because a danmuWrapper DIV element in chatbox-only\danmu.js is outside the scope of a Content Security Po…	CWE-79 Cross-site Scripting	CVE-2018-20524	2024-11-21 13:01	2018-12-28	Show	GitHub Exploit DB Packet Storm

246107	6.1	MEDIUM Network	1234n	minicms	MiniCMS V1.10 has XSS via the mc-admin/post-edit.php query string, a related issue to CVE-2018-10296 and CVE-2018-16233.	CWE-79 Cross-site Scripting	CVE-2018-20520	2024-11-21 13:01	2018-12-28	Show	GitHub Exploit DB Packet Storm

246108	8.1	HIGH Network	74cms	74cms	An issue was discovered in 74cms v4.2.111. It allows remote authenticated users to read or modify arbitrary resumes by changing a job-search intention, as demonstrated by the index.php?c=Personal&a=a…	CWE-20 Improper Input Validation	CVE-2018-20519	2024-11-21 13:01	2018-12-28	Show	GitHub Exploit DB Packet Storm

246109	5.5	MEDIUM Local	linux debian	linux_kernel debian_linux	An issue was discovered in the Linux kernel before 4.18.11. The ipddp_ioctl function in drivers/net/appletalk/ipddp.c allows local users to obtain sensitive kernel address information by leveraging C…	CWE-200 Information Exposure	CVE-2018-20511	2024-11-21 13:01	2018-12-27	Show	GitHub Exploit DB Packet Storm

246110	9.8	CRITICAL Network	crashfix_project	crashfix	CrashFix 1.0.4 has SQL Injection via the User[status] parameter. This is related to actionIndex in UserController.php, and the protected\models\User.php search() function.	CWE-89 SQL Injection	CVE-2018-20508	2024-11-21 13:01	2018-12-27	Show	GitHub Exploit DB Packet Storm