Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256611 7.8 危険 ヒューレット・パッカード - 複数の HP 製品の HP-ChaiSOE Web サーバにおけるディレクトリトラバーサルの脆弱性 CWE-200
情報漏えい 		CVE-2011-4785 2012-01-11 16:11 2012-01-9 Show GitHub Exploit DB Packet Storm
256612 5 警告 Apache Software Foundation - Apache Struts におけるランタイムデータの値を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-5057 2012-01-11 15:17 2012-01-8 Show GitHub Exploit DB Packet Storm
256613 9.3 危険 Apache Software Foundation - Apache Struts における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0392 2012-01-11 15:11 2012-01-8 Show GitHub Exploit DB Packet Storm
256614 9.3 危険 Apache Software Foundation - Apache Struts における任意の Java コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0391 2012-01-11 14:57 2012-01-8 Show GitHub Exploit DB Packet Storm
256615 5 警告 Wibu-Systems AG - CodeMeter Runtime におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-4057 2012-01-11 14:02 2012-01-11 Show GitHub Exploit DB Packet Storm
256616 5 警告 MediaWiki - MediaWiki における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4361 2012-01-11 11:22 2011-11-28 Show GitHub Exploit DB Packet Storm
256617 5 警告 MediaWiki - MediaWiki における制限されているすべてのページのタイトルを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4360 2012-01-11 11:15 2011-11-28 Show GitHub Exploit DB Packet Storm
256618 5 警告 MaraDNS - MaraDNS におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0024 2012-01-11 11:00 2011-12-29 Show GitHub Exploit DB Packet Storm
256619 2.1 注意 MaraDNS - MaraDNS の権威サーバにおけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5056 2012-01-11 10:59 2011-12-29 Show GitHub Exploit DB Packet Storm
256620 5 警告 MaraDNS - MaraDNS におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-5055 2012-01-11 10:58 2011-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
245771 6.1 MEDIUM
Network 		ivanti connect_secure An XSS issue has been found in welcome.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.1.x before 8.1R12, 8.2.x before 8.2R9, and 8.3.x before 8.3R3 due to one of the URL parameters not being saniti… CWE-79
Cross-site Scripting 		CVE-2018-20807 2024-11-21 13:02 2019-06-29 Show GitHub Exploit DB Packet Storm
245772 8.8 HIGH
Network 		uclouvain
debian 		openjpeg
debian_linux 		An improper computation of p_tx0, p_tx1, p_ty0 and p_ty1 in the function opj_get_encoding_parameters in openjp2/pi.c in OpenJPEG through 2.3.0 can lead to an integer overflow. CWE-190
 Integer Overflow or Wraparound 		CVE-2018-20847 2024-11-21 13:02 2019-06-27 Show GitHub Exploit DB Packet Storm
245773 6.5 MEDIUM
Network 		uclouvain openjpeg Out-of-bounds accesses in the functions pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to caus… CWE-20
 Improper Input Validation  		CVE-2018-20846 2024-11-21 13:02 2019-06-27 Show GitHub Exploit DB Packet Storm
245774 6.5 MEDIUM
Network 		uclouvain openjpeg Division-by-zero vulnerabilities in the functions pi_next_pcrl, pi_next_cprl, and pi_next_rpcl in openmj2/pi.c in OpenJPEG through 2.3.0 allow remote attackers to cause a denial of service (applicati… CWE-369
 Divide By Zero 		CVE-2018-20845 2024-11-21 13:02 2019-06-27 Show GitHub Exploit DB Packet Storm
245775 7.5 HIGH
Network 		libexpat_project
canonical
debian
fedoraproject
opensuse
oracle
tenable 		libexpat
ubuntu_linux
debian_linux
fedora
leap
http_server
outside_in_technology
hospitality_res_3700
nessus 		In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enoug… CWE-611
XXE 		CVE-2018-20843 2024-11-21 13:02 2019-06-25 Show GitHub Exploit DB Packet Storm
245776 9.8 CRITICAL
Network 		hootoo tripmate_titan_ht-tm05_firmware HooToo TripMate Titan HT-TM05 and HT-05 routers with firmware 2.000.022 and 2.000.082 allow remote command execution via shell metacharacters in the mac parameter of a protocol.csp?function=set&fname… CWE-78
OS Command  		CVE-2018-20841 2024-11-21 13:02 2019-06-12 Show GitHub Exploit DB Packet Storm
245777 9.8 CRITICAL
Network 		qemu qemu In QEMU 3.1.0, load_device_tree in device_tree.c calls the deprecated load_image function, which has a buffer overflow risk. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-20815 2024-11-21 13:02 2019-06-1 Show GitHub Exploit DB Packet Storm
245778 8.6 HIGH
Network 		google api_c\+\+_client An unhandled exception vulnerability exists during Google Sign-In with Google API C++ Client before 2019-04-10. It potentially causes an outage of third-party services that were not designed to recov… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2018-20840 2024-11-21 13:02 2019-05-31 Show GitHub Exploit DB Packet Storm
245779 4.3 MEDIUM
Physics 		systemd_project
netapp 		systemd
cn1610_firmware
solidfire_\&_hci_management_node
snapprotect 		systemd 242 changes the VT1 mode upon a logout, which allows attackers to read cleartext passwords in certain circumstances, such as watching a shutdown, or using Ctrl-Alt-F1 and Ctrl-Alt-F2. This oc… NVD-CWE-noinfo
CVE-2018-20839 2024-11-21 13:02 2019-05-17 Show GitHub Exploit DB Packet Storm
245780 5.4 MEDIUM
Network 		magazine3 amp_for_wp ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored XSS. CWE-79
Cross-site Scripting 		CVE-2018-20838 2024-11-21 13:02 2019-05-13 Show GitHub Exploit DB Packet Storm