Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256611	10	危険	アドビシステムズ	-	Adobe Shockwave Player の TextXtra モジュールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2449	2011-11-14 11:36	2011-11-8	Show	GitHub Exploit DB Packet Storm

256612	10	危険	アドビシステムズ	-	Adobe Shockwave Player の DIRapi ライブラリにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2448	2011-11-14 11:35	2011-11-8	Show	GitHub Exploit DB Packet Storm

256613	10	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2447	2011-11-14 11:34	2011-11-8	Show	GitHub Exploit DB Packet Storm

256614	10	危険	アドビシステムズ	-	Adobe Shockwave Player の DIRapi ライブラリにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2446	2011-11-14 11:24	2011-11-8	Show	GitHub Exploit DB Packet Storm

256615	9.3	危険	マイクロソフト	-	Microsoft Windows の Windows Mail および Windows Meeting Space における権限昇格の脆弱性	CWE-Other その他	CVE-2011-2016	2011-11-14 11:24	2011-11-8	Show	GitHub Exploit DB Packet Storm

256616	9	危険	マイクロソフト	-	Microsoft Windows の LDAP over SSL 実装における証明書の制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-2014	2011-11-14 11:22	2011-11-8	Show	GitHub Exploit DB Packet Storm

256617	10	危険	マイクロソフト	-	Microsoft Windows の TCP/IP 実装における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-2013	2011-11-14 11:21	2011-11-8	Show	GitHub Exploit DB Packet Storm

256618	7.1	危険	マイクロソフト	-	Microsoft Windows の win32k.sys におけるにおけるサービス運用妨害 (リブート) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2004	2011-11-14 11:19	2011-11-8	Show	GitHub Exploit DB Packet Storm

256619	6.8	警告	Stichting NLnet Labs	-	ldns の ldns_rr_new_frm_str_internal 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3581	2011-11-11 11:21	2011-08-24	Show	GitHub Exploit DB Packet Storm

256620	5	警告	ヒューレット・パッカード	-	HP OpenVMS の SMTP 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-3169	2011-11-11 11:19	2011-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245501	5.4	MEDIUM Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in BuildTimelineWidget.java, BuildTimelineWidget/control.jelly that allows attackers with Job/Configure p…	CWE-79 Cross-site Scripting	CVE-2018-1999005	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245502	4.3	MEDIUM Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in SlaveComputer.java that allows attackers with Overall/Read permission to initiate agent launches, an…	CWE-863 Incorrect Authorization	CVE-2018-1999004	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245503	4.3	MEDIUM Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A Improper authorization vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in Queue.java that allows attackers with Overall/Read permission to cancel queued builds.	CWE-863 Incorrect Authorization	CVE-2018-1999003	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245504	7.5	HIGH Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A arbitrary file read vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in the Stapler web framework's org/kohsuke/stapler/Stapler.java that allows attackers to send crafted HTTP…	NVD-CWE-noinfo	CVE-2018-1999002	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245505	8.8	HIGH Network	jenkins oracle	jenkins communications_cloud_native_core_automated_test_suite	A unauthorized modification of configuration vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in User.java that allows attackers to provide crafted login credentials that cause …	NVD-CWE-noinfo	CVE-2018-1999001	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245506	5.4	MEDIUM Network	mathjax	mathjax	MathJax version prior to version 2.7.4 contains a Cross Site Scripting (XSS) vulnerability in the \unicode{} macro that can result in Potentially untrusted Javascript running within a web browser. Th…	CWE-79 Cross-site Scripting	CVE-2018-1999024	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245507	8.8	HIGH Network	wesnoth	the_battle_for_wesnoth	The Battle for Wesnoth Project version 1.7.0 through 1.14.3 contains a Code Injection vulnerability in the Lua scripting engine that can result in code execution outside the sandbox. This attack appe…	CWE-94 Code Injection	CVE-2018-1999023	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245508	5.4	MEDIUM Network	gleeztech	gleezcms	Gleezcms Gleez Cms version 1.3.0 contains a Cross Site Scripting (XSS) vulnerability in Profile page that can result in Inject arbitrary web script or HTML via the profile page editor. This attack ap…	CWE-79 Cross-site Scripting	CVE-2018-1999021	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245509	5.5	MEDIUM Local	opennetworking	onos	Open Networking Foundation (ONF) ONOS version 1.13.2 and earlier version contains a Directory Traversal vulnerability in core/common/src/main/java/org/onosproject/common/app/ApplicationArchive.java l…	CWE-22 Path Traversal	CVE-2018-1999020	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm

245510	9.8	CRITICAL Network	chamilo	chamilo_lms	Chamilo LMS version 11.x contains an Unserialization vulnerability in the "hash" GET parameter for the api endpoint located at /webservices/api/v2.php that can result in Unauthenticated remote code e…	CWE-94 Code Injection	CVE-2018-1999019	2024-11-21 12:57	2018-07-24	Show	GitHub Exploit DB Packet Storm