Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258411 6.8 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足
CVE-2011-0822 2011-07-28 10:29 2011-07-19 Show GitHub Exploit DB Packet Storm
258412 5.5 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足
CVE-2011-0816 2011-07-28 10:27 2011-07-19 Show GitHub Exploit DB Packet Storm
258413 4.9 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足
CVE-2011-0811 2011-07-28 10:26 2011-07-19 Show GitHub Exploit DB Packet Storm
258414 6.8 警告 アップル
サイバートラスト株式会社
Ruby-lang.org
レッドハット
- Ruby の BigDecimal クラス内にある VpMemAlloc 関数における任意のコードを実行される脆弱性 CWE-189
数値処理の問題
CVE-2011-0188 2011-07-28 10:08 2011-03-23 Show GitHub Exploit DB Packet Storm
258415 4.3 警告 アップル
サイバートラスト株式会社
Ruby-lang.org
レッドハット
- Apple Mac OS X の Ruby WEBrick HTTP サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-0541 2011-07-28 10:06 2010-06-15 Show GitHub Exploit DB Packet Storm
258416 5 警告 サイバートラスト株式会社
Ruby-lang.org
レッドハット
- Ruby の WEBrick におけるウィンドウのタイトルを変更される脆弱性 CWE-20
不適切な入力確認
CVE-2009-4492 2011-07-28 10:04 2010-01-13 Show GitHub Exploit DB Packet Storm
258417 2.6 注意 Plone Foundation - Plone におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1340 2011-07-27 12:02 2011-07-27 Show GitHub Exploit DB Packet Storm
258418 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2626 2011-07-27 10:35 2011-06-28 Show GitHub Exploit DB Packet Storm
258419 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2625 2011-07-27 10:34 2011-06-28 Show GitHub Exploit DB Packet Storm
258420 4.3 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションハング) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-2624 2011-07-27 10:34 2011-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254551 7.1 HIGH
Network
librehealth librehealth_ehr LibreHealthIO lh-ehr version REL-2.0.0 contains a Authenticated Unrestricted File Deletion vulnerability in Import template that can result in Denial of service. This attack appear to be exploitable … CWE-22
CWE-20
Path Traversal
 Improper Input Validation 
CVE-2018-1000647 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254552 8.8 HIGH
Network
librehealth librehealth_ehr LibreHealthIO LH-EHR version REL-2.0.0 contains an Authenticated Unrestricted File Write vulnerability in Import template that can result in write files with malicious content and may lead to remote … CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2018-1000646 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254553 6.5 MEDIUM
Network
librehealth librehealth_ehr LibreHealthIO lh-ehr version <REL-2.0.0 contains an Authenticated Local File Disclosure vulnerability in Importing of templates allows local file disclosure that can result in Disclosure of sensitive… CWE-200
Information Exposure
CVE-2018-1000645 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254554 10.0 CRITICAL
Network
eclipse rdf4j Eclipse RDF4j version < 2.4.0 Milestone 2 contains a XML External Entity (XXE) vulnerability in RDF4j XML parser parsing RDF files that can result in the disclosure of confidential data, denial of se… CWE-611
XXE
CVE-2018-1000644 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254555 6.1 MEDIUM
Network
flightairmap flightairmap FlightAirMap version <=v1.0-beta.21 contains a Cross Site Scripting (XSS) vulnerability in GET variable used within registration sub menu page that can result in unauthorised actions and access to da… CWE-79
Cross-site Scripting
CVE-2018-1000642 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254556 9.8 CRITICAL
Network
yeswiki yeswiki YesWiki version <= cercopitheque beta 1 contains a PHP Object Injection vulnerability in Unserialising user entered parameter in i18n.inc.php that can result in execution of code, disclosure of infor… CWE-502
 Deserialization of Untrusted Data
CVE-2018-1000641 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254557 6.1 MEDIUM
Network
villagedefrance opencart-overclocked OpenCart-Overclocked version <=1.11.1 contains a Cross Site Scripting (XSS) vulnerability in User input entered unsanitised within JS function in the template that can result in Unauthorised actions … CWE-79
Cross-site Scripting
CVE-2018-1000640 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254558 9.6 CRITICAL
Network
latexdraw_project latexdraw LatexDraw version <=4.0 contains a XML External Entity (XXE) vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce… CWE-611
XXE
CVE-2018-1000639 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254559 6.1 MEDIUM
Network
1234n minicms MiniCMS version 1.1 contains a Cross Site Scripting (XSS) vulnerability in http://example.org/mc-admin/page.php?date={payload} that can result in code injection. CWE-79
Cross-site Scripting
CVE-2018-1000638 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm
254560 7.8 HIGH
Local
nongnu
debian
zutils
debian_linux
zutils version prior to version 1.8-pre2 contains a Buffer Overflow vulnerability in zcat that can result in Potential denial of service or arbitrary code execution. This attack appear to be exploita… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-1000637 2024-11-21 12:40 2018-08-21 Show GitHub Exploit DB Packet Storm