Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257641 9.3 危険 マイクロソフト - 複数の Microsoft 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0105 2011-05-2 14:19 2011-04-12 Show GitHub Exploit DB Packet Storm
257642 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0979 2011-05-2 14:17 2011-02-10 Show GitHub Exploit DB Packet Storm
257643 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0978 2011-05-2 14:16 2011-02-10 Show GitHub Exploit DB Packet Storm
257644 9.3 危険 マイクロソフト - 複数の Microsoft Office 製品における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0097 2011-05-2 14:14 2011-04-12 Show GitHub Exploit DB Packet Storm
257645 9.3 危険 マイクロソフト - Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0034 2011-05-2 14:14 2011-04-12 Show GitHub Exploit DB Packet Storm
257646 9.3 危険 マイクロソフト - Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0663 2011-05-2 14:13 2011-04-12 Show GitHub Exploit DB Packet Storm
257647 7.5 危険 マイクロソフト - Microsoft Windows の DNS クライアント内にある DNSAPI.dll における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0657 2011-05-2 14:12 2011-04-12 Show GitHub Exploit DB Packet Storm
257648 9.3 危険 マイクロソフト - Microsoft Windows および Office XP の GDI+ 内にある gdiplus.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0041 2011-05-2 14:11 2011-04-12 Show GitHub Exploit DB Packet Storm
257649 9.3 危険 マイクロソフト - Microsoft .NET Framework の x86 JIT コンパイラにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3958 2011-05-2 14:09 2011-04-12 Show GitHub Exploit DB Packet Storm
257650 9.3 危険 マイクロソフト - Microsoft Windows XP の Windows Messenger ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1243 2011-05-2 14:08 2011-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250531 9.8 CRITICAL
Network 		dedecms dedecms DedeCMS through V5.7SP2 allows arbitrary file upload in dede/file_manage_control.php via a dede/file_manage_view.php?fmdo=upload request with an upfile1 parameter, as demonstrated by uploading a .php… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-12045 2024-11-21 12:44 2018-06-8 Show GitHub Exploit DB Packet Storm
250532 7.5 HIGH
Network 		mediatek awus036nh_firmware An issue was discovered on the MediaTek AWUS036NH wireless USB adapter through 5.1.25.0. Attackers can remotely deny service by sending specially constructed 802.11 frames. CWE-20
 Improper Input Validation  		CVE-2018-12041 2024-11-21 12:44 2018-06-8 Show GitHub Exploit DB Packet Storm
250533 6.1 MEDIUM
Network 		getsymphony symphony content/content.blueprintspages.php in Symphony 2.7.6 has XSS via the pages content page. CWE-79
Cross-site Scripting 		CVE-2018-12043 2024-11-21 12:44 2018-06-8 Show GitHub Exploit DB Packet Storm
250534 7.5 HIGH
Network 		roxyfileman roxy_fileman Roxy Fileman through v1.4.5 has Directory traversal via the php/download.php f parameter. CWE-22
Path Traversal 		CVE-2018-12042 2024-11-21 12:44 2018-06-8 Show GitHub Exploit DB Packet Storm
250535 9.8 CRITICAL
Network 		joyplus-cms_project joyplus-cms joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary SQL command execution issue in manager/index.php involving use of a "/!select/" substring in place of a select substring. CWE-89
SQL Injection 		CVE-2018-12039 2024-11-21 12:44 2018-06-8 Show GitHub Exploit DB Packet Storm
250536 7.8 HIGH
Local 		owasp dependency-check OWASP Dependency-Check before 3.2.0 allows attackers to write to arbitrary files via a crafted archive that holds directory traversal filenames. CWE-22
CWE-123
Path Traversal
 Write-what-where Condition 		CVE-2018-12036 2024-11-21 12:44 2018-06-8 Show GitHub Exploit DB Packet Storm
250537 9.8 CRITICAL
Network 		eaton intelligent_power_manager Local file inclusion in Eaton Intelligent Power Manager v1.6 allows an attacker to include a file via server/node_upgrade_srv.js directory traversal with the firmware parameter in a downloadFirmware … CWE-22
Path Traversal 		CVE-2018-12031 2024-11-21 12:44 2018-06-8 Show GitHub Exploit DB Packet Storm
250538 7.5 HIGH
Network 		gnome epiphany libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows remote attackers to cause a denial of service (application crash) via certain window.open and document.write calls. NVD-CWE-noinfo
CVE-2018-12016 2024-11-21 12:44 2018-06-7 Show GitHub Exploit DB Packet Storm
250539 7.5 HIGH
Network 		canonical
debian
perl
archive\
apple
netapp 		ubuntu_linux
debian_linux
perl
\
mac_os_x
snap_creator_framework
data_ontap_edge
snapdrive
oncommand_workflow_automation 		In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink a… CWE-59
Link Following 		CVE-2018-12015 2024-11-21 12:44 2018-06-7 Show GitHub Exploit DB Packet Storm
250540 7.5 HIGH
Network 		ijg libjpeg libjpeg 9c has a large loop because read_pixel in rdtarga.c mishandles EOF. CWE-834
 Excessive Iteration 		CVE-2018-11813 2024-11-21 12:44 2018-06-6 Show GitHub Exploit DB Packet Storm