Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257841 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2011-3221 2011-10-26 09:41 2011-10-14 Show GitHub Exploit DB Packet Storm
257842 6.8 警告 Django Software Foundation - Django の CSRF 保護メカニズムにおける認証されずに偽造されたリクエストを誘発される脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-4140 2011-10-25 16:54 2011-09-9 Show GitHub Exploit DB Packet Storm
257843 5 警告 Django Software Foundation - Django におけるキャッシュポイズニング攻撃を誘発される脆弱性 CWE-20
不適切な入力確認
CVE-2011-4139 2011-10-25 16:54 2011-09-9 Show GitHub Exploit DB Packet Storm
257844 5 警告 Django Software Foundation - Django の URLField 実装内にある verify_exists 機能における任意の GET リクエストを誘発される脆弱性 CWE-20
不適切な入力確認
CVE-2011-4138 2011-10-25 16:53 2011-09-9 Show GitHub Exploit DB Packet Storm
257845 5 警告 Django Software Foundation - Django の URLField 実装内にある verify_exists 機能におけるサービス運用妨害 (リソース消費) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-4137 2011-10-25 16:53 2011-09-9 Show GitHub Exploit DB Packet Storm
257846 5.8 警告 Django Software Foundation - Django の django.contrib.sessions におけるセッションを変更される脆弱性 CWE-20
不適切な入力確認
CVE-2011-4136 2011-10-25 16:52 2011-09-9 Show GitHub Exploit DB Packet Storm
257847 4.3 警告 シスコシステムズ - Cisco TelePresence Video Communication Servers の管理インターフェイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3294 2011-10-25 16:50 2011-10-12 Show GitHub Exploit DB Packet Storm
257848 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2011-3162 2011-10-25 16:50 2011-10-18 Show GitHub Exploit DB Packet Storm
257849 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2011-3161 2011-10-25 16:49 2011-10-18 Show GitHub Exploit DB Packet Storm
257850 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2011-3160 2011-10-25 16:48 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251591 9.8 CRITICAL
Network
hdfgroup hdf5 An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in H5Olink.c. CWE-125
Out-of-bounds Read
CVE-2018-13870 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251592 9.8 CRITICAL
Network
hdfgroup hdf5 An issue was discovered in the HDF HDF5 1.8.20 library. There is a memcpy parameter overlap in the function H5O_link_decode in H5Olink.c. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-13869 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251593 9.8 CRITICAL
Network
hdfgroup hdf5 An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in H5Ofill.c. CWE-125
Out-of-bounds Read
CVE-2018-13868 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251594 9.8 CRITICAL
Network
hdfgroup hdf5 An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5F__accum_read in H5Faccum.c. CWE-125
Out-of-bounds Read
CVE-2018-13867 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251595 9.8 CRITICAL
Network
hdfgroup hdf5 An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5F_addr_decode_len in H5Fint.c. CWE-125
Out-of-bounds Read
CVE-2018-13866 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251596 6.1 MEDIUM
Network
idreamsoft icms An issue was discovered in idreamsoft iCMS 7.0.9. XSS exists via the callback parameter in a public/api.php uploadpic request, bypassing the iWAF protection mechanism. CWE-79
Cross-site Scripting
CVE-2018-13865 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251597 7.5 HIGH
Network
mongodb js-bson The MongoDB bson JavaScript module (also known as js-bson) versions 0.5.0 to 1.0.x before 1.0.5 is vulnerable to a Regular Expression Denial of Service (ReDoS) in lib/bson/decimal128.js. The flaw is … NVD-CWE-noinfo
CVE-2018-13863 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251598 9.8 CRITICAL
Network
icanstudioz firebase_push_notification_on_ios_\/_fcm_\+_advance_admin_panel The "Firebase Cloud Messaging (FCM) + Advance Admin Panel" component supporting Firebase Push Notification on iOS (through 2017-10-26) allows SQL injection via the /advance_push/public/login username… CWE-89
SQL Injection
CVE-2018-13850 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251599 6.1 MEDIUM
Network
instagram-clone_project instagram-clone edit_requests.php in yTakkar Instagram-clone through 2018-04-23 has XSS via an onmouseover payload because of an inadequate XSS protection mechanism based on preg_replace. CWE-79
Cross-site Scripting
CVE-2018-13849 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm
251600 7.5 HIGH
Network
axiosys bento4 An issue has been found in Bento4 1.5.1-624. It is a SEGV in AP4_StszAtom::GetSampleSize in Core/Ap4StszAtom.cpp. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-13848 2024-11-21 12:48 2018-07-11 Show GitHub Exploit DB Packet Storm