Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257581 8.5 危険 DELL EMC (旧 EMC Corporation) - EMC Documentum eRoom のファイルブロック機能における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-2739 2011-11-14 15:43 2011-11-9 Show GitHub Exploit DB Packet Storm
257582 1.5 注意 IBM - UNIX 上で動作する IBM DB2 におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-1373 2011-11-14 15:42 2011-11-9 Show GitHub Exploit DB Packet Storm
257583 9.3 危険 Investintech.com Inc. - Investintech.com Able2Doc および Able2Doc Professional におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2011-4221 2011-11-14 12:23 2011-11-1 Show GitHub Exploit DB Packet Storm
257584 7.2 危険 Schneider Electric - 複数の Schneider Electric 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-3330 2011-11-14 12:23 2011-09-21 Show GitHub Exploit DB Packet Storm
257585 5 警告 Mozilla Foundation - Mozilla Firefox および Thunderbird における同一生成元ポリシーを回避される脆弱性 CWE-200
情報漏えい
CVE-2011-3653 2011-11-14 11:45 2011-11-8 Show GitHub Exploit DB Packet Storm
257586 2.6 注意 Mozilla Foundation - Mozilla Firefox および Thunderbird における同一生成元ポリシーを回避される脆弱性 CWE-200
情報漏えい
CVE-2011-3649 2011-11-14 11:39 2011-11-8 Show GitHub Exploit DB Packet Storm
257587 10 危険 アドビシステムズ - Adobe Shockwave Player の TextXtra モジュールにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2449 2011-11-14 11:36 2011-11-8 Show GitHub Exploit DB Packet Storm
257588 10 危険 アドビシステムズ - Adobe Shockwave Player の DIRapi ライブラリにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2448 2011-11-14 11:35 2011-11-8 Show GitHub Exploit DB Packet Storm
257589 10 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2447 2011-11-14 11:34 2011-11-8 Show GitHub Exploit DB Packet Storm
257590 10 危険 アドビシステムズ - Adobe Shockwave Player の DIRapi ライブラリにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2446 2011-11-14 11:24 2011-11-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248381 6.1 MEDIUM
Network
xheditor xheditor xhEditor 1.2.2 allows XSS via JavaScript code in the SRC attribute of an IFRAME element within the editor's source-code view. CWE-79
Cross-site Scripting
CVE-2018-18909 2024-11-21 12:56 2018-11-4 Show GitHub Exploit DB Packet Storm
248382 9.8 CRITICAL
Network
vanillaforums vanilla Vanilla 2.6.x before 2.6.4 allows remote code execution. CWE-94
Code Injection
CVE-2018-18903 2024-11-21 12:56 2018-11-3 Show GitHub Exploit DB Packet Storm
248383 6.5 MEDIUM
Network
exiv2 exiv2 There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in Exiv2 0.27-RC1. A crafted input will lead to a remote denial of service attack. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop')
CVE-2018-18915 2024-11-21 12:56 2018-11-3 Show GitHub Exploit DB Packet Storm
248384 6.5 MEDIUM
Network
freedesktop
debian
canonical
redhat
poppler
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux
enterprise_linux_eus
enterprise_linux_server_t…
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo. CWE-772
 Missing Release of Resource after Effective Lifetime
CVE-2018-18897 2024-11-21 12:56 2018-11-2 Show GitHub Exploit DB Packet Storm
248385 4.3 MEDIUM
Network
microstrategy microstrategy_web Directory traversal vulnerability in Microstrategy Web, version 7, in "/WebMstr7/servlet/mstrWeb" (in the parameter subpage) allows remote authenticated users to bypass intended SecurityManager restr… CWE-22
Path Traversal
CVE-2018-18777 2024-11-21 12:56 2018-11-2 Show GitHub Exploit DB Packet Storm
248386 6.1 MEDIUM
Network
microstrategy microstrategy_web Microstrategy Web, version 7, does not sufficiently encode user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability via the admin/admin.asp ShowAll parameter. NOTE: this is a … CWE-79
Cross-site Scripting
CVE-2018-18776 2024-11-21 12:56 2018-11-2 Show GitHub Exploit DB Packet Storm
248387 6.1 MEDIUM
Network
microstrategy microstrategy_web Microstrategy Web, version 7, does not sufficiently encode user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability via the Login.asp Msg parameter. NOTE: this is a deprecated… CWE-79
Cross-site Scripting
CVE-2018-18775 2024-11-21 12:56 2018-11-2 Show GitHub Exploit DB Packet Storm
248388 7.8 HIGH
Local
iobit malware_fighter RegFilter.sys in IOBit Malware Fighter 6.2 and earlier is susceptible to a stack-based buffer overflow when an attacker uses IOCTL 0x8006E010. This can lead to denial of service (DoS) or code executi… CWE-787
 Out-of-bounds Write
CVE-2018-18714 2024-11-21 12:56 2018-11-2 Show GitHub Exploit DB Packet Storm
248389 7.8 HIGH
Local
m2soft report_designer M2SOFT Report Designer Viewer 5.0 allows a Buffer Overflow with Extended Instruction Pointer (EIP) control via a crafted MRD file. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-18695 2024-11-21 12:56 2018-11-2 Show GitHub Exploit DB Packet Storm
248390 9.8 CRITICAL
Network
1234n minicms MiniCMS 1.10 allows execution of arbitrary PHP code via the install.php sitename parameter, which affects the site_name field in mc_conf.php. CWE-94
Code Injection
CVE-2018-18892 2024-11-21 12:56 2018-11-1 Show GitHub Exploit DB Packet Storm