Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258121 7.6 危険 アップル - 複数の Apple 製品の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0154 2011-04-4 14:50 2011-03-3 Show GitHub Exploit DB Packet Storm
258122 7.6 危険 アップル - 複数の Apple 製品の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0153 2011-04-4 14:49 2011-03-3 Show GitHub Exploit DB Packet Storm
258123 7.6 危険 アップル - 複数の Apple 製品の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0152 2011-04-4 14:47 2011-03-3 Show GitHub Exploit DB Packet Storm
258124 7.6 危険 アップル - 複数の Apple 製品の WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-0151 2011-04-4 14:45 2011-03-3 Show GitHub Exploit DB Packet Storm
258125 10 危険 Wireshark
レッドハット		 - Wireshark の MAC-LTE 解析部におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0444 2011-04-4 14:38 2011-01-11 Show GitHub Exploit DB Packet Storm
258126 5 警告 サイバートラスト株式会社
Wireshark
レッドハット
オラクル		 - Wireshark の BER 解析部の dissect_ber_unknown 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3445 2011-04-4 14:36 2010-10-11 Show GitHub Exploit DB Packet Storm
258127 5 警告 The PHP Group
アップル		 - PHP にサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-4409 2011-04-4 14:32 2010-12-1 Show GitHub Exploit DB Packet Storm
258128 5 警告 The PHP Group
アップル		 - PHP の IMAP 拡張 (ext/imap/php_imap.c) における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4150 2011-04-4 14:31 2010-12-7 Show GitHub Exploit DB Packet Storm
258129 6.8 警告 The PHP Group
アップル
サイバートラスト株式会社
レッドハット		 - PHP の utf8_decode 関数におけるクロスサイトスクリプティングおよび SQL インジェクションに対する保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3870 2011-04-4 14:29 2009-09-27 Show GitHub Exploit DB Packet Storm
258130 9.3 危険 アップル - Apple QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-4009 2011-04-4 14:28 2010-12-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
250131 4.3 MEDIUM
Network 		apache solr In Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does … CWE-863
 Incorrect Authorization 		CVE-2018-11802 2024-11-21 12:44 2020-04-2 Show GitHub Exploit DB Packet Storm
250132 7.8 HIGH
Local 		qualcomm apq8053_firmware
mdm9640_firmware
sda660_firmware
sdm636_firmware
sdm660_firmware
sdx20_firmware 		Possible double free issue in WLAN due to lack of checking memory free condition. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdr… CWE-415
 Double Free 		CVE-2018-11838 2024-11-21 12:44 2020-03-5 Show GitHub Exploit DB Packet Storm
250133 7.8 HIGH
Local 		qualcomm apq8009_firmware
apq8017_firmware
apq8053_firmware
apq8064_firmware
apq8096au_firmware
mdm9206_firmware
mdm9207c_firmware
mdm9607_firmware
mdm9640_firmware
mdm9650_firmware… 		When a fake broadcast/multicast 11w rmf without mmie received, since no proper length check in wma_process_bip, buffer overflow will happen in both cds_is_mmie_valid and qdf_nbuf_trim_tail in Snapdra… CWE-120
Classic Buffer Overflow 		CVE-2018-11980 2024-11-21 12:44 2019-12-18 Show GitHub Exploit DB Packet Storm
250134 6.7 MEDIUM
Local 		apache
debian 		spamassassin
debian_linux 		In Apache SpamAssassin before 3.4.3, nefarious CF files can be configured to run system commands without any output or errors. With this, exploits can be injected in a number of scenarios. In additio… CWE-78
OS Command  		CVE-2018-11805 2024-11-21 12:44 2019-12-13 Show GitHub Exploit DB Packet Storm
250135 6.5 MEDIUM
Local 		intel
debian
opensuse
fedoraproject
canonical
f5
redhat
oracle 		core_i3-10110u_firmware
core_i3-10110y_firmware
core_i3-1005g1_firmware
core_i3-9300t_firmware
core_i3-9300_firmware
core_i3-9100_firmware
core_i3-9100t_firmware
core_i3-9350k_fi… 		Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host s… CWE-20
 Improper Input Validation  		CVE-2018-12207 2024-11-21 12:44 2019-11-15 Show GitHub Exploit DB Packet Storm
250136 6.5 MEDIUM
Network 		apache subversion In Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0, Subversion's svnserve server process may exit when a well-formed read-only request produces a particular answer. This can lea… CWE-20
 Improper Input Validation  		CVE-2018-11782 2024-11-21 12:44 2019-09-27 Show GitHub Exploit DB Packet Storm
250137 5.4 MEDIUM
Network 		clippercms clippercms CMS Clipper 1.3.3 has XSS in the Security tab search, User Groups, Resource Groups, and User/Resource Group Links fields. CWE-79
Cross-site Scripting 		CVE-2018-12101 2024-11-21 12:44 2019-08-16 Show GitHub Exploit DB Packet Storm
250138 7.2 HIGH
Network 		apache virtual_computing_lab Apache VCL versions 2.1 through 2.5 do not properly validate form input when adding and removing VMs to and from hosts. The form data is then used in SQL statements. This allows for an SQL injection … CWE-89
SQL Injection 		CVE-2018-11774 2024-11-21 12:44 2019-07-30 Show GitHub Exploit DB Packet Storm
250139 9.8 CRITICAL
Network 		apache virtual_computing_lab Apache VCL versions 2.1 through 2.5 do not properly validate form input when processing a submitted block allocation. The form data is then used as an argument to the php built in function strtotime.… CWE-20
 Improper Input Validation  		CVE-2018-11773 2024-11-21 12:44 2019-07-30 Show GitHub Exploit DB Packet Storm
250140 7.2 HIGH
Network 		apache virtual_computing_lab Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node (if any) was previously selected in the privilege tree. The cookie data is then used in an SQL sta… CWE-89
SQL Injection 		CVE-2018-11772 2024-11-21 12:44 2019-07-30 Show GitHub Exploit DB Packet Storm