Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258441 2.1 注意 VMware - VMware ESX の VMware Consolidated Backup コマンドラインユーティリティにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2101 2010-09-13 16:01 2008-08-29 Show GitHub Exploit DB Packet Storm
258442 9 危険 VMware - VMware ESXi および ESX の openwsman management service におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2097 2010-09-13 16:01 2008-06-4 Show GitHub Exploit DB Packet Storm
258443 6.9 警告 VMware - Windows 上で稼働する複数の VMware 製品の VMCI における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2008-2099 2010-09-13 16:00 2008-05-30 Show GitHub Exploit DB Packet Storm
258444 6.9 警告 VMware - 複数の VMware 製品の HGFS におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2098 2010-09-13 16:00 2008-05-30 Show GitHub Exploit DB Packet Storm
258445 5 警告 VMware - 複数の VMware 製品の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-4811 2010-09-13 16:00 2010-04-27 Show GitHub Exploit DB Packet Storm
258446 7.2 危険 VMware - Windows 上で稼働する複数の VMware 製品の OpenProcess 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3698 2010-09-13 15:59 2008-08-29 Show GitHub Exploit DB Packet Storm
258447 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3696 2010-09-13 15:59 2008-08-28 Show GitHub Exploit DB Packet Storm
258448 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3695 2010-09-13 15:59 2008-08-28 Show GitHub Exploit DB Packet Storm
258449 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3694 2010-09-13 15:58 2008-08-28 Show GitHub Exploit DB Packet Storm
258450 10 危険 VMware - 複数の VMware 製品の ActiveX コントロールにおける脆弱性 CWE-noinfo
情報不足 		CVE-2008-3693 2010-09-13 15:58 2008-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247901 6.1 MEDIUM
Network 		paessler prtg_network_monitor PRTG before 19.1.49.1966 has Cross Site Scripting (XSS) in the WEBGUI. CWE-79
Cross-site Scripting 		CVE-2018-14683 2024-11-21 12:49 2019-04-11 Show GitHub Exploit DB Packet Storm
247902 6.5 MEDIUM
Network 		we-con pi_studio
pi_studio_hmi 		WECON Technology PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior lacks proper validation of user-supplied data, which may result in a read past the end of an allocated … CWE-125
Out-of-bounds Read 		CVE-2018-14814 2024-11-21 12:49 2019-03-28 Show GitHub Exploit DB Packet Storm
247903 8.8 HIGH
Adjacent 		samsung galaxy_s6_firmware Buffer overflow in prot_get_ring_space in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to overwri… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-14745 2024-11-21 12:49 2019-03-22 Show GitHub Exploit DB Packet Storm
247904 5.4 MEDIUM
Network 		mybb ban_list In the Ban List plugin 1.0 for MyBB, any forum user with mod privileges can ban users and input an XSS payload into the ban reason, which is executed on the bans.php page. CWE-79
Cross-site Scripting 		CVE-2018-14724 2024-11-21 12:49 2019-03-22 Show GitHub Exploit DB Packet Storm
247905 8.8 HIGH
Network 		mybb trash_bin Trash Bin plugin 1.1.3 for MyBB has cross-site scripting (XSS) via a thread subject and a cross-site request forgery (CSRF) via a post subject. CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2018-14575 2024-11-21 12:49 2019-03-22 Show GitHub Exploit DB Packet Storm
247906 6.1 MEDIUM
Network 		dnnsoftware dotnetnuke DNN (formerly DotNetNuke) 9.1.1 allows cross-site scripting (XSS) via XML. CWE-79
Cross-site Scripting 		CVE-2018-14486 2024-11-21 12:49 2019-03-22 Show GitHub Exploit DB Packet Storm
247907 6.1 MEDIUM
Network 		hyphp hybbs An issue was found in HYBBS through 2016-03-08. There is an XSS vulnerablity via an article title to post.html. CWE-79
Cross-site Scripting 		CVE-2018-14499 2024-11-21 12:49 2019-03-8 Show GitHub Exploit DB Packet Storm
247908 6.5 MEDIUM
Network 		mozilla
libjpeg-turbo
fedoraproject
debian
opensuse 		mozjpeg
libjpeg-turbo
fedora
debian_linux
leap 		get_8bit_row in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted 8-bit… CWE-125
Out-of-bounds Read 		CVE-2018-14498 2024-11-21 12:49 2019-03-8 Show GitHub Exploit DB Packet Storm
247909 7.2 HIGH
Network 		redhat satellite An improper authorization flaw was found in the Smart Class feature of Foreman. An attacker can use it to change configuration of any host registered in Red Hat Satellite, independent of the organiza… CWE-863
 Incorrect Authorization 		CVE-2018-14666 2024-11-21 12:49 2019-01-23 Show GitHub Exploit DB Packet Storm
247910 5.7 MEDIUM
Adjacent 		redhat
debian
opensuse
canonical 		ceph
debian_linux
leap
enterprise_linux_server
ceph_storage
ubuntu_linux 		It was found Ceph versions before 13.2.4 that authenticated ceph users with read only permissions could steal dm-crypt encryption keys used in ceph disk encryption. - CVE-2018-14662 2024-11-21 12:49 2019-01-16 Show GitHub Exploit DB Packet Storm