Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253291	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1277	2011-06-24 10:12	2011-06-14	Show	GitHub Exploit DB Packet Storm

253292	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1276	2011-06-24 10:11	2011-06-14	Show	GitHub Exploit DB Packet Storm

253293	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1275	2011-06-24 10:10	2011-06-14	Show	GitHub Exploit DB Packet Storm

253294	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1274	2011-06-24 10:10	2011-06-14	Show	GitHub Exploit DB Packet Storm

253295	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1273	2011-06-24 10:07	2011-06-14	Show	GitHub Exploit DB Packet Storm

253296	9.3	危険	マイクロソフト	-	Microsoft Excel における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1272	2011-06-24 10:06	2011-06-14	Show	GitHub Exploit DB Packet Storm

253297	5.1	警告	マイクロソフト	-	Microsoft .NET Framework の JIT コンパイラにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1271	2011-06-24 10:05	2011-06-14	Show	GitHub Exploit DB Packet Storm

253298	10	危険	マイクロソフト	-	Microsoft Windows の SMB クライアントにおける任意コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1268	2011-06-24 10:04	2011-06-14	Show	GitHub Exploit DB Packet Storm

253299	7.8	危険	マイクロソフト	-	Microsoft Windows の Distributed File System 実装におけるサービス運用妨害 (システムハング) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1869	2011-06-24 10:03	2011-06-14	Show	GitHub Exploit DB Packet Storm

253300	10	危険	マイクロソフト	-	Microsoft Windows の Distributed File System 実装における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1868	2011-06-24 10:01	2011-06-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
208861	8.8	HIGH Network	ignitedcms	ignitedcms	Cross Site Request Forgery (CSRF) in IgnitedCMS v1.0 allows remote attackers to obtain sensitive information and gain privilege via the component "/admin/profile/save_profile".	CWE-352 Origin Validation Error	CVE-2020-18694	2024-11-21 14:08	2021-08-7	Show	GitHub Exploit DB Packet Storm

208862	5.4	MEDIUM Network	mineweb	minewebcms	Cross Site Scripting (XSS) in MineWebCMS v1.7.0 allows remote attackers to execute arbitrary code by injecting malicious code into the 'Title' field of the component '/admin/news'.	CWE-79 Cross-site Scripting	CVE-2020-18693	2024-11-21 14:08	2021-08-7	Show	GitHub Exploit DB Packet Storm

208863	5.4	MEDIUM Network	yzmcms	yzmcms	Cross Site Scripting (XSS) vulnerabiity in YzmCMS 5.2 via the site_code parameter in admin/index/init.html.	CWE-79 Cross-site Scripting	CVE-2020-19118	2024-11-21 14:08	2021-07-30	Show	GitHub Exploit DB Packet Storm

208864	9.8	CRITICAL Network	metinfo	metinfo	SQL Injection vulnerability in Metinfo 6.1.3 via a dosafety_emailadd action in basic.php.	CWE-89 SQL Injection	CVE-2020-18175	2024-11-21 14:08	2021-07-30	Show	GitHub Exploit DB Packet Storm

208865	5.4	MEDIUM Network	hucart	hucart	Cross Site Scripting (XSS) vulnerability in HuCart 5.7.4 via nickname in index.php.	CWE-79 Cross-site Scripting	CVE-2020-18158	2024-11-21 14:08	2021-07-30	Show	GitHub Exploit DB Packet Storm

208866	8.8	HIGH Network	metinfo	metinfo	Cross Site Request Forgery (CSRF) vulnerability in MetInfo 6.1.3 via a doaddsave action in admin/index.php.	CWE-352 Origin Validation Error	CVE-2020-18157	2024-11-21 14:08	2021-07-30	Show	GitHub Exploit DB Packet Storm

208867	9.8	CRITICAL Network	whatsns	whatsns	SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?admin_banned/add.htm.	CWE-89 SQL Injection	CVE-2020-18013	2024-11-21 14:08	2021-07-30	Show	GitHub Exploit DB Packet Storm

208868	7.5	HIGH Network	tinyexr_project	tinyexr	tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS).	CWE-129 Improper Validation of Array Index	CVE-2020-18430	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

208869	7.5	HIGH Network	tinyexr_project	tinyexr	tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS).	CWE-129 Improper Validation of Array Index	CVE-2020-18428	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm

208870	9.8	CRITICAL Network	autohotkey	autohotkey	A process injection vulnerability in setup.exe of AutoHotkey 1.1.32.00 allows attackers to escalate privileges.	NVD-CWE-noinfo	CVE-2020-18174	2024-11-21 14:08	2021-07-27	Show	GitHub Exploit DB Packet Storm