Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257141 7.5 危険 Miniwork - Joomla! 用 Canteen コンポーネントの menu.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4977 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
257142 4.3 警告 Nicholas Berry - CANDID の image/view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4978 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
257143 7.5 危険 Nicholas Berry - CANDID の image/view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4979 2011-12-9 14:38 2011-11-1 Show GitHub Exploit DB Packet Storm
257144 7.5 危険 iScripts - iScripts ReserveLogic の packagedetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4980 2011-12-9 14:38 2011-11-1 Show GitHub Exploit DB Packet Storm
257145 7.5 危険 YourFreeWorld.com - YourFreeWorld Banner Management における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4981 2011-12-9 14:37 2011-11-1 Show GitHub Exploit DB Packet Storm
257146 7.5 危険 My Kazaam - My Kazaam Address & Contact Organizer における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4982 2011-12-9 14:36 2011-11-1 Show GitHub Exploit DB Packet Storm
257147 7.5 危険 iScripts - iScripts CyberMatch における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4983 2011-12-9 14:36 2011-11-1 Show GitHub Exploit DB Packet Storm
257148 7.5 危険 My Kazaam - My Kazaam Notes Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4984 2011-12-9 14:35 2011-11-1 Show GitHub Exploit DB Packet Storm
257149 4.3 警告 My Kazaam - My Kazaam Notes Management System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4985 2011-12-9 14:35 2011-11-1 Show GitHub Exploit DB Packet Storm
257150 7.5 危険 Cafuego - Simple Document Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4986 2011-12-9 14:34 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246041 7.5 HIGH
Network
xerox workcentre_3655i_firmware
workcentre_3655_firmware
workcentre_5890i_firmware
workcentre_5865i_firmware
workcentre_5875i_firmware
workcentre_5845_firmware
workcentre_5865_firmware
An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. The… CWE-22
Path Traversal
CVE-2018-20769 2024-11-21 13:02 2019-02-11 Show GitHub Exploit DB Packet Storm
246042 9.8 CRITICAL
Network
xerox workcentre_3655i_firmware
workcentre_3655_firmware
workcentre_5890i_firmware
workcentre_5865i_firmware
workcentre_5875i_firmware
workcentre_5845_firmware
workcentre_5865_firmware
An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An … CWE-94
Code Injection
CVE-2018-20768 2024-11-21 13:02 2019-02-11 Show GitHub Exploit DB Packet Storm
246043 8.8 HIGH
Network
xerox workcentre_3655i_firmware
workcentre_3655_firmware
workcentre_5890i_firmware
workcentre_5865i_firmware
workcentre_5875i_firmware
workcentre_5845_firmware
workcentre_5865_firmware
An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. The… CWE-20
 Improper Input Validation 
CVE-2018-20767 2024-11-21 13:02 2019-02-11 Show GitHub Exploit DB Packet Storm
246044 9.8 CRITICAL
Network
helpsystems boks A buffer overflow exists in HelpSystems tcpcrypt on Linux, used for BoKS encrypted telnet through BoKS version 6.7.1. Since tcpcrypt is setuid, exploitation leads to privilege escalation. NVD-CWE-noinfo
CVE-2018-20764 2024-11-21 13:02 2019-02-9 Show GitHub Exploit DB Packet Storm
246045 7.8 HIGH
Local
gpac_project
debian
canonical
gpac
debian_linux
ubuntu_linux
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because of missing szLineConv bounds checking. CWE-787
 Out-of-bounds Write
CVE-2018-20763 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246046 7.8 HIGH
Local
gpac_project
debian
canonical
gpac
debian_linux
ubuntu_linux
GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-20762 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246047 7.8 HIGH
Local
gpac_project
debian
canonical
gpac
debian_linux
ubuntu_linux
GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-20761 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246048 7.8 HIGH
Local
gpac
debian
canonical
gpac
debian_linux
ubuntu_linux
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled. CWE-787
 Out-of-bounds Write
CVE-2018-20760 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246049 5.4 MEDIUM
Network
modx modx_revolution MODX Revolution through v2.7.0-pl allows XSS via User Settings such as Description. CWE-79
Cross-site Scripting
CVE-2018-20758 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246050 6.1 MEDIUM
Network
modx modx_revolution MODX Revolution through v2.7.0-pl allows XSS via an extended user field such as Container name or Attribute name. CWE-79
Cross-site Scripting
CVE-2018-20757 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm