Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257301 4.3 警告 Phorum - Phorum の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4561 2011-11-30 16:24 2011-11-28 Show GitHub Exploit DB Packet Storm
257302 3.5 注意 Drupal - Drupal の Petition Node モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4560 2011-11-30 16:23 2011-10-5 Show GitHub Exploit DB Packet Storm
257303 7.5 危険 Vtiger - vTiger CRM の Calendar モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-4559 2011-11-30 16:22 2011-11-28 Show GitHub Exploit DB Packet Storm
257304 4.3 警告 Contao - Contao におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4335 2011-11-29 16:28 2011-11-28 Show GitHub Exploit DB Packet Storm
257305 4.3 警告 Dolibarr ERP & CRM - Dolibarr におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4329 2011-11-29 16:27 2011-11-8 Show GitHub Exploit DB Packet Storm
257306 4.3 警告 Ruby on Rails project - Ruby on Rails におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4319 2011-11-29 16:26 2011-11-28 Show GitHub Exploit DB Packet Storm
257307 4.3 警告 Combodo - Combodo iTop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4275 2011-11-29 16:23 2011-11-26 Show GitHub Exploit DB Packet Storm
257308 9.3 危険 SunPlus Electronics - DVR Remote ActiveX コントロールの DVRemoteAx.ax における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2011-3828 2011-11-29 16:22 2011-11-26 Show GitHub Exploit DB Packet Storm
257309 6.8 警告 IBM - IBM TS3100 および TS3200 テープ・ライブラリにおける認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2011-1372 2011-11-29 16:15 2011-11-23 Show GitHub Exploit DB Packet Storm
257310 1.9 注意 ヒューレット・パッカード
IBM
- IBM WebSphere MQ における listener プロセス強制終了の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1378 2011-11-29 16:14 2011-11-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246041 7.5 HIGH
Network
xerox workcentre_3655i_firmware
workcentre_3655_firmware
workcentre_5890i_firmware
workcentre_5865i_firmware
workcentre_5875i_firmware
workcentre_5845_firmware
workcentre_5865_firmware
An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. The… CWE-22
Path Traversal
CVE-2018-20769 2024-11-21 13:02 2019-02-11 Show GitHub Exploit DB Packet Storm
246042 9.8 CRITICAL
Network
xerox workcentre_3655i_firmware
workcentre_3655_firmware
workcentre_5890i_firmware
workcentre_5865i_firmware
workcentre_5875i_firmware
workcentre_5845_firmware
workcentre_5865_firmware
An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. An … CWE-94
Code Injection
CVE-2018-20768 2024-11-21 13:02 2019-02-11 Show GitHub Exploit DB Packet Storm
246043 8.8 HIGH
Network
xerox workcentre_3655i_firmware
workcentre_3655_firmware
workcentre_5890i_firmware
workcentre_5865i_firmware
workcentre_5875i_firmware
workcentre_5845_firmware
workcentre_5865_firmware
An issue was discovered on Xerox WorkCentre 3655, 3655i, 58XX, 58XXi, 59XX, 59XXi, 6655, 6655i, 72XX, 72XXi, 78XX, 78XXi, 7970, 7970i, EC7836, and EC7856 devices before R18-05 073.xxx.0487.15000. The… CWE-20
 Improper Input Validation 
CVE-2018-20767 2024-11-21 13:02 2019-02-11 Show GitHub Exploit DB Packet Storm
246044 9.8 CRITICAL
Network
helpsystems boks A buffer overflow exists in HelpSystems tcpcrypt on Linux, used for BoKS encrypted telnet through BoKS version 6.7.1. Since tcpcrypt is setuid, exploitation leads to privilege escalation. NVD-CWE-noinfo
CVE-2018-20764 2024-11-21 13:02 2019-02-9 Show GitHub Exploit DB Packet Storm
246045 7.8 HIGH
Local
gpac_project
debian
canonical
gpac
debian_linux
ubuntu_linux
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because of missing szLineConv bounds checking. CWE-787
 Out-of-bounds Write
CVE-2018-20763 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246046 7.8 HIGH
Local
gpac_project
debian
canonical
gpac
debian_linux
ubuntu_linux
GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-20762 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246047 7.8 HIGH
Local
gpac_project
debian
canonical
gpac
debian_linux
ubuntu_linux
GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-20761 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246048 7.8 HIGH
Local
gpac
debian
canonical
gpac
debian_linux
ubuntu_linux
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled. CWE-787
 Out-of-bounds Write
CVE-2018-20760 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246049 5.4 MEDIUM
Network
modx modx_revolution MODX Revolution through v2.7.0-pl allows XSS via User Settings such as Description. CWE-79
Cross-site Scripting
CVE-2018-20758 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm
246050 6.1 MEDIUM
Network
modx modx_revolution MODX Revolution through v2.7.0-pl allows XSS via an extended user field such as Container name or Attribute name. CWE-79
Cross-site Scripting
CVE-2018-20757 2024-11-21 13:02 2019-02-7 Show GitHub Exploit DB Packet Storm