Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
256921 4.3 警告 PukiWiki Plus! - PukiWiki Plus! におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3990 2011-12-22 12:03 2011-12-22 Show GitHub Exploit DB Packet Storm
256922 4.3 警告 Apache Software Foundation - Apache Struts におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1772 2011-12-22 12:01 2011-12-22 Show GitHub Exploit DB Packet Storm
256923 6.8 警告 BlackBerry - RIM BlackBerry Device Software の Blackberry Browser における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題
CVE-2009-3477 2011-12-22 11:59 2009-09-28 Show GitHub Exploit DB Packet Storm
256924 4.3 警告 BlackBerry
IBM
- BlackBerry Desktop Manager 用の RIM Lotus Notes コネクタにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-3038 2011-12-22 11:58 2009-09-1 Show GitHub Exploit DB Packet Storm
256925 9.3 危険 BlackBerry - RIM BlackBerry Enterprise Server および BlackBerry Professional Software におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-2646 2011-12-22 11:55 2009-04-16 Show GitHub Exploit DB Packet Storm
256926 9.3 危険 BlackBerry - RIM BlackBerry Enterprise Server および BlackBerry Professional Software におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2009-2643 2011-12-22 11:54 2009-05-26 Show GitHub Exploit DB Packet Storm
256927 7.1 危険 BlackBerry - RIM BlackBerry 8800 における運用妨害 (メモリ消費およびブラウザクラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-2575 2011-12-22 11:53 2009-07-22 Show GitHub Exploit DB Packet Storm
256928 9.3 危険 BlackBerry - 複数の RIM BlackBerry 製品の PDF distiller における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2009-0219 2011-12-22 11:51 2009-01-12 Show GitHub Exploit DB Packet Storm
256929 9.3 危険 BlackBerry - 複数の RIM BlackBerry 製品におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2009-0176 2011-12-22 11:50 2009-01-12 Show GitHub Exploit DB Packet Storm
256930 4.3 警告 Serck Control
Control Microsystems
- Control Microsystems ClearSCADA におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3144 2011-12-22 11:49 2011-08-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249961 7.5 HIGH
Network
strongswan
debian
canonical
strongswan
debian_linux
ubuntu_linux
In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded al… CWE-347
 Improper Verification of Cryptographic Signature
CVE-2018-16151 2024-11-21 12:52 2018-09-27 Show GitHub Exploit DB Packet Storm
249962 7.5 HIGH
Network
localize_my_post_project localize_my_post The Localize My Post plugin 1.0 for WordPress allows Directory Traversal via the ajax/include.php file parameter. CWE-22
Path Traversal
CVE-2018-16299 2024-11-21 12:52 2018-09-25 Show GitHub Exploit DB Packet Storm
249963 9.8 CRITICAL
Network
wechat_brodcast_project wechat_brodcast The Wechat Broadcast plugin 1.2.0 and earlier for WordPress allows Directory Traversal via the Image.php url parameter. CWE-22
Path Traversal
CVE-2018-16283 2024-11-21 12:52 2018-09-25 Show GitHub Exploit DB Packet Storm
249964 9.8 CRITICAL
Network
deiser profields-project_custom_fields The DEISER "Profields - Project Custom Fields" app before 6.0.2 for Jira has Incorrect Access Control. NVD-CWE-noinfo
CVE-2018-16281 2024-11-21 12:52 2018-09-22 Show GitHub Exploit DB Packet Storm
249965 8.8 HIGH
Network
moxa edr-810_firmware A command injection vulnerability in the web server functionality of Moxa EDR-810 V4.2 build 18041013 allows remote attackers to execute arbitrary OS commands with root privilege via the caname param… CWE-78
OS Command 
CVE-2018-16282 2024-11-21 12:52 2018-09-21 Show GitHub Exploit DB Packet Storm
249966 8.8 HIGH
Network
matrix
debian
synapse
debian_linux
Matrix Synapse before 0.33.3.1 allows remote attackers to spoof events and possibly have unspecified other impacts by leveraging improper transaction and event signature validation. CWE-347
 Improper Verification of Cryptographic Signature
CVE-2018-16515 2024-11-21 12:52 2018-09-19 Show GitHub Exploit DB Packet Storm
249967 6.5 MEDIUM
Adjacent
qbeecam
swisscom
qbee_multi-sensor_camera_firmware
swisscom_home_app
qbeecam
The QBee MultiSensor Camera through 4.16.4 accepts unencrypted network traffic from clients (such as the QBee Cam application through 1.0.5 for Android and the Swisscom Home application up to 10.7.2 … CWE-319
Cleartext Transmission of Sensitive Information
CVE-2018-16225 2024-11-21 12:52 2018-09-19 Show GitHub Exploit DB Packet Storm
249968 7.8 HIGH
Local
jhead_project jhead The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of incon… CWE-134
Use of Externally-Controlled Format String
CVE-2018-16554 2024-11-21 12:52 2018-09-16 Show GitHub Exploit DB Packet Storm
249969 8.6 HIGH
Network
lg supersign_cms LG SuperSign CMS allows reading of arbitrary files via signEzUI/playlist/edit/upload/..%2f URIs. CWE-200
Information Exposure
CVE-2018-16288 2024-11-21 12:52 2018-09-15 Show GitHub Exploit DB Packet Storm
249970 9.8 CRITICAL
Network
lg supersign_cms LG SuperSign CMS allows file upload via signEzUI/playlist/edit/upload/..%2f URIs. CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2018-16287 2024-11-21 12:52 2018-09-15 Show GitHub Exploit DB Packet Storm