Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258941 7.2 危険 マイクロソフト - Microsoft Windows XP の win32k.sys における権限昇格の脆弱性 CWE-Other
その他
CVE-2011-0673 2011-05-9 11:56 2011-04-12 Show GitHub Exploit DB Packet Storm
258942 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1242 2011-05-9 11:55 2011-04-12 Show GitHub Exploit DB Packet Storm
258943 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1241 2011-05-9 11:53 2011-04-12 Show GitHub Exploit DB Packet Storm
258944 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1240 2011-05-9 11:52 2011-04-12 Show GitHub Exploit DB Packet Storm
258945 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1239 2011-05-9 11:51 2011-04-12 Show GitHub Exploit DB Packet Storm
258946 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1238 2011-05-9 11:50 2011-04-12 Show GitHub Exploit DB Packet Storm
258947 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1237 2011-05-9 11:49 2011-04-12 Show GitHub Exploit DB Packet Storm
258948 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1236 2011-05-9 11:48 2011-04-12 Show GitHub Exploit DB Packet Storm
258949 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1235 2011-05-9 11:46 2011-04-12 Show GitHub Exploit DB Packet Storm
258950 6.8 警告 freedesktop.org
サイバートラスト株式会社
foolabs
OpenOffice.org Project
レッドハット
- xpdf および poppler などの製品で利用される PDF パーサの FoFiType1::parse 関数における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2010-3704 2011-05-9 11:29 2010-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251181 6.1 MEDIUM
Network
xycms_project xycms system/edit_book.php in XYCMS 1.7 has stored XSS via a crafted add_do.php request, related to add_book.php. CWE-79
Cross-site Scripting
CVE-2018-14686 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251182 9.8 CRITICAL
Network
gxlcms gxlcms The add function in www/Lib/Lib/Action/Admin/TplAction.class.php in Gxlcms v1.1.4 allows remote attackers to read arbitrary files via a crafted index.php?s=Admin-Tpl-ADD-id request, related to Lib/Co… CWE-200
Information Exposure
CVE-2018-14685 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251183 8.8 HIGH
Network
cabextract
cabextract_project
debian
canonical
redhat
libmspack
cabextract
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression. CWE-193
 Off-by-one Error
CVE-2018-14682 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251184 8.8 HIGH
Network
cabextract
cabextract_project
debian
canonical
redhat
libmspack
cabextract
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower
An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite. CWE-787
 Out-of-bounds Write
CVE-2018-14681 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251185 6.5 MEDIUM
Network
cabextract
cabextract_project
debian
canonical
redhat
libmspack
cabextract
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames. CWE-20
 Improper Input Validation 
CVE-2018-14680 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251186 6.5 MEDIUM
Network
cabextract
cabextract_project
debian
canonical
redhat
libmspack
cabextract
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitial… CWE-193
 Off-by-one Error
CVE-2018-14679 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251187 7.8 HIGH
Local
linux
xen
debian
canonical
linux_kernel
xen
debian_linux
ubuntu_linux
An issue was discovered in the Linux kernel through 4.17.11, as used in Xen through 4.11.x. The xen_failsafe_callback entry point in arch/x86/entry/entry_64.S does not properly maintain RBX, which al… CWE-665
 Improper Initialization
CVE-2018-14678 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251188 5.5 MEDIUM
Local
linux
debian
canonical
linux_kernel
debian_linux
ubuntu_linux
An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference and panic in hfsplus_lookup() in fs/hfsplus/dir.c when opening a file (that is purportedly a hard link… CWE-476
 NULL Pointer Dereference
CVE-2018-14617 2024-11-21 12:49 2018-07-27 Show GitHub Exploit DB Packet Storm
251189 5.5 MEDIUM
Local
linux linux_kernel An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference in fscrypt_do_page_crypto() in fs/crypto/crypto.c when operating on a file in a corrupted f2fs image. CWE-476
 NULL Pointer Dereference
CVE-2018-14616 2024-11-21 12:49 2018-07-27 Show GitHub Exploit DB Packet Storm
251190 5.5 MEDIUM
Local
linux linux_kernel An issue was discovered in the Linux kernel through 4.17.10. There is a buffer overflow in truncate_inline_inode() in fs/f2fs/inline.c when umounting an f2fs image, because a length value may be nega… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-14615 2024-11-21 12:49 2018-07-27 Show GitHub Exploit DB Packet Storm