Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257881 2.1 注意 アップル - Apple iOS のホームスクリーンコンポーネントにおける重要な状態情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3431 2011-10-24 16:47 2011-10-14 Show GitHub Exploit DB Packet Storm
257882 5 警告 アップル - Apple iOS の UIKit アラートコンポーネントにおけるサービス運用妨害 (デバイスハング) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-3432 2011-10-24 16:46 2011-10-14 Show GitHub Exploit DB Packet Storm
257883 4.3 警告 アップル - Apple iOS の WiFi コンポーネントにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-3434 2011-10-24 16:46 2011-10-14 Show GitHub Exploit DB Packet Storm
257884 4.3 警告 アップル - Apple iOS および Safari で使用される WebKit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3243 2011-10-24 16:43 2011-10-14 Show GitHub Exploit DB Packet Storm
257885 2.1 注意 アップル - Apple iOS のキーボードコンポーネントにおける重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-3245 2011-10-24 16:43 2011-10-14 Show GitHub Exploit DB Packet Storm
257886 2.6 注意 アップル - Apple iOS の CalDAV における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3253 2011-10-24 16:43 2011-10-14 Show GitHub Exploit DB Packet Storm
257887 4.3 警告 アップル - Apple iOS のカレンダーにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3254 2011-10-24 16:42 2011-10-14 Show GitHub Exploit DB Packet Storm
257888 4.3 警告 アップル - Apple iOS の CFNetwork における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理
CVE-2011-3255 2011-10-24 16:33 2011-10-14 Show GitHub Exploit DB Packet Storm
257889 2.1 注意 アップル - Apple iOS の Data Access コンポーネントにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3257 2011-10-24 16:32 2011-10-14 Show GitHub Exploit DB Packet Storm
257890 6.8 警告 アップル - Apple iOS の OfficeImport におけるバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション
CVE-2011-3260 2011-10-24 16:30 2011-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249421 4.8 MEDIUM
Network
getkirby kirby Kirby v2.5.12 allows XSS by using the "site files" Add option to upload an SVG file. CWE-79
Cross-site Scripting
CVE-2018-16630 2024-11-21 12:53 2018-12-29 Show GitHub Exploit DB Packet Storm
249422 6.1 MEDIUM
Network
jenzabar jenzabar Cross-site scripting (XSS) vulnerability in Jenzabar v8.2.1 through 9.2.0 allows remote attackers to inject arbitrary web script or HTML via the query parameter (aka the Search Field). CWE-79
Cross-site Scripting
CVE-2018-16778 2024-11-21 12:53 2018-12-22 Show GitHub Exploit DB Packet Storm
249423 6.1 MEDIUM
Network
getkirby kirby panel/login in Kirby v2.5.12 allows Host header injection via the "forget password" feature. CWE-74
Injection
CVE-2018-16627 2024-11-21 12:53 2018-12-21 Show GitHub Exploit DB Packet Storm
249424 5.5 MEDIUM
Local
fedoraproject sssd sssd versions from 1.13.0 to before 2.0.0 did not properly restrict access to the infopipe according to the "allowed_uids" configuration parameter. If sensitive information were stored in the user di… CWE-200
Information Exposure
CVE-2018-16883 2024-11-21 12:53 2018-12-19 Show GitHub Exploit DB Packet Storm
249425 8.0 HIGH
Adjacent
linux
redhat
debian
canonical
linux_kernel
enterprise_linux
enterprise_mrg
debian_linux
ubuntu_linux
A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process() use wrong back-channel IDs and cause a use-af… - CVE-2018-16884 2024-11-21 12:53 2018-12-19 Show GitHub Exploit DB Packet Storm
249426 7.5 HIGH
Adjacent
swisscom internet-box_standard_firmware
internet-box_light_firmware
internet-box_plus_firmware
internet-box_2_firmware
A stack-based buffer overflow in the LAN UPnP service running on UDP port 1900 of Swisscom Internet-Box (2, Standard, and Plus) prior to v09.04.00 and Internet-Box light prior to v08.05.02 allows rem… CWE-787
 Out-of-bounds Write
CVE-2018-16596 2024-11-21 12:53 2018-12-18 Show GitHub Exploit DB Packet Storm
249427 7.5 HIGH
Network
golang
opensuse
go
leap
The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs … CWE-295
Improper Certificate Validation 
CVE-2018-16875 2024-11-21 12:53 2018-12-14 Show GitHub Exploit DB Packet Storm
249428 8.1 HIGH
Network
golang
opensuse
suse
debian
go
leap
linux_enterprise_server
backports_sle
debian_linux
In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both … - CVE-2018-16874 2024-11-21 12:53 2018-12-14 Show GitHub Exploit DB Packet Storm
249429 8.1 HIGH
Network
golang
opensuse
suse
debian
go
leap
linux_enterprise_server
backports_sle
debian_linux
In Go before 1.10.6 and 1.11.x before 1.11.3, the "go get" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package th… - CVE-2018-16873 2024-11-21 12:53 2018-12-14 Show GitHub Exploit DB Packet Storm
249430 5.3 MEDIUM
Network
qemu
debian
fedoraproject
canonical
opensuse
qemu
debian_linux
fedora
ubuntu_linux
leap
A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn't consider that the… - CVE-2018-16872 2024-11-21 12:53 2018-12-14 Show GitHub Exploit DB Packet Storm