Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257891 6.8 警告 アップル - Apple iOS の OfficeImport におけるメモリ二重解放の脆弱性 CWE-94
コード・インジェクション
CVE-2011-3261 2011-10-24 16:30 2011-10-14 Show GitHub Exploit DB Packet Storm
257892 - - OneOrZero - OneOrZero AIMS に複数の脆弱性 - - 2011-10-24 11:14 2011-10-14 Show GitHub Exploit DB Packet Storm
257893 7.6 危険 アップル - 複数の Apple 製品で使用される WebKit におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2011-3236 2011-10-24 11:08 2011-10-12 Show GitHub Exploit DB Packet Storm
257894 7.6 危険 アップル - 複数の Apple 製品で使用される WebKit におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2011-3237 2011-10-24 11:08 2011-10-12 Show GitHub Exploit DB Packet Storm
257895 7.6 危険 アップル - Apple iTunes で使用される CoreFoundation におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2011-0259 2011-10-24 11:07 2011-10-12 Show GitHub Exploit DB Packet Storm
257896 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1999 2011-10-21 15:40 2011-10-11 Show GitHub Exploit DB Packet Storm
257897 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1998 2011-10-21 15:39 2011-10-11 Show GitHub Exploit DB Packet Storm
257898 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1997 2011-10-21 15:39 2011-10-11 Show GitHub Exploit DB Packet Storm
257899 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 8 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1996 2011-10-21 15:38 2011-10-11 Show GitHub Exploit DB Packet Storm
257900 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 9 における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1995 2011-10-21 15:35 2011-10-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251481 9.8 CRITICAL
Network
joyplus-cms_project joyplus-cms joyplus-cms 1.6.0 has SQL Injection via the manager/admin_ajax.php val parameter. CWE-89
SQL Injection
CVE-2018-14389 2024-11-21 12:48 2018-07-19 Show GitHub Exploit DB Packet Storm
251482 5.4 MEDIUM
Network
joyplus-cms_project joyplus-cms joyplus-cms 1.6.0 has XSS via the manager/admin_ajax.php can_search_device array parameter. CWE-79
Cross-site Scripting
CVE-2018-14388 2024-11-21 12:48 2018-07-19 Show GitHub Exploit DB Packet Storm
251483 8.8 HIGH
Network
wondercms wondercms An issue was discovered in WonderCMS before 2.5.2. An attacker can create a new session on a web application and record the associated session identifier. The attacker then causes the victim to authe… CWE-384
 Session Fixation
CVE-2018-14387 2024-11-21 12:48 2018-07-19 Show GitHub Exploit DB Packet Storm
251484 9.8 CRITICAL
Network
gitlab gitlab GitLab Community and Enterprise Edition before 10.7.7, 10.8.x before 10.8.6, and 11.x before 11.0.4 allows Directory Traversal with write access and resultant remote code execution via the GitLab pro… CWE-22
Path Traversal
CVE-2018-14364 2024-11-21 12:48 2018-07-19 Show GitHub Exploit DB Packet Storm
251485 5.4 MEDIUM
Network
freelancewebdesignerchennai job_portal PHP Scripts Mall JOB SITE (aka Job Portal) 3.0.1 has Cross-site Scripting (XSS) via the search bar. CWE-79
Cross-site Scripting
CVE-2018-14082 2024-11-21 12:48 2018-07-19 Show GitHub Exploit DB Packet Storm
251486 6.1 MEDIUM
Network
instantcms instantcms InstantCMS 2.10.1 has /redirect?url= XSS. CWE-79
Cross-site Scripting
CVE-2018-14382 2024-11-21 12:48 2018-07-19 Show GitHub Exploit DB Packet Storm
251487 6.1 MEDIUM
Network
pagekit pagekit Pagekit before 1.0.14 has a /user/login?redirect= open redirect vulnerability. CWE-601
Open Redirect
CVE-2018-14381 2024-11-21 12:48 2018-07-19 Show GitHub Exploit DB Packet Storm
251488 6.1 MEDIUM
Network
graylog graylog In Graylog before 2.4.6, XSS was possible in typeahead components, related to components/common/TypeAheadInput.jsx and components/search/QueryInput.ts. CWE-79
Cross-site Scripting
CVE-2018-14380 2024-11-21 12:48 2018-07-19 Show GitHub Exploit DB Packet Storm
251489 7.5 HIGH
Network
eclipse mojarra The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Ja… CWE-22
Path Traversal
CVE-2018-14371 2024-11-21 12:48 2018-07-18 Show GitHub Exploit DB Packet Storm
251490 8.8 HIGH
Network
techsmith mp4v2 MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a certain case where MP4DataAtom is required, which allows remote attackers to cause a denial of service (… CWE-704
 Incorrect Type Conversion or Cast
CVE-2018-14379 2024-11-21 12:48 2018-07-18 Show GitHub Exploit DB Packet Storm