Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257971 6.9 警告 アドビシステムズ - Adobe Reader における権限を取得される脆弱性 CWE-noinfo
情報不足
CVE-2011-1353 2011-10-18 16:23 2011-09-13 Show GitHub Exploit DB Packet Storm
257972 5.8 警告 Adam Kennedy - Perl モジュール Crypt::DSA における署名を偽装される脆弱性 CWE-310
暗号の問題
CVE-2011-3599 2011-10-14 15:50 2011-10-10 Show GitHub Exploit DB Packet Storm
257973 5 警告 株式会社ロックオン - EC-CUBE における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-3988 2011-10-14 14:01 2011-10-14 Show GitHub Exploit DB Packet Storm
257974 6.8 警告 小山浩之 - DBD::mysqlPP における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-3989 2011-10-14 12:02 2011-10-14 Show GitHub Exploit DB Packet Storm
257975 5 警告 Novell - Novell GroupWise の GroupWise Internet Agent (GWIA) におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2219 2011-10-14 10:39 2010-06-30 Show GitHub Exploit DB Packet Storm
257976 5 警告 Novell - Novell GroupWise の GroupWise Internet Agent (GWIA) におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2218 2011-10-14 10:34 2010-06-30 Show GitHub Exploit DB Packet Storm
257977 4.3 警告 phpPgAdmin - phpPgAdmin におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3598 2011-10-14 10:31 2011-10-8 Show GitHub Exploit DB Packet Storm
257978 10 危険 Novell - Novell GroupWise の GroupWise Internet Agent における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2663 2011-10-14 10:30 2011-08-19 Show GitHub Exploit DB Packet Storm
257979 10 危険 Novell - Novell GroupWise の GroupWise Internet Agent における整数符号エラーの脆弱性 CWE-189
数値処理の問題
CVE-2011-2662 2011-10-14 10:28 2011-08-19 Show GitHub Exploit DB Packet Storm
257980 4.3 警告 Novell - Novell GroupWise の WebAccess におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-2661 2011-10-14 10:27 2011-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247171 5.5 MEDIUM
Local
apache tika A carefully crafted (or fuzzed) file can trigger an infinite loop in Apache Tika's BPGParser in versions of Apache Tika before 1.18. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop')
CVE-2018-1338 2024-11-21 12:59 2018-04-26 Show GitHub Exploit DB Packet Storm
247172 8.1 HIGH
Network
apache tika From Apache Tika versions 1.7 to 1.17, clients could send carefully crafted headers to tika-server that could be used to inject commands into the command line of the server running tika-server. This … NVD-CWE-noinfo
CVE-2018-1335 2024-11-21 12:59 2018-04-26 Show GitHub Exploit DB Packet Storm
247173 5.4 MEDIUM
Network
ibm jazz_reporting_service IBM Jazz Reporting Service (JRS) 5.0 through 5.0.2 and 6.0 through 6.0.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus a… CWE-79
Cross-site Scripting
CVE-2018-1363 2024-11-21 12:59 2018-04-25 Show GitHub Exploit DB Packet Storm
247174 8.8 HIGH
Network
gluster glusterfs glusterfs server before versions 3.10.12, 4.0.2 is vulnerable when using 'auth.allow' option which allows any unauthenticated gluster client to connect from any network to mount gluster storage volum… NVD-CWE-noinfo
CVE-2018-1112 2024-11-21 12:59 2018-04-25 Show GitHub Exploit DB Packet Storm
247175 6.1 MEDIUM
Adjacent
canonical
redhat
dpdk
ubuntu_linux
enterprise_linux
openshift
virtualization
enterprise_linux_fast_datapath
virtualization_manager
ceph_storage
openstack
data_plane_development_kit
The DPDK vhost-user interface does not check to verify that all the requested guest physical range is mapped and contiguous when performing Guest Physical Addresses to Host Virtual Addresses translat… CWE-200
Information Exposure
CVE-2018-1059 2024-11-21 12:59 2018-04-25 Show GitHub Exploit DB Packet Storm
247176 5.5 MEDIUM
Local
packagekit_project
redhat
canonical
debian
packagekit
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
ubunt…
An authentication bypass flaw has been found in PackageKit before 1.1.10 that allows users without administrator privileges to install signed packages. A local attacker can use this vulnerability to … CWE-287
Improper Authentication
CVE-2018-1106 2024-11-21 12:59 2018-04-24 Show GitHub Exploit DB Packet Storm
247177 8.1 HIGH
Network
apache fineract Within the 'getReportType' method in Apache Fineract 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, a hacker could inject SQL to read/update data for which he doesn't have authorization… CWE-89
SQL Injection
CVE-2018-1292 2024-11-21 12:59 2018-04-21 Show GitHub Exploit DB Packet Storm
247178 8.1 HIGH
Network
apache fineract Apache Fineract 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating exposes different REST end points to query domain specific entities with a Query Parameter 'orderBy' which are appended dir… CWE-89
SQL Injection
CVE-2018-1291 2024-11-21 12:59 2018-04-21 Show GitHub Exploit DB Packet Storm
247179 9.8 CRITICAL
Network
apache fineract In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, Using a single quotation escape with two continuous SQL parameters can cause a SQL injection. This could be do… CWE-89
SQL Injection
CVE-2018-1290 2024-11-21 12:59 2018-04-21 Show GitHub Exploit DB Packet Storm
247180 8.8 HIGH
Network
apache fineract In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, the system exposes different REST end points to query domain specific entities with a Query Parameter 'orderBy… CWE-89
SQL Injection
CVE-2018-1289 2024-11-21 12:59 2018-04-21 Show GitHub Exploit DB Packet Storm