Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257341 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey におけるコンテンツを偽装される脆弱性 CWE-Other
その他 		CVE-2009-3985 2010-01-29 09:53 2009-12-15 Show GitHub Exploit DB Packet Storm
257342 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey における http URL または file URL の SSL インジケータを偽装される脆弱性 CWE-Other
その他 		CVE-2009-3984 2010-01-29 09:53 2009-12-15 Show GitHub Exploit DB Packet Storm
257343 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - Mozilla Firefox/SeaMonkey における認証されたリクエストを任意のアプリケーションに送信される脆弱性 CWE-Other
その他 		CVE-2009-3983 2010-01-29 09:53 2009-12-15 Show GitHub Exploit DB Packet Storm
257344 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の libtheora における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-3389 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
257345 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の liboggplay における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3388 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
257346 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3982 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
257347 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3981 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
257348 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3980 2010-01-28 12:15 2009-12-15 Show GitHub Exploit DB Packet Storm
257349 10 危険 アドビシステムズ - Adobe Flash Media Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3792 2010-01-27 10:02 2009-12-18 Show GitHub Exploit DB Packet Storm
257350 5 警告 アドビシステムズ - Adobe Flash Media Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3791 2010-01-27 10:02 2009-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
246751 8.8 HIGH
Network 		videolan vlc_media_player The vlc_demux_chained_Delete function in input/demux_chained.c in VideoLAN VLC media player 3.0.1 allows remote attackers to cause a denial of service (heap corruption and application crash) or possi… CWE-416
 Use After Free 		CVE-2018-11516 2024-11-21 12:43 2018-05-29 Show GitHub Exploit DB Packet Storm
246752 5.4 MEDIUM
Network 		moderator_log_notes_project moderator_log_notes An issue was discovered in the Moderator Log Notes plugin 1.1 for MyBB. It allows moderators to save notes and display them in a list in the modCP. The XSS is located in the mod notes textarea. CWE-79
Cross-site Scripting 		CVE-2018-11430 2024-11-21 12:43 2018-05-29 Show GitHub Exploit DB Packet Storm
246753 9.8 CRITICAL
Network 		membermouse membermouse Blind SQL injection in coupon_code in the MemberMouse plugin 2.2.8 and prior for WordPress allows an unauthenticated attacker to dump the WordPress MySQL database via an applyCoupon action in an admi… CWE-89
SQL Injection 		CVE-2018-11309 2024-11-21 12:43 2018-05-29 Show GitHub Exploit DB Packet Storm
246754 9.8 CRITICAL
Network 		gvectors wpforo The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter. CWE-89
SQL Injection 		CVE-2018-11515 2024-11-21 12:43 2018-05-28 Show GitHub Exploit DB Packet Storm
246755 8.8 HIGH
Network 		naukri_clone_script_project naukri_clone_script PHP Scripts Mall Naukri Clone Script through 3.0.3 allows Unrestricted Upload of a File with a Dangerous Type in edit_resume_det.php, as demonstrated by changing .docx to .php. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-11514 2024-11-21 12:43 2018-05-28 Show GitHub Exploit DB Packet Storm
246756 4.8 MEDIUM
Network 		creatiwity witycms Stored cross-site scripting (XSS) vulnerability in the "Website's name" field found in the "Settings" page under the "General" menu in Creatiwity wityCMS 0.6.1 allows remote attackers to inject arbit… CWE-79
Cross-site Scripting 		CVE-2018-11512 2024-11-21 12:43 2018-05-28 Show GitHub Exploit DB Packet Storm
246757 5.5 MEDIUM
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex. CWE-200
Information Exposure 		CVE-2018-11508 2024-11-21 12:43 2018-05-28 Show GitHub Exploit DB Packet Storm
246758 6.5 MEDIUM
Network 		flif flif An issue was discovered in Free Lossless Image Format (FLIF) 0.3. An attacker can trigger a long loop in image_load_pnm in image/image-pnm.cpp. CWE-834
 Excessive Iteration 		CVE-2018-11507 2024-11-21 12:43 2018-05-28 Show GitHub Exploit DB Packet Storm
246759 7.8 HIGH
Local 		linux
canonical
debian 		linux_kernel
ubuntu_linux
debian_linux 		The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified othe… CWE-787
 Out-of-bounds Write 		CVE-2018-11506 2024-11-21 12:43 2018-05-28 Show GitHub Exploit DB Packet Storm
246760 7.5 HIGH
Network 		werewolf_online_project werewolf_online The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output. CWE-200
Information Exposure 		CVE-2018-11505 2024-11-21 12:43 2018-05-27 Show GitHub Exploit DB Packet Storm