Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258041 7.5 危険 AliBabaClone.com - Alibaba Clone B2B の countrydetails.php におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4849 2011-09-30 14:24 2011-09-27 Show GitHub Exploit DB Packet Storm
258042 4.3 警告 Diferior - Diferior におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4850 2011-09-30 14:22 2011-09-27 Show GitHub Exploit DB Packet Storm
258043 7.5 危険 Eclime - Eclime における複数の SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4851 2011-09-30 14:19 2011-09-27 Show GitHub Exploit DB Packet Storm
258044 4.3 警告 Eclime - Eclime の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4852 2011-09-30 14:15 2011-09-27 Show GitHub Exploit DB Packet Storm
258045 7.5 危険 Zoho Corporation - ManageEngine EventLog Analyzer の Syslog サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4840 2011-09-30 14:13 2011-09-27 Show GitHub Exploit DB Packet Storm
258046 4.3 警告 Zoho Corporation - ManageEngine EventLog Analyzer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4841 2011-09-30 14:13 2011-09-27 Show GitHub Exploit DB Packet Storm
258047 4.3 警告 AXScripts - AXScripts AxsLinks の addlink.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4848 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
258048 7.5 危険 MH Products - MH Products MHP Downloadshop の view_item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4847 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
258049 7.5 危険 MH Products - MH Products Pay Pal Shop Digital の view_item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4846 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
258050 7.5 危険 MH Products - MH Products Projekt Shop における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4845 2011-09-30 14:10 2011-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
249491 6.5 MEDIUM
Network
otrs
debian
open_ticket_request_system
debian_linux
In Open Ticket Request System (OTRS) 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a user with admin permissions op… CWE-20
 Improper Input Validation 
CVE-2018-16587 2024-11-21 12:53 2018-09-28 Show GitHub Exploit DB Packet Storm
249492 6.5 MEDIUM
Network
iobit advanced_systemcare IObit Advanced SystemCare, which includes Monitor_win10_x64.sys or Monitor_win7_x64.sys, 1.2.0.5 (and possibly earlier versions) allows a user to send an IOCTL (0x9C402084) with a buffer containing u… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-16713 2024-11-21 12:53 2018-09-27 Show GitHub Exploit DB Packet Storm
249493 6.5 MEDIUM
Network
iobit advanced_systemcare IObit Advanced SystemCare, which includes Monitor_win10_x64.sys or Monitor_win7_x64.sys, 1.2.0.5 (and possibly earlier versions) allows a user to send a specially crafted IOCTL 0x9C406104 to read phy… CWE-200
Information Exposure
CVE-2018-16712 2024-11-21 12:53 2018-09-27 Show GitHub Exploit DB Packet Storm
249494 8.8 HIGH
Network
iobit advanced_systemcare IObit Advanced SystemCare, which includes Monitor_win10_x64.sys or Monitor_win7_x64.sys, 1.2.0.5 (and possibly earlier versions) allows a user to send an IOCTL (0x9C402088) with a buffer containing u… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-16711 2024-11-21 12:53 2018-09-27 Show GitHub Exploit DB Packet Storm
249495 7.8 HIGH
Local
suse shadow Privilege escalation can occur in the SUSE useradd.c code in useradd, as distributed in the SUSE shadow package through 4.2.1-27.9.1 for SUSE Linux Enterprise 12 (SLE-12) and through 4.5-5.39 for SUS… CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-16588 2024-11-21 12:53 2018-09-27 Show GitHub Exploit DB Packet Storm
249496 4.3 MEDIUM
Network
e107 e107 e107 2.1.9 allows CSRF via e107_admin/wmessage.php?mode=&action=inline&ajax_used=1&id= for changing the title of an arbitrary page. CWE-352
 Origin Validation Error
CVE-2018-17081 2024-11-21 12:53 2018-09-27 Show GitHub Exploit DB Packet Storm
249497 4.3 MEDIUM
Network
citrix sharefile_storagezones_controller Citrix ShareFile StorageZones Controller before 5.4.2 has Information Exposure Through an Error Message. CWE-200
Information Exposure
CVE-2018-16969 2024-11-21 12:53 2018-09-27 Show GitHub Exploit DB Packet Storm
249498 3.1 LOW
Network
citrix sharefile_storagezones_controller Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal. CWE-22
Path Traversal
CVE-2018-16968 2024-11-21 12:53 2018-09-27 Show GitHub Exploit DB Packet Storm
249499 6.5 MEDIUM
Network
circontrol circarlife_scada An issue was discovered in CIRCONTROL CirCarLife before 4.3. Due to the storage of multiple sensitive information elements in a JSON format at /services/system/setup.json, an authenticated but unpriv… CWE-200
Information Exposure
CVE-2018-16672 2024-11-21 12:53 2018-09-27 Show GitHub Exploit DB Packet Storm
249500 9.8 CRITICAL
Network
tgstation13 tgstation-server In Tgstation tgstation-server 3.2.4.0 through 3.2.1.0 (fixed in 3.2.5.0), active logins would be cached, allowing subsequent logins to succeed with any username or password. NVD-CWE-noinfo
CVE-2018-17107 2024-11-21 12:53 2018-09-25 Show GitHub Exploit DB Packet Storm