Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257141 7.5 危険 Miniwork - Joomla! 用 Canteen コンポーネントの menu.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4977 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
257142 4.3 警告 Nicholas Berry - CANDID の image/view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4978 2011-12-9 14:39 2011-11-1 Show GitHub Exploit DB Packet Storm
257143 7.5 危険 Nicholas Berry - CANDID の image/view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4979 2011-12-9 14:38 2011-11-1 Show GitHub Exploit DB Packet Storm
257144 7.5 危険 iScripts - iScripts ReserveLogic の packagedetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4980 2011-12-9 14:38 2011-11-1 Show GitHub Exploit DB Packet Storm
257145 7.5 危険 YourFreeWorld.com - YourFreeWorld Banner Management における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4981 2011-12-9 14:37 2011-11-1 Show GitHub Exploit DB Packet Storm
257146 7.5 危険 My Kazaam - My Kazaam Address & Contact Organizer における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4982 2011-12-9 14:36 2011-11-1 Show GitHub Exploit DB Packet Storm
257147 7.5 危険 iScripts - iScripts CyberMatch における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4983 2011-12-9 14:36 2011-11-1 Show GitHub Exploit DB Packet Storm
257148 7.5 危険 My Kazaam - My Kazaam Notes Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4984 2011-12-9 14:35 2011-11-1 Show GitHub Exploit DB Packet Storm
257149 4.3 警告 My Kazaam - My Kazaam Notes Management System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4985 2011-12-9 14:35 2011-11-1 Show GitHub Exploit DB Packet Storm
257150 7.5 危険 Cafuego - Simple Document Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4986 2011-12-9 14:34 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254821 7.5 HIGH
Network
ibm kitura Kitura 2.3.0 and earlier have an unintended read access to unauthorised files and folders that can be exploited by a crafted URL resulting in information disclosure. CWE-200
Information Exposure
CVE-2018-1000181 2024-11-21 12:39 2018-06-5 Show GitHub Exploit DB Packet Storm
254822 7.5 HIGH
Network
bouncycastle
debian
oracle
netapp
redhat
fips_java_api
legion-of-the-bouncy-castle-java-crytography-api
debian_linux
retail_xstore_point_of_service
api_gateway
weblogic_server
enterprise_repository
peoplesoft_enterprise…
Bouncy Castle BC 1.54 - 1.59, BC-FJA 1.0.0, BC-FJA 1.0.1 and earlier have a flaw in the Low-level interface to RSA key pair generator, specifically RSA Key Pairs generated in low-level API with added… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm
CVE-2018-1000180 2024-11-21 12:39 2018-06-5 Show GitHub Exploit DB Packet Storm
254823 9.8 CRITICAL
Network
haxx
canonical
curl
ubuntu_linux
curl version curl 7.54.1 to and including curl 7.59.0 contains a CWE-122: Heap-based Buffer Overflow vulnerability in denial of service and more that can result in curl might overflow a heap based me… CWE-787
 Out-of-bounds Write
CVE-2018-1000300 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
254824 5.5 MEDIUM
Local
artifex
debian
mupdf
debian_linux
In Artifex MuPDF 1.12.0 and earlier, multiple use of uninitialized value bugs in the PDF parser could allow an attacker to cause a denial of service (crash) or influence program flow via a crafted fi… CWE-20
 Improper Input Validation 
CVE-2018-1000040 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
254825 7.8 HIGH
Local
artifex mupdf In Artifex MuPDF 1.12.0 and earlier, multiple heap use after free bugs in the PDF parser could allow an attacker to execute arbitrary code, read memory, or cause a denial of service via a crafted fil… CWE-416
 Use After Free
CVE-2018-1000039 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
254826 9.1 CRITICAL
Network
debian
canonical
haxx
redhat
oracle
debian_linux
ubuntu_linux
curl
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_manager_ops_center
peoplesoft_enterprise_peopletools
co…
curl version curl 7.20.0 to and including curl 7.59.0 contains a CWE-126: Buffer Over-read vulnerability in denial of service that can result in curl can be tricked into reading data beyond the end o… CWE-125
Out-of-bounds Read
CVE-2018-1000301 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
254827 5.5 MEDIUM
Local
debian
linux
canonical
redhat
debian_linux
linux_kernel
ubuntu_linux
enterprise_linux_desktop
enterprise_linux
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server_tus
enterpris…
The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modify_user_hw_breakpoint() that can result in crash and possibly memory corruption. This attack appear to be exploitable v… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-1000199 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
254828 9.8 CRITICAL
Network
opennetworking openflow OpenFlow version 1.0 onwards contains a Denial of Service and Improper authorization vulnerability in OpenFlow handshake: The DPID (DataPath IDentifier) in the features_reply message are inherently t… CWE-863
 Incorrect Authorization
CVE-2018-1000155 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
254829 7.8 HIGH
Local
artifex mupdf In Artifex MuPDF 1.12.0 and earlier, a stack buffer overflow in function pdf_lookup_cmap_full in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file. CWE-787
 Out-of-bounds Write
CVE-2018-1000038 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm
254830 5.5 MEDIUM
Local
artifex
debian
mupdf
debian_linux
In Artifex MuPDF 1.12.0 and earlier, multiple reachable assertions in the PDF parser allow an attacker to cause a denial of service (assert crash) via a crafted file. CWE-20
 Improper Input Validation 
CVE-2018-1000037 2024-11-21 12:39 2018-05-24 Show GitHub Exploit DB Packet Storm