Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258041 7.5 危険 Newgen Software Technologies Limited - Newgen OmniDocs におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-3645 2011-10-3 14:48 2011-09-27 Show GitHub Exploit DB Packet Storm
258042 7.5 危険 AliBabaClone.com - Alibaba Clone B2B の countrydetails.php におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4849 2011-09-30 14:24 2011-09-27 Show GitHub Exploit DB Packet Storm
258043 4.3 警告 Diferior - Diferior におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4850 2011-09-30 14:22 2011-09-27 Show GitHub Exploit DB Packet Storm
258044 7.5 危険 Eclime - Eclime における複数の SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4851 2011-09-30 14:19 2011-09-27 Show GitHub Exploit DB Packet Storm
258045 4.3 警告 Eclime - Eclime の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4852 2011-09-30 14:15 2011-09-27 Show GitHub Exploit DB Packet Storm
258046 7.5 危険 Zoho Corporation - ManageEngine EventLog Analyzer の Syslog サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2010-4840 2011-09-30 14:13 2011-09-27 Show GitHub Exploit DB Packet Storm
258047 4.3 警告 Zoho Corporation - ManageEngine EventLog Analyzer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4841 2011-09-30 14:13 2011-09-27 Show GitHub Exploit DB Packet Storm
258048 4.3 警告 AXScripts - AXScripts AxsLinks の addlink.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4848 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
258049 7.5 危険 MH Products - MH Products MHP Downloadshop の view_item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4847 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
258050 7.5 危険 MH Products - MH Products Pay Pal Shop Digital の view_item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2010-4846 2011-09-30 14:11 2011-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253641 7.5 HIGH
Network
amazon fire_os kernel/omap/drivers/mfd/twl6030-gpadc.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device /dev… CWE-88
Argument Injection
CVE-2018-11025 2024-11-21 12:42 2018-10-17 Show GitHub Exploit DB Packet Storm
253642 7.5 HIGH
Network
amazon fire_os kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD (3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device… CWE-88
Argument Injection
CVE-2018-11024 2024-11-21 12:42 2018-10-17 Show GitHub Exploit DB Packet Storm
253643 7.5 HIGH
Network
amazon fire_os kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD (3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device… CWE-88
Argument Injection
CVE-2018-11023 2024-11-21 12:42 2018-10-17 Show GitHub Exploit DB Packet Storm
253644 7.5 HIGH
Network
amazon fire_os kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device … CWE-88
Argument Injection
CVE-2018-11022 2024-11-21 12:42 2018-10-17 Show GitHub Exploit DB Packet Storm
253645 7.5 HIGH
Network
amazon fire_os kernel/omap/drivers/video/omap2/dsscomp/device.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on de… CWE-88
Argument Injection
CVE-2018-11021 2024-11-21 12:42 2018-10-17 Show GitHub Exploit DB Packet Storm
253646 4.4 MEDIUM
Local
amazon fire_os kernel/omap/drivers/rpmsg/rpmsg_omx.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device file /… CWE-88
Argument Injection
CVE-2018-11020 2024-11-21 12:42 2018-10-17 Show GitHub Exploit DB Packet Storm
253647 7.5 HIGH
Network
amazon fire_os kernel/omap/drivers/misc/gcx/gcioctl/gcif.c in the kernel component in Amazon Kindle Fire HD(3rd) Fire OS 4.5.5.3 allows attackers to inject a crafted argument via the argument of an ioctl on device … CWE-88
Argument Injection
CVE-2018-11019 2024-11-21 12:42 2018-10-17 Show GitHub Exploit DB Packet Storm
253648 6.5 MEDIUM
Network
qemu
canonical
debian
qemu
ubuntu_linux
debian_linux
Qemu emulator <= 3.0.0 built with the NE2000 NIC emulation support is vulnerable to an integer overflow, which could lead to buffer overflow issue. It could occur when receiving packets over the netw… - CVE-2018-10839 2024-11-21 12:42 2018-10-16 Show GitHub Exploit DB Packet Storm
253649 8.1 HIGH
Network
cloud_foundry bosh Cloud Foundry BOSH, versions v264 prior to v264.14.0 and v265 prior to v265.7.0 and v266 prior to v266.8.0 and v267 prior to v267.2.0, allows refresh tokens to be as access tokens when using UAA for … NVD-CWE-noinfo
CVE-2018-11083 2024-11-21 12:42 2018-10-6 Show GitHub Exploit DB Packet Storm
253650 9.8 CRITICAL
Network
pivotal_software cloudfoundry_uaa_release
cloudfoundry_uaa
Cloud Foundry UAA, all versions prior to 4.20.0 and Cloud Foundry UAA Release, all versions prior to 61.0, allows brute forcing of MFA codes. A remote unauthenticated malicious user in possession of … CWE-307
mproper Restriction of Excessive Authentication Attempts
CVE-2018-11082 2024-11-21 12:42 2018-10-6 Show GitHub Exploit DB Packet Storm