Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257811 1.7 注意 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-2311 2011-10-27 09:49 2011-10-18 Show GitHub Exploit DB Packet Storm
257812 4.3 警告 オラクル - Oracle Solaris における libnsl の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-2304 2011-10-27 09:49 2011-10-18 Show GitHub Exploit DB Packet Storm
257813 2.4 注意 オラクル - Oracle Solaris における xscreensaver の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-2292 2011-10-27 09:48 2011-10-18 Show GitHub Exploit DB Packet Storm
257814 2.1 注意 オラクル - Oracle Solaris における ZFS の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-2286 2011-10-27 09:47 2011-10-18 Show GitHub Exploit DB Packet Storm
257815 7.8 危険 オラクル - Oracle Sun Products Suite の複数の製品における Web Container の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-3559 2011-10-26 16:43 2011-10-18 Show GitHub Exploit DB Packet Storm
257816 6.5 警告 オラクル - Oracle Database Server の Application Express コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-3525 2011-10-26 16:42 2011-10-18 Show GitHub Exploit DB Packet Storm
257817 5.5 警告 オラクル - Oracle Database Server の Core RDBMS コンポーネントおける脆弱性 CWE-noinfo
情報不足
CVE-2011-3512 2011-10-26 16:42 2011-10-18 Show GitHub Exploit DB Packet Storm
257818 3.6 注意 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-3511 2011-10-26 16:40 2011-10-18 Show GitHub Exploit DB Packet Storm
257819 3.6 注意 オラクル - Oracle Database Server の Database Vault コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-2322 2011-10-26 16:40 2011-10-18 Show GitHub Exploit DB Packet Storm
257820 4.1 警告 オラクル - Oracle Database Server の Oracle Text コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-2301 2011-10-26 16:39 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250071 9.9 CRITICAL
Network
qduoj onlinejudge In OnlineJudge 2.0, the sandbox has an incorrect access control vulnerability that can write a file anywhere. A user can write a directory listing to /tmp, and can leak file data with a #include. CWE-22
Path Traversal
CVE-2018-16367 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250072 8.8 HIGH
Network
idreamsoft icms An issue was discovered in idreamsoft iCMS V7.0.10. admincp.php?app=user&do=save allows CSRF. CWE-352
 Origin Validation Error
CVE-2018-16366 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250073 8.8 HIGH
Network
idreamsoft icms An issue was discovered in idreamsoft iCMS V7.0.10. admincp.php?app=group&do=save allows CSRF. CWE-352
 Origin Validation Error
CVE-2018-16365 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250074 6.1 MEDIUM
Network
mantisbt source_integration An issue was discovered in the Source Integration plugin before 1.5.9 and 2.x before 2.1.5 for MantisBT. A cross-site scripting (XSS) vulnerability in the Manage Repository and Changesets List pages … CWE-79
Cross-site Scripting
CVE-2018-16362 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250075 6.8 MEDIUM
Network
google gvisor Google gVisor before 2018-08-23, within the seccomp sandbox, permits access to the renameat system call, which allows attackers to rename files on the host OS. NVD-CWE-noinfo
CVE-2018-16359 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250076 5.4 MEDIUM
Network
dotclear dotclear A cross-site scripting (XSS) vulnerability in inc/core/class.dc.core.php in the media manager in Dotclear through 2.14.1 allows remote authenticated users to upload HTML content containing an XSS pay… CWE-79
Cross-site Scripting
CVE-2018-16358 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250077 9.8 CRITICAL
Network
fhcrm_project fhcrm An issue was discovered in FHCRM through 2018-02-11. There is a SQL injection via the index.php/User/read limit parameter. CWE-89
SQL Injection
CVE-2018-16354 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250078 9.8 CRITICAL
Network
fhcrm_project fhcrm An issue was discovered in FHCRM through 2018-02-11. There is a SQL injection via the /index.php/Customer/read limit parameter. CWE-89
SQL Injection
CVE-2018-16353 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250079 9.8 CRITICAL
Network
weaselcms_project weaselcms There is a PHP code upload vulnerability in WeaselCMS 0.3.6 via index.php because code can be embedded at the end of a .png file when the image/png content type is used. CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2018-16352 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm
250080 6.1 MEDIUM
Network
wuzhi_cms_project wuzhi_cms WUZHI CMS 4.1.0 has XSS via the index.php?m=core&f=set&v=basic form[statcode] parameter. CWE-79
Cross-site Scripting
CVE-2018-16350 2024-11-21 12:52 2018-09-3 Show GitHub Exploit DB Packet Storm