Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256681	10	危険	ヒューレット・パッカード	-	HP Database Archiving Software における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-4163	2012-01-5 10:44	2011-12-22	Show	GitHub Exploit DB Packet Storm

256682	4.3	警告	Yaws	-	Yaws の wiki アプリケーションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5025	2012-01-5 10:21	2011-12-29	Show	GitHub Exploit DB Packet Storm

256683	4.3	警告	GNU Project	-	Mailman 用の Mailman/htdig integration patch の mmsearch/design におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5024	2012-01-5 10:21	2011-12-29	Show	GitHub Exploit DB Packet Storm

256684	4.3	警告	Pligg	-	Pligg CMS の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5023	2012-01-5 10:17	2011-12-29	Show	GitHub Exploit DB Packet Storm

256685	7.5	危険	Pligg	-	Pligg CMS の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5022	2012-01-5 10:16	2011-12-29	Show	GitHub Exploit DB Packet Storm

256686	4.3	警告	Winn GuestBook	-	Winn GuestBook におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5026	2012-01-5 10:16	2011-12-27	Show	GitHub Exploit DB Packet Storm

256687	7.5	危険	PHPIDS	-	PHPIDS におけるルールセット回避の脆弱性	CWE-94 コード・インジェクション	CVE-2011-5021	2012-01-5 10:15	2011-12-29	Show	GitHub Exploit DB Packet Storm

256688	5	警告	GoAhead Software, Inc.	-	GoAhead WebServer におけるサービス運用妨害 (デーモン停止) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-5111	2012-01-5 10:13	2011-12-27	Show	GitHub Exploit DB Packet Storm

256689	5	警告	DHTTPD	-	dhttpd におけるサービス運用妨害 (デーモン停止) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-5110	2012-01-5 10:13	2011-12-27	Show	GitHub Exploit DB Packet Storm

256690	5	警告	Apache Software Foundation	-	Apache Tomcat におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4084	2012-01-4 16:50	2011-12-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
245831	9.8	CRITICAL Network	xerox	workcentre_3655i_firmware workcentre_3655_firmware workcentre_5890i_firmware workcentre_5865i_firmware workcentre_5875i_firmware workcentre_5845_firmware workcentre_5865_firmware	An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An …	CWE-94 Code Injection	CVE-2018-20768	2024-11-21 13:02	2019-02-11	Show	GitHub Exploit DB Packet Storm

245832	8.8	HIGH Network	xerox	workcentre_3655i_firmware workcentre_3655_firmware workcentre_5890i_firmware workcentre_5865i_firmware workcentre_5875i_firmware workcentre_5845_firmware workcentre_5865_firmware	An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. The…	CWE-20 Improper Input Validation	CVE-2018-20767	2024-11-21 13:02	2019-02-11	Show	GitHub Exploit DB Packet Storm

245833	9.8	CRITICAL Network	helpsystems	boks	A buffer overflow exists in HelpSystems tcpcrypt on Linux, used for BoKS encrypted telnet through BoKS version 6.7.1. Since tcpcrypt is setuid, exploitation leads to privilege escalation.	NVD-CWE-noinfo	CVE-2018-20764	2024-11-21 13:02	2019-02-9	Show	GitHub Exploit DB Packet Storm

245834	7.8	HIGH Local	gpac_project debian canonical	gpac debian_linux ubuntu_linux	In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because of missing szLineConv bounds checking.	CWE-787 Out-of-bounds Write	CVE-2018-20763	2024-11-21 13:02	2019-02-7	Show	GitHub Exploit DB Packet Storm

245835	7.8	HIGH Local	gpac_project debian canonical	gpac debian_linux ubuntu_linux	GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-20762	2024-11-21 13:02	2019-02-7	Show	GitHub Exploit DB Packet Storm

245836	7.8	HIGH Local	gpac_project debian canonical	gpac debian_linux ubuntu_linux	GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-20761	2024-11-21 13:02	2019-02-7	Show	GitHub Exploit DB Packet Storm

245837	7.8	HIGH Local	gpac debian canonical	gpac debian_linux ubuntu_linux	In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled.	CWE-787 Out-of-bounds Write	CVE-2018-20760	2024-11-21 13:02	2019-02-7	Show	GitHub Exploit DB Packet Storm

245838	5.4	MEDIUM Network	modx	modx_revolution	MODX Revolution through v2.7.0-pl allows XSS via User Settings such as Description.	CWE-79 Cross-site Scripting	CVE-2018-20758	2024-11-21 13:02	2019-02-7	Show	GitHub Exploit DB Packet Storm

245839	6.1	MEDIUM Network	modx	modx_revolution	MODX Revolution through v2.7.0-pl allows XSS via an extended user field such as Container name or Attribute name.	CWE-79 Cross-site Scripting	CVE-2018-20757	2024-11-21 13:02	2019-02-7	Show	GitHub Exploit DB Packet Storm

245840	6.1	MEDIUM Network	modx	modx_revolution	MODX Revolution through v2.7.0-pl allows XSS via a document resource (such as pagetitle), which is mishandled during an Update action, a Quick Edit action, or the viewing of manager logs.	CWE-79 Cross-site Scripting	CVE-2018-20756	2024-11-21 13:02	2019-02-7	Show	GitHub Exploit DB Packet Storm