Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257091 7.5 危険 Mambo Foundation - Mambo CMS の administrator/index2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-2917 2011-12-13 14:41 2011-12-8 Show GitHub Exploit DB Packet Storm
257092 6.8 警告 MIT Kerberos - MIT Kerberos の process_tgs_req 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1530 2011-12-13 14:40 2011-12-6 Show GitHub Exploit DB Packet Storm
257093 6.4 警告 BlackBerry - BlackBerry Administration API におけるテキストファイルを読まれる脆弱性 CWE-noinfo
情報不足
CVE-2011-0287 2011-12-13 14:35 2011-07-12 Show GitHub Exploit DB Packet Storm
257094 6.4 警告 Widelands - Widelands におけるパストラバーサル攻撃を誘発される脆弱性 CWE-22
パス・トラバーサル
CVE-2011-4675 2011-12-12 18:21 2011-12-5 Show GitHub Exploit DB Packet Storm
257095 5 警告 One Click Orgs - One Click Orgs のパスワードリセット機能におけるユーザアカウントを列挙される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-4678 2011-12-12 18:19 2011-12-6 Show GitHub Exploit DB Packet Storm
257096 4 警告 One Click Orgs - One Click Orgs におけるサービス運用妨害 (ログイン障害) の脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-4555 2011-12-12 18:18 2011-12-6 Show GitHub Exploit DB Packet Storm
257097 5.5 警告 One Click Orgs - One Click Orgs における巧妙に細工された SMTP トラフィックを誘発する脆弱性 CWE-20
不適切な入力確認
CVE-2011-4554 2011-12-12 18:15 2011-12-6 Show GitHub Exploit DB Packet Storm
257098 6.9 警告 Celery - Celery における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4356 2011-12-12 18:14 2011-12-5 Show GitHub Exploit DB Packet Storm
257099 7.5 危険 ヒューレット・パッカード - HP Protect Tools Device Access Manager における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-4162 2011-12-12 18:13 2011-12-1 Show GitHub Exploit DB Packet Storm
257100 10 危険 ヒューレット・パッカード - HP CM8060 Color MFP その他の製品のデフォルト設定における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4161 2011-12-12 18:10 2011-11-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250771 6.5 MEDIUM
Network
gnome
canonical
pango
ubuntu_linux
libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-15120 2024-11-21 12:50 2018-08-25 Show GitHub Exploit DB Packet Storm
250772 8.8 HIGH
Network
ucopia wireless_appliance_firmware Improper input sanitization within the restricted administration shell on UCOPIA Wireless Appliance devices using firmware version 5.1.x before 5.1.13 allows authenticated remote attackers to escape … CWE-78
OS Command 
CVE-2018-15481 2024-11-21 12:50 2018-08-22 Show GitHub Exploit DB Packet Storm
250773 7.5 HIGH
Network
embedthis
juniper
appweb
goahead
junos
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. An HTTP POST request with a specially crafted "Host" header field may cause a NULL pointer dereference and thus caus… CWE-476
 NULL Pointer Dereference
CVE-2018-15505 2024-11-21 12:50 2018-08-18 Show GitHub Exploit DB Packet Storm
250774 7.5 HIGH
Network
embedthis
juniper
appweb
goahead
junos
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. The server mishandles some HTTP request fields associated with time, which results in a NULL pointer dereference, as… CWE-476
 NULL Pointer Dereference
CVE-2018-15504 2024-11-21 12:50 2018-08-18 Show GitHub Exploit DB Packet Storm
250775 7.5 HIGH
Network
swoole swoole The unpack implementation in Swoole version 4.0.4 lacks correct size checks in the deserialization process. An attacker can craft a serialized object to exploit this vulnerability and cause a SEGV. CWE-502
 Deserialization of Untrusted Data
CVE-2018-15503 2024-11-21 12:50 2018-08-18 Show GitHub Exploit DB Packet Storm
250776 7.5 HIGH
Network
debian
libgit2
debian_linux
libgit2
In ng_pkt in transports/smart_pkt.c in libgit2 before 0.26.6 and 0.27.x before 0.27.4, a remote attacker can send a crafted smart-protocol "ng" packet that lacks a '\0' byte to trigger an out-of-boun… CWE-125
Out-of-bounds Read
CVE-2018-15501 2024-11-21 12:50 2018-08-18 Show GitHub Exploit DB Packet Storm
250777 7.5 HIGH
Network
tecrail responsive_filemanager /filemanager/upload.php in Responsive FileManager before 9.13.3 allows Directory Traversal and SSRF because the url parameter is used directly in a curl_exec call, as demonstrated by a file:///etc/pa… CWE-22
Path Traversal
CVE-2018-15495 2024-11-21 12:50 2018-08-18 Show GitHub Exploit DB Packet Storm
250778 9.8 CRITICAL
Network
dojotoolkit
debian
dojo
debian_linux
In Dojo Toolkit before 1.14, there is unescaped string injection in dojox/Grid/DataGrid. CWE-116
 Improper Encoding or Escaping of Output
CVE-2018-15494 2024-11-21 12:50 2018-08-18 Show GitHub Exploit DB Packet Storm
250779 7.5 HIGH
Network
gemalto sentinel_license_manager A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed in 8.5.3.2403) causes UDP amplification. CWE-405
 Asymmetric Resource Consumption (Amplification)
CVE-2018-15492 2024-11-21 12:50 2018-08-18 Show GitHub Exploit DB Packet Storm
250780 7.5 HIGH
Network
zemana antilogger A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior (fixed in 1.9.3.602) allows an attacker to take control of the whitelisting feature (MyRules2… CWE-798
CWE-732
 Use of Hard-coded Credentials
 Incorrect Permission Assignment for Critical Resource
CVE-2018-15491 2024-11-21 12:50 2018-08-18 Show GitHub Exploit DB Packet Storm