Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257141 7.5 危険 Miniwork - Joomla! 用 Canteen コンポーネントの menu.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4977 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
257142 4.3 警告 Nicholas Berry - CANDID の image/view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4978 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
257143 7.5 危険 Nicholas Berry - CANDID の image/view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4979 2011-12-9 14:38 2011-11-1 Show GitHub Exploit DB Packet Storm
257144 7.5 危険 iScripts - iScripts ReserveLogic の packagedetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4980 2011-12-9 14:38 2011-11-1 Show GitHub Exploit DB Packet Storm
257145 7.5 危険 YourFreeWorld.com - YourFreeWorld Banner Management における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4981 2011-12-9 14:37 2011-11-1 Show GitHub Exploit DB Packet Storm
257146 7.5 危険 My Kazaam - My Kazaam Address & Contact Organizer における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4982 2011-12-9 14:36 2011-11-1 Show GitHub Exploit DB Packet Storm
257147 7.5 危険 iScripts - iScripts CyberMatch における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4983 2011-12-9 14:36 2011-11-1 Show GitHub Exploit DB Packet Storm
257148 7.5 危険 My Kazaam - My Kazaam Notes Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4984 2011-12-9 14:35 2011-11-1 Show GitHub Exploit DB Packet Storm
257149 4.3 警告 My Kazaam - My Kazaam Notes Management System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4985 2011-12-9 14:35 2011-11-1 Show GitHub Exploit DB Packet Storm
257150 7.5 危険 Cafuego - Simple Document Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4986 2011-12-9 14:34 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250481 5.5 MEDIUM
Local
xkbcommon
canonical
xkbcommon
libxkbcommon
ubuntu_linux
Unchecked NULL pointer usage when handling invalid aliases in CopyKeyAliasesToKeymap in xkbcomp/keycodes.c in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereferenc… CWE-476
 NULL Pointer Dereference
CVE-2018-15858 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250482 7.8 HIGH
Local
xkbcommon
canonical
xkbcommon
libxkbcommon
ubuntu_linux
An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other imp… CWE-416
 Use After Free
CVE-2018-15857 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250483 5.5 MEDIUM
Local
xkbcommon
canonical
xkbcommon
ubuntu_linux
An infinite loop when reaching EOL unexpectedly in compose/parser.c (aka the keymap parser) in xkbcommon before 0.8.1 could be used by local attackers to cause a denial of service during parsing of c… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop')
CVE-2018-15856 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250484 5.5 MEDIUM
Local
xkbcommon_project
canonical
xkbcommon
ubuntu_linux
Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because the XkbFil… CWE-476
 NULL Pointer Dereference
CVE-2018-15855 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250485 5.5 MEDIUM
Local
xkbcommon_project
canonical
xkbcommon
ubuntu_linux
Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because geometry t… CWE-476
 NULL Pointer Dereference
CVE-2018-15854 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250486 5.5 MEDIUM
Local
xkbcommon
canonical
xkbcommon
libxkbcommon
ubuntu_linux
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers… CWE-400
 Uncontrolled Resource Consumption
CVE-2018-15853 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250487 6.5 MEDIUM
Adjacent
technicolor tc7200.20_firmware Technicolor TC7200.20 devices allow remote attackers to cause a denial of service (networking outage) via a flood of random MAC addresses, as demonstrated by macof. NOTE: Technicolor denies that the … CWE-400
 Uncontrolled Resource Consumption
CVE-2018-15852 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250488 8.8 HIGH
Network
flexocms_project flexo_cms An issue was discovered in Flexo CMS v0.1.6. There is a CSRF vulnerability that can add an administrator via /admin/user/add. CWE-352
 Origin Validation Error
CVE-2018-15851 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250489 8.8 HIGH
Network
redaxo redaxo_cms An issue was discovered in REDAXO CMS 4.7.2. There is a CSRF vulnerability that can add an administrator account via index.php?page=user. CWE-352
 Origin Validation Error
CVE-2018-15850 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm
250490 4.3 MEDIUM
Network
portfoliocms_project portfoliocms An issue was discovered in portfolioCMS 1.0.5. There is CSRF to update the website settings via admin/aboutus.php. CWE-352
 Origin Validation Error
CVE-2018-15849 2024-11-21 12:51 2018-08-26 Show GitHub Exploit DB Packet Storm