Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257421	4.3	警告	バラクーダネットワークス	-	Barracuda Spam Firewall の ldap_test.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2333	2011-06-6 14:20	2008-05-22	Show	GitHub Exploit DB Packet Storm

257422	10	危険	7-Technologies	-	7-Technologies Interactive Graphical SCADA System の logText 関数における任意のコードを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2011-1568	2011-06-6 14:19	2011-04-5	Show	GitHub Exploit DB Packet Storm

257423	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-0075	2011-06-6 13:56	2011-04-28	Show	GitHub Exploit DB Packet Storm

257424	5	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Windows 上で稼働する複数の Mozilla 製品におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0071	2011-06-6 10:36	2011-04-28	Show	GitHub Exploit DB Packet Storm

257425	5	警告	サイバートラスト株式会社 Mozilla Foundation	-	Mozilla Firefox および SeaMonkey におけるフォームの入力履歴を読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2011-0067	2011-06-6 10:35	2011-04-28	Show	GitHub Exploit DB Packet Storm

257426	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox および SeaMonkey における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0073	2011-06-6 10:34	2011-04-28	Show	GitHub Exploit DB Packet Storm

257427	9.3	危険	サン・マイクロシステムズ The GIMP Team レッドハット	-	GIMP の ReadImage 関数における任意のコードを実行される脆弱性	CWE-189 数値処理の問題	CVE-2009-1570	2011-06-6 10:20	2009-11-13	Show	GitHub Exploit DB Packet Storm

257428	2.1	注意	Skype Technologies S.A.	-	Skype for Android における個人情報を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1717	2011-06-3 10:25	2011-04-18	Show	GitHub Exploit DB Packet Storm

257429	7.2	危険	Google	-	Android におけるアプリケーションサンドボックスを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1149	2011-06-3 10:24	2011-04-21	Show	GitHub Exploit DB Packet Storm

257430	10	危険	Google	-	Google Chrome の GPU プロセスにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-1301	2011-06-3 10:21	2011-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246001	9.8	CRITICAL Network	dlink	dsl-2770l_firmware	atbox.htm on D-Link DSL-2770L devices allows remote unauthenticated attackers to discover admin credentials.	CWE-798 Use of Hard-coded Credentials	CVE-2018-18007	2024-11-21 12:55	2018-12-22	Show	GitHub Exploit DB Packet Storm

246002	7.5	HIGH Network	trendmicro	officescan	A Trend Micro OfficeScan XG weak file permissions vulnerability may allow an attacker to potentially manipulate permissions on some key files to modify other files and folders on vulnerable installat…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-18332	2024-11-21 12:55	2018-12-22	Show	GitHub Exploit DB Packet Storm

246003	7.5	HIGH Network	trendmicro	officescan	A Trend Micro OfficeScan XG weak file permissions vulnerability on a particular folder for a particular group may allow an attacker to alter the files, which could lead to other exploits on vulnerabl…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-18331	2024-11-21 12:55	2018-12-22	Show	GitHub Exploit DB Packet Storm

246004	6.5	MEDIUM Network	trendmicro	dr._safety	An Address Bar Spoofing vulnerability in Trend Micro Dr. Safety for Android (Consumer) versions 3.0.1324 and below could allow an attacker to potentially trick a victim into visiting a malicious URL …	NVD-CWE-noinfo	CVE-2018-18330	2024-11-21 12:55	2018-12-22	Show	GitHub Exploit DB Packet Storm

246005	7.5	HIGH Network	d-link	dcs-825l_firmware	D-Link DCS-825L devices with firmware 1.08 do not employ a suitable mechanism to prevent denial-of-service (DoS) attacks. An attacker can harm the device availability (i.e., live-online video/audio s…	NVD-CWE-noinfo	CVE-2018-18442	2024-11-21 12:55	2018-12-21	Show	GitHub Exploit DB Packet Storm

246006	7.5	HIGH Network	d-link dlink	dcs-936l_firmware dcs-942l_firmware dcs-8000lh_firmware dcs-942lb1_firmware dcs-5222l_firmware dcs-825l_firmware dcs-2630l_firmware dcs-820l_firmware dcs-855l_firmware dcs-…	D-Link DCS series Wi-Fi cameras expose sensitive information regarding the device configuration. The affected devices include many of DCS series, such as: DCS-936L, DCS-942L, DCS-8000LH, DCS-942LB1, …	CWE-200 Information Exposure	CVE-2018-18441	2024-11-21 12:55	2018-12-21	Show	GitHub Exploit DB Packet Storm

246007	9.8	CRITICAL Network	jco	karma	SQL injection vulnerability in the "ContentPlaceHolder1_uxTitle" component in ArchiveNews.aspx in jco.ir KARMA 6.0.0 allows a remote attacker to execute arbitrary SQL commands via the "id" parameter.	CWE-89 SQL Injection	CVE-2018-18399	2024-11-21 12:55	2018-12-21	Show	GitHub Exploit DB Packet Storm

246008	9.8	CRITICAL Network	escanav	escan_anti-virus	eScan Agent Application (MWAGENT.EXE) 4.0.2.98 in MicroWorld Technologies eScan 14.0 allows remote or local attackers to execute arbitrary commands by sending a carefully crafted payload to TCP port …	NVD-CWE-noinfo	CVE-2018-18388	2024-11-21 12:55	2018-12-21	Show	GitHub Exploit DB Packet Storm

246009	7.5	HIGH Network	icinga	icinga_web_2	Icinga Web 2 before 2.6.2 allows parameters that break navigation dashlets, as demonstrated by a single '$' character as the Name of a Navigation item.	CWE-74 Injection	CVE-2018-18250	2024-11-21 12:55	2018-12-18	Show	GitHub Exploit DB Packet Storm

246010	9.8	CRITICAL Network	icinga	icinga_web_2	Icinga Web 2 before 2.6.2 allows injection of PHP ini-file directives via vectors involving environment variables as the channel to send information to the attacker, such as a name=${PATH}_${APACHE_R…	CWE-94 Code Injection	CVE-2018-18249	2024-11-21 12:55	2018-12-18	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed