Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256541	7.2	危険	アップル	-	Apple iOS のカーネルにおける任意の符号なしコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-3442	2011-11-15 16:09	2011-11-11	Show	GitHub Exploit DB Packet Storm

256542	9.3	危険	アップル	-	Apple iOS の libinfo における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3441	2011-11-15 16:08	2011-11-11	Show	GitHub Exploit DB Packet Storm

256543	1.2	注意	アップル	-	Apple iOS の Passcode Lock 機能におけるデータにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3440	2011-11-15 16:06	2011-11-11	Show	GitHub Exploit DB Packet Storm

256544	4.4	警告	Apache Software Foundation	-	Apache Tomcat における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3376	2011-11-15 15:54	2011-11-8	Show	GitHub Exploit DB Packet Storm

256545	5	警告	IBM	-	IBM DB2 Tools の web-server コンポーネントにおける重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4435	2011-11-15 15:50	2011-06-9	Show	GitHub Exploit DB Packet Storm

256546	4.9	警告	IBM	-	IBM AIX におけるサービス運用妨害 (システムクラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2011-1375	2011-11-15 15:50	2011-11-4	Show	GitHub Exploit DB Packet Storm

256547	5	警告	Google	-	Google Chrome および Chrome OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0470	2011-11-15 11:16	2011-01-12	Show	GitHub Exploit DB Packet Storm

256548	10	危険	Google	-	Google Chrome および Chrome OS の node-iteration 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0471	2011-11-15 11:15	2011-01-12	Show	GitHub Exploit DB Packet Storm

256549	9.3	危険	Google	-	Google Chrome と Chrome OS におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0472	2011-11-15 11:15	2011-01-12	Show	GitHub Exploit DB Packet Storm

256550	10	危険	Google	-	Google Chrome と Chrome OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0473	2011-11-15 11:14	2011-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245501	5.4	MEDIUM Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in BuildTimelineWidget.java, BuildTimelineWidget/control.jelly that allows attackers with Job/Configure p…	CWE-79 Cross-site Scripting	CVE-2018-1999005	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245502	4.3	MEDIUM Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in SlaveComputer.java that allows attackers with Overall/Read permission to initiate agent launches, an…	CWE-863 Incorrect Authorization	CVE-2018-1999004	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245503	4.3	MEDIUM Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in Queue.java that allows attackers with Overall/Read permission to cancel queued builds.	CWE-863 Incorrect Authorization	CVE-2018-1999003	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245504	7.5	HIGH Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A arbitrary file read vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in the Stapler web framework's org/kohsuke/stapler/Stapler.java that allows attackers to send crafted HTTP…	NVD-CWE-noinfo	CVE-2018-1999002	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245505	8.8	HIGH Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A unauthorized modification of configuration vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in User.java that allows attackers to provide crafted login credentials that cause …	NVD-CWE-noinfo	CVE-2018-1999001	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245506	5.4	MEDIUM Network	mathjax	mathjax	MathJax version prior to version 2.7.4 contains a Cross Site Scripting (XSS) vulnerability in the \unicode{} macro that can result in Potentially untrusted Javascript running within a web browser. Th…	CWE-79 Cross-site Scripting	CVE-2018-1999024	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245507	8.8	HIGH Network	wesnoth	the_battle_for_wesnoth	The Battle for Wesnoth Project version 1.7.0 through 1.14.3 contains a Code Injection vulnerability in the Lua scripting engine that can result in code execution outside the sandbox. This attack appe…	CWE-94 Code Injection	CVE-2018-1999023	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245508	5.4	MEDIUM Network	gleeztech	gleezcms	Gleezcms Gleez Cms version 1.3.0 contains a Cross Site Scripting (XSS) vulnerability in Profile page that can result in Inject arbitrary web script or HTML via the profile page editor. This attack ap…	CWE-79 Cross-site Scripting	CVE-2018-1999021	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245509	5.5	MEDIUM Local	opennetworking	onos	Open Networking Foundation (ONF) ONOS version 1.13.2 and earlier version contains a Directory Traversal vulnerability in core/common/src/main/java/org/onosproject/common/app/ApplicationArchive.java l…	CWE-22 Path Traversal	CVE-2018-1999020	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245510	9.8	CRITICAL Network	chamilo	chamilo_lms	Chamilo LMS version 11.x contains an Unserialization vulnerability in the "hash" GET parameter for the api endpoint located at /webservices/api/v2.php that can result in Unauthenticated remote code e…	CWE-94 Code Injection	CVE-2018-1999019	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm