Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258691 5.5 警告 オラクル - Oracle Industry Applications の InForm コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0855 2011-05-17 09:45 2011-04-19 Show GitHub Exploit DB Packet Storm
258692 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における ePerformance に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0854 2011-05-17 09:44 2011-04-19 Show GitHub Exploit DB Packet Storm
258693 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における ePerformance に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0853 2011-05-17 09:43 2011-04-19 Show GitHub Exploit DB Packet Storm
258694 5.5 警告 オラクル - Oracle PeopleSoft Enterprise ELS における Enterprise Learning Mgmt に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0851 2011-05-17 09:41 2011-04-19 Show GitHub Exploit DB Packet Storm
258695 5.5 警告 オラクル - Oracle PeopleSoft Enterprise CRM における Order Capture に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0850 2011-05-17 09:28 2011-04-19 Show GitHub Exploit DB Packet Storm
258696 4.3 警告 オラクル - Oracle Java Dynamic Management Kit の HTML Adaptor における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0849 2011-05-17 09:27 2011-04-19 Show GitHub Exploit DB Packet Storm
258697 4.3 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2769 2011-05-17 09:01 2010-09-7 Show GitHub Exploit DB Packet Storm
258698 4.3 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品におけるクロスサイトスクリプティングに対する保護メカニズムを回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2768 2011-05-17 09:00 2010-09-7 Show GitHub Exploit DB Packet Storm
258699 4.3 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品におけるイントラネット上の Web サーバの存在を発見される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2764 2011-05-17 08:59 2010-09-7 Show GitHub Exploit DB Packet Storm
258700 6.8 警告 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - Mozilla 製品の SafeJSObjectWrapper 実装におけるクローム特権で任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2762 2011-05-17 08:56 2010-09-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253571 8.8 HIGH
Network 		openwrt openwrt OpenWrt mishandles access control in /etc/config/rpcd and the /usr/share/rpcd/acl.d files, which allows remote authenticated users to call arbitrary methods (i.e., achieve ubus access over HTTP) that… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-11116 2024-11-21 12:42 2018-06-20 Show GitHub Exploit DB Packet Storm
253572 7.5 HIGH
Network 		cesanta mongoose The mg_handle_cgi function in mongoose.c in Mongoose 6.11 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash, or NULL pointer dereference) via an … CWE-125
CWE-476
Out-of-bounds Read
 NULL Pointer Dereference 		CVE-2018-10945 2024-11-21 12:42 2018-06-20 Show GitHub Exploit DB Packet Storm
253573 7.5 HIGH
Network 		strongswan
debian
canonical
fedoraproject 		strongswan
debian_linux
ubuntu_linux
fedora 		strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable. CWE-909
 Missing Initialization of Resource 		CVE-2018-10811 2024-11-21 12:42 2018-06-20 Show GitHub Exploit DB Packet Storm
253574 9.8 CRITICAL
Network 		redislabs
debian
oracle
redhat 		redis
debian_linux
communications_operations_monitor
openstack 		An Integer Overflow issue was discovered in the struct library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2, leading to a failure of bounds checking. CWE-190
 Integer Overflow or Wraparound 		CVE-2018-11219 2024-11-21 12:42 2018-06-18 Show GitHub Exploit DB Packet Storm
253575 9.8 CRITICAL
Network 		redislabs
debian
oracle
redhat 		redis
debian_linux
communications_operations_monitor
openstack 		Memory Corruption was discovered in the cmsgpack library in the Lua subsystem in Redis before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2 because of stack-based buffer overflows. CWE-787
 Out-of-bounds Write 		CVE-2018-11218 2024-11-21 12:42 2018-06-18 Show GitHub Exploit DB Packet Storm
253576 9.8 CRITICAL
Network 		etere etereweb Etere EtereWeb before 28.1.20 has a pre-authentication blind SQL injection in the POST parameters txUserName and txPassword. CWE-89
SQL Injection 		CVE-2018-10997 2024-11-21 12:42 2018-06-18 Show GitHub Exploit DB Packet Storm
253577 9.8 CRITICAL
Network 		genetechsolutions pie_register SQL injection vulnerability in the Pie Register plugin before 3.0.10 for WordPress allows remote attackers to execute arbitrary SQL commands via the invitation codes grid. CWE-89
SQL Injection 		CVE-2018-10969 2024-11-21 12:42 2018-06-18 Show GitHub Exploit DB Packet Storm
253578 5.4 MEDIUM
Network 		pandorafms artica_pandora_fms XSS in Artica Pandora FMS before 7.0 NG 723 allows an attacker to execute arbitrary code via a crafted "refr" parameter in a "/pandora_console/index.php?sec=estado&sec2=operation/agentes/estado_agent… CWE-79
Cross-site Scripting 		CVE-2018-11223 2024-11-21 12:42 2018-06-16 Show GitHub Exploit DB Packet Storm
253579 7.5 HIGH
Network 		artica pandora_fms Local File Inclusion (LFI) in Artica Pandora FMS through version 7.23 allows an attacker to call any php file via the /pandora_console/ajax.php ajax endpoint. CWE-20
 Improper Input Validation  		CVE-2018-11222 2024-11-21 12:42 2018-06-16 Show GitHub Exploit DB Packet Storm
253580 9.8 CRITICAL
Network 		artica pandora_fms Unauthenticated untrusted file upload in Artica Pandora FMS through version 7.23 allows an attacker to upload an arbitrary plugin via include/ajax/update_manager.ajax in the update system. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2018-11221 2024-11-21 12:42 2018-06-16 Show GitHub Exploit DB Packet Storm