Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258221 6.9 警告 レッドハット - Linux-HA の SAPDatabase および SAPInstance スクリプトにおける権限を取得される脆弱性 CWE-DesignError
CVE-2010-3389 2011-08-17 13:29 2010-10-20 Show GitHub Exploit DB Packet Storm
258222 6.5 警告 エイムラック - Aipo における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-1342 2011-08-16 12:02 2011-08-16 Show GitHub Exploit DB Packet Storm
258223 2.6 注意 エイムラック - Aipo におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-1341 2011-08-16 12:01 2011-08-16 Show GitHub Exploit DB Packet Storm
258224 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2641 2011-08-16 11:34 2011-05-18 Show GitHub Exploit DB Packet Storm
258225 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2640 2011-08-16 11:33 2011-04-12 Show GitHub Exploit DB Packet Storm
258226 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2639 2011-08-16 11:33 2011-04-12 Show GitHub Exploit DB Packet Storm
258227 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2638 2011-08-16 11:32 2011-04-12 Show GitHub Exploit DB Packet Storm
258228 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2637 2011-08-16 11:31 2011-04-12 Show GitHub Exploit DB Packet Storm
258229 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-noinfo
情報不足
CVE-2011-2636 2011-08-16 11:30 2011-04-12 Show GitHub Exploit DB Packet Storm
258230 5 警告 Opera Software ASA - Opera の Cascading Style Sheets 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2635 2011-08-16 11:30 2011-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253851 6.8 MEDIUM
Physics
mahara mahara Mahara 17.04 before 17.04.8 and 17.10 before 17.10.5 and 18.04 before 18.04.1 are vulnerable to the browser "back and refresh" attack. This allows malicious users with physical access to the web brow… CWE-200
Information Exposure
CVE-2018-11195 2024-11-21 12:42 2018-06-2 Show GitHub Exploit DB Packet Storm
253852 5.5 MEDIUM
Local
quest kace_system_management_appliance The 'systemui/settings_network.php' and 'systemui/settings_patching.php' scripts in the Quest KACE System Management Appliance 8.0.318 are accessible only from localhost. This restriction can be bypa… CWE-863
 Incorrect Authorization
CVE-2018-11142 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm
253853 9.8 CRITICAL
Network
quest kace_system_management_appliance The 'IMAGES_JSON' and 'attachments_to_remove[]' parameters of the '/adminui/advisory.php' script in the Quest KACE System Management Virtual Appliance 8.0.318 can be abused to write and delete files … CWE-22
Path Traversal
CVE-2018-11141 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm
253854 9.8 CRITICAL
Network
quest kace_system_management_appliance The 'reportID' parameter received by the '/common/run_report.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, an error-base… CWE-89
SQL Injection
CVE-2018-11140 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm
253855 8.8 HIGH
Network
quest kace_system_management_appliance The '/common/ajax_email_connection_test.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by any authenticated user and can be abused to execute arbitrary commands on th… CWE-78
OS Command 
CVE-2018-11139 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm
253856 9.8 CRITICAL
Network
quest kace_system_management_appliance The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system. CWE-78
OS Command 
CVE-2018-11138 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm
253857 6.5 MEDIUM
Network
quest kace_system_management_appliance The 'checksum' parameter of the '/common/download_attachment.php' script in the Quest KACE System Management Appliance 8.0.318 can be abused to read arbitrary files with 'www' privileges via Director… CWE-22
Path Traversal
CVE-2018-11137 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm
253858 9.8 CRITICAL
Network
quest kace_system_management_appliance The 'orgID' parameter received by the '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, a … CWE-89
SQL Injection
CVE-2018-11136 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm
253859 8.8 HIGH
Network
quest kace_system_management_appliance The script '/adminui/error_details.php' in the Quest KACE System Management Appliance 8.0.318 allows authenticated users to conduct PHP object injection attacks. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
CVE-2018-11135 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm
253860 8.8 HIGH
Network
quest kace_system_management_appliance In order to perform actions that requires higher privileges, the Quest KACE System Management Appliance 8.0.318 relies on a message queue managed that runs with root privileges and only allows a set … CWE-640
 Weak Password Recovery Mechanism for Forgotten Password
CVE-2018-11134 2024-11-21 12:42 2018-06-1 Show GitHub Exploit DB Packet Storm