Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258961 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0674 2011-05-6 11:27 2011-04-12 Show GitHub Exploit DB Packet Storm
258962 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0672 2011-05-6 11:26 2011-04-12 Show GitHub Exploit DB Packet Storm
258963 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0671 2011-05-6 11:25 2011-04-12 Show GitHub Exploit DB Packet Storm
258964 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0670 2011-05-6 11:11 2011-04-12 Show GitHub Exploit DB Packet Storm
258965 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0667 2011-05-6 11:10 2011-04-12 Show GitHub Exploit DB Packet Storm
258966 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0666 2011-05-6 11:09 2011-04-12 Show GitHub Exploit DB Packet Storm
258967 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0665 2011-05-6 11:07 2011-04-12 Show GitHub Exploit DB Packet Storm
258968 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0662 2011-05-6 11:06 2011-04-12 Show GitHub Exploit DB Packet Storm
258969 9.3 危険 マイクロソフト - Microsoft Windows のワードパッドにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2011-0028 2011-05-6 11:03 2011-04-12 Show GitHub Exploit DB Packet Storm
258970 7.6 危険 マイクロソフト - Microsoft Windows の FAX 送付状エディター内にある fxscover.exe における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2010-3974 2011-05-6 11:01 2011-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
251181 6.1 MEDIUM
Network
xycms_project xycms system/edit_book.php in XYCMS 1.7 has stored XSS via a crafted add_do.php request, related to add_book.php. CWE-79
Cross-site Scripting
CVE-2018-14686 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251182 9.8 CRITICAL
Network
gxlcms gxlcms The add function in www/Lib/Lib/Action/Admin/TplAction.class.php in Gxlcms v1.1.4 allows remote attackers to read arbitrary files via a crafted index.php?s=Admin-Tpl-ADD-id request, related to Lib/Co… CWE-200
Information Exposure
CVE-2018-14685 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251183 8.8 HIGH
Network
cabextract
cabextract_project
debian
canonical
redhat
libmspack
cabextract
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression. CWE-193
 Off-by-one Error
CVE-2018-14682 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251184 8.8 HIGH
Network
cabextract
cabextract_project
debian
canonical
redhat
libmspack
cabextract
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower
An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite. CWE-787
 Out-of-bounds Write
CVE-2018-14681 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251185 6.5 MEDIUM
Network
cabextract
cabextract_project
debian
canonical
redhat
libmspack
cabextract
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. It does not reject blank CHM filenames. CWE-20
 Improper Input Validation 
CVE-2018-14680 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251186 6.5 MEDIUM
Network
cabextract
cabextract_project
debian
canonical
redhat
libmspack
cabextract
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower
An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service (uninitial… CWE-193
 Off-by-one Error
CVE-2018-14679 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251187 7.8 HIGH
Local
linux
xen
debian
canonical
linux_kernel
xen
debian_linux
ubuntu_linux
An issue was discovered in the Linux kernel through 4.17.11, as used in Xen through 4.11.x. The xen_failsafe_callback entry point in arch/x86/entry/entry_64.S does not properly maintain RBX, which al… CWE-665
 Improper Initialization
CVE-2018-14678 2024-11-21 12:49 2018-07-29 Show GitHub Exploit DB Packet Storm
251188 5.5 MEDIUM
Local
linux
debian
canonical
linux_kernel
debian_linux
ubuntu_linux
An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference and panic in hfsplus_lookup() in fs/hfsplus/dir.c when opening a file (that is purportedly a hard link… CWE-476
 NULL Pointer Dereference
CVE-2018-14617 2024-11-21 12:49 2018-07-27 Show GitHub Exploit DB Packet Storm
251189 5.5 MEDIUM
Local
linux linux_kernel An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference in fscrypt_do_page_crypto() in fs/crypto/crypto.c when operating on a file in a corrupted f2fs image. CWE-476
 NULL Pointer Dereference
CVE-2018-14616 2024-11-21 12:49 2018-07-27 Show GitHub Exploit DB Packet Storm
251190 5.5 MEDIUM
Local
linux linux_kernel An issue was discovered in the Linux kernel through 4.17.10. There is a buffer overflow in truncate_inline_inode() in fs/f2fs/inline.c when umounting an f2fs image, because a length value may be nega… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-14615 2024-11-21 12:49 2018-07-27 Show GitHub Exploit DB Packet Storm