Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258711 4.3 警告 オラクル - Oracle Supply Chain Products Suite の Agile Technology Platform コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-0837 2011-05-16 11:32 2011-04-19 Show GitHub Exploit DB Packet Storm
258712 3.5 注意 オラクル - Oracle JD Edwards EnterpriseOne Tools および OneWorld Tools における脆弱性 CWE-noinfo
情報不足
CVE-2011-0836 2011-05-16 11:31 2011-04-19 Show GitHub Exploit DB Packet Storm
258713 4.3 警告 オラクル - Oracle Siebel CRM の Siebel CRM Core コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-0834 2011-05-16 11:27 2011-04-19 Show GitHub Exploit DB Packet Storm
258714 4.3 警告 オラクル - Oracle Siebel CRM の Siebel CRM Core コンポーネントにおける脆弱性 CWE-noinfo
情報不足
CVE-2011-0833 2011-05-16 11:27 2011-04-19 Show GitHub Exploit DB Packet Storm
258715 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル
- 複数の Mozilla 製品の navigator.plugins の実装における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-2767 2011-05-16 11:09 2010-09-7 Show GitHub Exploit DB Packet Storm
258716 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル
- 複数の Mozilla 製品の normalizeDocument 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-2766 2011-05-16 11:08 2010-09-7 Show GitHub Exploit DB Packet Storm
258717 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル
- 複数の Mozilla 製品の FRAMESET 要素の実装における整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2010-2765 2011-05-16 11:07 2010-09-7 Show GitHub Exploit DB Packet Storm
258718 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル
- 複数の Mozilla 製品の nsTreeSelection 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2010-2760 2011-05-16 11:05 2010-09-7 Show GitHub Exploit DB Packet Storm
258719 3.7 注意 オラクル - Oracle Solaris における LOFS の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-0839 2011-05-13 11:37 2011-04-19 Show GitHub Exploit DB Packet Storm
258720 4.9 警告 オラクル - Oracle Solaris における Kernel/SPARC の処理に関する脆弱性 CWE-noinfo
情報不足
CVE-2011-0829 2011-05-13 11:36 2011-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253871 6.1 MEDIUM
Network
ckeditor ckeditor_5-link Cross-site scripting (XSS) vulnerability in the Link package for CKEditor 5 before 10.0.1 allows remote attackers to inject arbitrary web script through a crafted href attribute of a link (A) element. CWE-79
Cross-site Scripting
CVE-2018-11093 2024-11-21 12:42 2018-05-23 Show GitHub Exploit DB Packet Storm
253872 6.5 MEDIUM
Network
horse_market_sell_\&_rent_portal_project horse_market_sell_\&_rent_portal Horse Market Sell & Rent Portal Script 1.5.7 has a CSRF vulnerability through which an attacker can change all of the target's account information remotely. CWE-352
 Origin Validation Error
CVE-2018-11096 2024-11-21 12:42 2018-05-21 Show GitHub Exploit DB Packet Storm
253873 6.5 MEDIUM
Network
admin_notes_project admin_notes An issue was discovered in the Admin Notes plugin 1.1 for MyBB. CSRF allows an attacker to remotely delete all admin notes via an admin/index.php?empty=table (aka Clear Table) action. CWE-352
 Origin Validation Error
CVE-2018-11092 2024-11-21 12:42 2018-05-21 Show GitHub Exploit DB Packet Storm
253874 6.5 MEDIUM
Network
makemytrip makemytrip An issue was discovered in the MakeMyTrip application 7.2.4 for Android. The databases (locally stored) are not encrypted and have cleartext that might lead to sensitive information disclosure, as de… CWE-312
 Cleartext Storage of Sensitive Information
CVE-2018-11242 2024-11-21 12:42 2018-05-20 Show GitHub Exploit DB Packet Storm
253875 7.5 HIGH
Network
hexagontoken hexagon An integer overflow in the _transfer function of a smart contract implementation for Hexagon (HXG), an Ethereum ERC20 token, allows attackers to accomplish an unauthorized increase of digital assets … CWE-190
 Integer Overflow or Wraparound
CVE-2018-11239 2024-11-21 12:42 2018-05-20 Show GitHub Exploit DB Packet Storm
253876 5.5 MEDIUM
Local
podofo_project podofo An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and applic… CWE-476
 NULL Pointer Dereference
CVE-2018-11255 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
253877 5.5 MEDIUM
Local
podofo_project podofo An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode() function of PdfPagesTree.cpp. Remote attackers could leverage this vulnerability to cause a… CWE-674
 Uncontrolled Recursion
CVE-2018-11254 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
253878 6.5 MEDIUM
Network
imagemagick imagemagick In ImageMagick 7.0.7-23 Q16 x86_64 2018-01-24, there is a heap-based buffer over-read in ReadSUNImage in coders/sun.c, which allows attackers to cause a denial of service (application crash in SetGra… CWE-125
Out-of-bounds Read
CVE-2018-11251 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
253879 9.8 CRITICAL
Network
liulishuo filedownloader util/FileDownloadUtils.java in FileDownloader 1.7.3 does not check an attachment's name. If an attacker places "../" in the file name, the file can be stored in an unintended directory because of Dir… CWE-22
Path Traversal
CVE-2018-11248 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm
253880 6.1 MEDIUM
Network
misp-project misp app/webroot/js/misp.js in MISP 2.4.91 has a DOM based XSS with cortex type attributes. CWE-79
Cross-site Scripting
CVE-2018-11245 2024-11-21 12:42 2018-05-19 Show GitHub Exploit DB Packet Storm