Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257441 6.9 警告 VMware - Windows 上で稼働する複数の VMware 製品の VMCI における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2008-2099 2010-09-13 16:00 2008-05-30 Show GitHub Exploit DB Packet Storm
257442 6.9 警告 VMware - 複数の VMware 製品の HGFS におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2098 2010-09-13 16:00 2008-05-30 Show GitHub Exploit DB Packet Storm
257443 5 警告 VMware - 複数の VMware 製品の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-4811 2010-09-13 16:00 2010-04-27 Show GitHub Exploit DB Packet Storm
257444 7.2 危険 VMware - Windows 上で稼働する複数の VMware 製品の OpenProcess 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3698 2010-09-13 15:59 2008-08-29 Show GitHub Exploit DB Packet Storm
257445 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3696 2010-09-13 15:59 2008-08-28 Show GitHub Exploit DB Packet Storm
257446 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3695 2010-09-13 15:59 2008-08-28 Show GitHub Exploit DB Packet Storm
257447 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3694 2010-09-13 15:58 2008-08-28 Show GitHub Exploit DB Packet Storm
257448 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3693 2010-09-13 15:58 2008-08-28 Show GitHub Exploit DB Packet Storm
257449 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3692 2010-09-13 15:58 2008-08-28 Show GitHub Exploit DB Packet Storm
257450 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3691 2010-09-13 15:58 2008-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247641 6.1 MEDIUM
Network 		myadrenalin adrenalin A Reflected Cross Site Scripting (XSS) vulnerability exists in Adrenalin HRMS 5.4.0. An attacker can input malicious JavaScript code in /RPT/SSRSDynamicEditReports.aspx via 'ReportId' parameter. CWE-79
Cross-site Scripting 		CVE-2018-12653 2024-11-21 12:45 2019-03-26 Show GitHub Exploit DB Packet Storm
247642 6.1 MEDIUM
Network 		myadrenalin adrenalin A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in Adrenalin 5.4 HRMS Software. The user supplied input containing JavaScript is echoed back in JavaScript code in an HTML response… CWE-79
Cross-site Scripting 		CVE-2018-12652 2024-11-21 12:45 2019-03-26 Show GitHub Exploit DB Packet Storm
247643 6.1 MEDIUM
Network 		bose soundtouch An issue was discovered in the Bose Soundtouch app 18.1.4 for iOS. There is no frontend input validation of the device name. A malicious device name can execute JavaScript on the registered Bose User… CWE-79
Cross-site Scripting 		CVE-2018-12638 2024-11-21 12:45 2019-03-22 Show GitHub Exploit DB Packet Storm
247644 7.8 HIGH
Local 		avast free_antivirus Avast Free Antivirus prior to 19.1.2360 stores user credentials in memory upon login, which allows local users to obtain sensitive information by dumping AvastUI.exe application memory and parsing th… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2018-12572 2024-11-21 12:45 2019-03-22 Show GitHub Exploit DB Packet Storm
247645 9.8 CRITICAL
Network 		mozilla
canonical 		firefox
ubuntu_linux 		A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content, when working with the VertexBuffer11 module. This results in a potentially explo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12407 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
247646 8.8 HIGH
Network 		mozilla
canonical 		firefox
ubuntu_linux 		Mozilla developers and community members reported memory safety bugs present in Firefox 63. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12406 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
247647 5.3 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		If a site is loaded over a HTTPS connection but loads a favicon resource over HTTP, the mixed content warning is not displayed to users. This vulnerability affects Firefox < 63. NVD-CWE-noinfo
CVE-2018-12403 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
247648 9.8 CRITICAL
Network 		mozilla
debian
canonical
redhat 		firefox
thunderbird
firefox_esr
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterpri… 		Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bugs showed evidence of memory corruption and we presume that with enoug… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-12405 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
247649 6.5 MEDIUM
Network 		mozilla
canonical 		firefox
ubuntu_linux 		The internal WebBrowserPersist code does not use correct origin context for a resource being saved. This manifests when sub-resources are loaded as part of "Save Page As..." functionality. For exampl… CWE-346
 Origin Validation Error 		CVE-2018-12402 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm
247650 7.5 HIGH
Network 		mozilla
canonical 		firefox
ubuntu_linux 		Some special resource URIs will cause a non-exploitable crash if loaded with optional parameters following a '?' in the parsed string. This could lead to denial of service (DOS) attacks. This vulnera… CWE-20
 Improper Input Validation  		CVE-2018-12401 2024-11-21 12:45 2019-03-1 Show GitHub Exploit DB Packet Storm