Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258561 9.3 危険 アドビシステムズ - Adobe Shockwave Player の Dirapi.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0318 2011-06-29 12:14 2011-06-14 Show GitHub Exploit DB Packet Storm
258562 9.3 危険 アドビシステムズ - Adobe Shockwave Player の Dirapi.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-0317 2011-06-29 12:13 2011-06-14 Show GitHub Exploit DB Packet Storm
258563 9.3 危険 アドビシステムズ
ターボリナックス
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2106 2011-06-29 12:11 2011-06-14 Show GitHub Exploit DB Packet Storm
258564 4.3 警告 アドビシステムズ
ターボリナックス
- Adobe Reader および Acrobat におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-119
バッファエラー
CVE-2011-2104 2011-06-29 12:10 2011-06-14 Show GitHub Exploit DB Packet Storm
258565 9.3 危険 アドビシステムズ
ターボリナックス
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2103 2011-06-29 12:10 2011-06-14 Show GitHub Exploit DB Packet Storm
258566 9.3 危険 アドビシステムズ
ターボリナックス
- Adobe Reader および Acrobat におけるアクセス制限を回避される脆弱性 CWE-noinfo
情報不足
CVE-2011-2102 2011-06-29 12:08 2011-06-14 Show GitHub Exploit DB Packet Storm
258567 9.3 危険 アドビシステムズ
ターボリナックス
- Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性 CWE-94
コード・インジェクション
CVE-2011-2101 2011-06-29 12:07 2011-06-14 Show GitHub Exploit DB Packet Storm
258568 6.9 警告 アドビシステムズ
ターボリナックス
- Windows 上で稼働する Adobe Reader および Acrobat における権限昇格の脆弱性 CWE-Other
その他
CVE-2011-2100 2011-06-29 12:06 2011-06-14 Show GitHub Exploit DB Packet Storm
258569 9.3 危険 アドビシステムズ
ターボリナックス
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2099 2011-06-29 12:05 2011-06-14 Show GitHub Exploit DB Packet Storm
258570 9.3 危険 アドビシステムズ
ターボリナックス
- Adobe Reader および Acrobat における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-2098 2011-06-29 12:04 2011-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248211 9.8 CRITICAL
Network
tubigan welcome_to_our_resort The Tubigan "Welcome to our Resort" 1.0 software allows SQL Injection via index.php?p=accomodation&q=[SQL], index.php?p=rooms&q=[SQL], or admin/login.php. CWE-89
SQL Injection
CVE-2018-18800 2024-11-21 12:56 2019-05-15 Show GitHub Exploit DB Packet Storm
248212 9.8 CRITICAL
Network
sharing-file easy_file_sharing_web_server An issue was discovered in Easy File Sharing (EFS) Web Server 7.2. A stack-based buffer overflow vulnerability occurs when a malicious POST request has been made to forum.ghp upon creating a new topi… CWE-787
 Out-of-bounds Write
CVE-2018-18912 2024-11-21 12:56 2019-05-14 Show GitHub Exploit DB Packet Storm
248213 5.4 MEDIUM
Network
kieranoshea calendar The Kieran O'Shea Calendar plugin before 1.3.11 for WordPress has Stored XSS via the event_title parameter in a wp-admin/admin.php?page=calendar add action, or the category name during category creat… CWE-79
Cross-site Scripting
CVE-2018-18872 2024-11-21 12:56 2019-05-13 Show GitHub Exploit DB Packet Storm
248214 6.1 MEDIUM
Network
evernote evernote Evernote 6.15 on Windows has an incorrectly repaired stored XSS vulnerability. An attacker can use this XSS issue to inject Node.js code under Present mode. After a victim opens an affected note unde… CWE-79
Cross-site Scripting
CVE-2018-18524 2024-11-21 12:56 2019-05-13 Show GitHub Exploit DB Packet Storm
248215 6.4 MEDIUM
Physics
espressif esp-idf An issue was discovered in Espressif ESP-IDF 2.x and 3.x before 3.0.6 and 3.1.x before 3.1.1. Insufficient validation of input data in the 2nd stage bootloader allows a physically proximate attacker … CWE-20
 Improper Input Validation 
CVE-2018-18558 2024-11-21 12:56 2019-05-13 Show GitHub Exploit DB Packet Storm
248216 7.4 HIGH
Network
ascensia contour_diabetes An issue was discovered in the Ascensia Contour NEXT ONE application for Android before 2019-01-15. It has a statically coded encryption key. Extraction of the encryption key is necessary for deciphe… CWE-798
 Use of Hard-coded Credentials
CVE-2018-18978 2024-11-21 12:56 2019-05-7 Show GitHub Exploit DB Packet Storm
248217 7.5 HIGH
Network
ascensia contour_diabetes An issue was discovered in the Ascensia Contour NEXT ONE application for Android before 2019-01-15. An attacker may reverse engineer the codebase to extract sensitive data that contributes to the dis… CWE-200
Information Exposure
CVE-2018-18977 2024-11-21 12:56 2019-05-7 Show GitHub Exploit DB Packet Storm
248218 5.3 MEDIUM
Network
ascensia contour_diabetes An issue was discovered in the Ascensia Contour NEXT ONE application for iOS and Android before 2019-01-15. An attacker may retrieve encrypted medical information of any user of the Ascensia cloud pl… CWE-639
 Authorization Bypass Through User-Controlled Key
CVE-2018-18976 2024-11-21 12:56 2019-05-7 Show GitHub Exploit DB Packet Storm
248219 7.5 HIGH
Network
ascensia contour_diabetes An issue was discovered in the Ascensia Contour NEXT ONE app for iOS before 2019-01-15. An attacker may proxy communications between the app and Ascensia backend servers because of a weak certificate… CWE-200
Information Exposure
CVE-2018-18975 2024-11-21 12:56 2019-05-7 Show GitHub Exploit DB Packet Storm
248220 7.4 HIGH
Network
ascensia contour_diabetes An issue was discovered in the Ascensia Contour NEXT ONE application for Android before 2019-01-15. It has a statically coded initialization vector. Extraction of the initialization vector is necessa… CWE-798
 Use of Hard-coded Credentials
CVE-2018-18979 2024-11-21 12:56 2019-05-7 Show GitHub Exploit DB Packet Storm