Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257111 5 警告 Google - Google Chrome の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-5073 2011-12-12 16:21 2011-12-7 Show GitHub Exploit DB Packet Storm
257112 5 警告 Opera Software ASA - Opera の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-5072 2011-12-12 16:20 2011-12-7 Show GitHub Exploit DB Packet Storm
257113 5 警告 マイクロソフト - Microsoft Internet Explorer の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-5071 2011-12-12 16:19 2011-12-7 Show GitHub Exploit DB Packet Storm
257114 5 警告 アップル - Apple Safari の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-5070 2011-12-12 16:17 2011-12-7 Show GitHub Exploit DB Packet Storm
257115 4.3 警告 Google - Google Chrome の Cascading Style Sheets 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-5069 2011-12-12 16:16 2011-12-7 Show GitHub Exploit DB Packet Storm
257116 4.3 警告 Opera Software ASA - Opera の Cascading Style Sheets (CSS) 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-5068 2011-12-12 16:14 2011-12-7 Show GitHub Exploit DB Packet Storm
257117 5 警告 Mozilla Foundation - 複数の Mozilla 製品の JavaScript 実装における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2002-2437 2011-12-12 16:12 2011-12-7 Show GitHub Exploit DB Packet Storm
257118 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品の CSS 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2002-2436 2011-12-12 16:12 2011-12-7 Show GitHub Exploit DB Packet Storm
257119 4.3 警告 マイクロソフト - Microsoft Internet Explorer の CSS 実装における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2002-2435 2011-12-12 16:11 2011-12-7 Show GitHub Exploit DB Packet Storm
257120 6.8 警告 レッドハット - FreeIPA におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-3636 2011-12-12 11:42 2011-12-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253871 6.1 MEDIUM
Network
ckeditor ckeditor_5-link Cross-site scripting (XSS) vulnerability in the Link package for CKEditor 5 before 10.0.1 allows remote attackers to inject arbitrary web script through a crafted href attribute of a link (A) element. CWE-79
Cross-site Scripting
CVE-2018-11093 2024-11-21 12:42 2018-05-23 Show GitHub Exploit DB Packet Storm
253872 6.5 MEDIUM
Network
horse_market_sell_\&_rent_portal_project horse_market_sell_\&_rent_portal Horse Market Sell & Rent Portal Script 1.5.7 has a CSRF vulnerability through which an attacker can change all of the target's account information remotely. CWE-352
 Origin Validation Error
CVE-2018-11096 2024-11-21 12:42 2018-05-21 Show GitHub Exploit DB Packet Storm
253873 6.5 MEDIUM
Network
admin_notes_project admin_notes An issue was discovered in the Admin Notes plugin 1.1 for MyBB. CSRF allows an attacker to remotely delete all admin notes via an admin/index.php?empty=table (aka Clear Table) action. CWE-352
 Origin Validation Error
CVE-2018-11092 2024-11-21 12:42 2018-05-21 Show GitHub Exploit DB Packet Storm
253874 6.5 MEDIUM
Network
makemytrip makemytrip An issue was discovered in the MakeMyTrip application 7.2.4 for Android. The databases (locally stored) are not encrypted and have cleartext that might lead to sensitive information disclosure, as de… CWE-312
 Cleartext Storage of Sensitive Information
CVE-2018-11242 2024-11-21 12:42 2018-05-20 Show GitHub Exploit DB Packet Storm
253875 7.5 HIGH
Network
hexagontoken hexagon An integer overflow in the _transfer function of a smart contract implementation for Hexagon (HXG), an Ethereum ERC20 token, allows attackers to accomplish an unauthorized increase of digital assets … CWE-190
 Integer Overflow or Wraparound
CVE-2018-11239 2024-11-21 12:42 2018-05-20 Show GitHub Exploit DB Packet Storm
253876 5.5 MEDIUM
Local
podofo_project podofo An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and applic… CWE-476
 NULL Pointer Dereference
CVE-2018-11255 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
253877 5.5 MEDIUM
Local
podofo_project podofo An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a… CWE-674
 Uncontrolled Recursion
CVE-2018-11254 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
253878 6.5 MEDIUM
Network
imagemagick imagemagick In ImageMagick 7.0.7-23 Q16 x86_64 2018-01-24, there is a heap-based buffer over-read in ReadSUNImage in coders/sun.c, which allows attackers to cause a denial of service (application crash in SetGra… CWE-125
Out-of-bounds Read
CVE-2018-11251 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
253879 9.8 CRITICAL
Network
liulishuo filedownloader util/FileDownloadUtils.java in FileDownloader 1.7.3 does not check an attachment's name. If an attacker places "../" in the file name, the file can be stored in an unintended directory because of Dir… CWE-22
Path Traversal
CVE-2018-11248 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
253880 6.1 MEDIUM
Network
misp-project misp app/webroot/js/misp.js in MISP 2.4.91 has a DOM based XSS with cortex type attributes. CWE-79
Cross-site Scripting
CVE-2018-11245 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm