Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 10 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258561 7.8 危険 シスコシステムズ - Cisco Wireless LAN Controller におけるメモリリークの脆弱性 CWE-399
リソース管理の問題
CVE-2009-1165 2011-06-9 10:26 2009-07-27 Show GitHub Exploit DB Packet Storm
258562 7.8 危険 シスコシステムズ - Cisco Wireless LAN Controller の管理用 Web インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2009-1164 2011-06-9 10:26 2009-07-27 Show GitHub Exploit DB Packet Storm
258563 7.8 危険 シスコシステムズ - Cisco Physical Access Gateway におけるメモリリークの脆弱性 CWE-399
リソース管理の問題
CVE-2009-1163 2011-06-9 10:25 2009-06-24 Show GitHub Exploit DB Packet Storm
258564 6.8 警告 Apache Software Foundation - Apache Archiva における権限を取得される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2010-4408 2011-06-9 10:23 2010-12-15 Show GitHub Exploit DB Packet Storm
258565 7.2 危険 Apache Software Foundation - Apache mod_fcgid の apr_status_t fcgid_header_bucket_read 関数における脆弱性 CWE-189
数値処理の問題
CVE-2010-3872 2011-06-9 10:22 2010-06-8 Show GitHub Exploit DB Packet Storm
258566 4.3 警告 Apache Software Foundation - Apache Struts における複数のクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-6682 2011-06-9 10:21 2009-04-9 Show GitHub Exploit DB Packet Storm
258567 4.3 警告 Apache Software Foundation - Apache Struts におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-2025 2011-06-9 10:20 2009-04-9 Show GitHub Exploit DB Packet Storm
258568 4.3 警告 Stichting NLnet Labs - Unbound DNS リゾルバにサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1922 2011-06-8 11:55 2011-05-26 Show GitHub Exploit DB Packet Storm
258569 7.8 危険 ERLANG - Erlang/OTP SSH ライブラリで生成される乱数が推測可能な問題 CWE-310
暗号の問題
CVE-2011-0766 2011-06-8 11:54 2011-05-26 Show GitHub Exploit DB Packet Storm
258570 10 危険 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2010-3415 2011-06-8 11:52 2010-09-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247811 4.8 MEDIUM
Network
phome empirecms admin\db\DoSql.php in EmpireCMS through 7.5 allows XSS via crafted SQL syntax to admin/admin.php. CWE-79
Cross-site Scripting
CVE-2018-19461 2024-11-21 12:57 2019-06-8 Show GitHub Exploit DB Packet Storm
247812 7.8 HIGH
Local
foxitsoftware foxit_pdf_sdk_activex A use after free in the TextBox field Mouse Enter action in IReader_ContentProvider can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031. An attacker can le… CWE-416
 Use After Free
CVE-2018-19452 2024-11-21 12:57 2019-06-8 Show GitHub Exploit DB Packet Storm
247813 7.8 HIGH
Local
foxitsoftware foxit_pdf_sdk_activex A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) Professional 5.4.0.1031 when using the Open File action on a Field. An attacker can leverage this to gain r… CWE-77
Command Injection
CVE-2018-19451 2024-11-21 12:57 2019-06-8 Show GitHub Exploit DB Packet Storm
247814 6.1 MEDIUM
Network
mycolorway simditor Simditor through 2.3.21 allows DOM XSS via an onload attribute within a malformed SVG element. CWE-79
Cross-site Scripting
CVE-2018-19048 2024-11-21 12:57 2019-05-13 Show GitHub Exploit DB Packet Storm
247815 7.5 HIGH
Network
virginmedia hub_3.0_firmware On Virgin Media wireless router 3.0 hub devices, the web interface is vulnerable to denial of service. When POST requests are sent and keep the connection open, the router lags and becomes unusable t… CWE-400
 Uncontrolled Resource Consumption
CVE-2018-19037 2024-11-21 12:57 2019-05-13 Show GitHub Exploit DB Packet Storm
247816 7.5 HIGH
Network
wplaunchpad
opensuse
wpbackupplus
leap
The WP Backup+ (aka WPbackupplus) plugin through 2018-11-22 for WordPress allows remote attackers to obtain sensitive information from server folders and files, as demonstrated by download.sql. CWE-200
Information Exposure
CVE-2018-19456 2024-11-21 12:57 2019-05-8 Show GitHub Exploit DB Packet Storm
247817 7.0 HIGH
Local
zohocorp manageengine_admanager_plus Zoho ManageEngine ADManager Plus 6.6 Build 6657 allows local users to gain privileges (after a reboot) by placing a Trojan horse file into the permissive bin directory. CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2018-19374 2024-11-21 12:57 2019-05-1 Show GitHub Exploit DB Packet Storm
247818 8.8 HIGH
Network
gitlab gitlab GitLab Community and Enterprise Edition 8.9 and later and before 11.5.0-rc12, 11.4.6, and 11.3.10 has Incorrect Access Control. NVD-CWE-noinfo
CVE-2018-19359 2024-11-21 12:57 2019-04-26 Show GitHub Exploit DB Packet Storm
247819 9.8 CRITICAL
Network
neatorobotics botvac_connected_firmware A Buffer Overflow in Network::AuthenticationClient::VerifySignature in /bin/astro in Neato Botvac Connected 2.2.0 allows a remote attacker to execute arbitrary code with root privileges via a crafted… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-19442 2024-11-21 12:57 2019-04-26 Show GitHub Exploit DB Packet Storm
247820 6.1 MEDIUM
Network
mybb mybb A reflected XSS vulnerability in index.php in MyBB 1.8.x through 1.8.19 allows remote attackers to inject JavaScript via the 'upsetting[bburl]' parameter. CWE-79
Cross-site Scripting
CVE-2018-19202 2024-11-21 12:57 2019-04-12 Show GitHub Exploit DB Packet Storm