Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217091 4.8 警告 Memcached - Memcached における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-7239 2014-04-7 17:20 2013-12-20 Show GitHub Exploit DB Packet Storm
217092 5 警告 The PHP Group
アップル		 - PHP の SOAP パーサにおける任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-1643 2014-04-7 17:18 2013-02-21 Show GitHub Exploit DB Packet Storm
217093 7.5 危険 The PHP Group
アップル		 - PHP の ext/soap/soap.c におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1635 2014-04-7 17:17 2013-02-21 Show GitHub Exploit DB Packet Storm
217094 5.8 警告 シーメンス - Siemens SIMATIC S7-1500 CPU PLC デバイスのファームウェアにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2249 2014-04-7 17:05 2014-03-12 Show GitHub Exploit DB Packet Storm
217095 7.1 危険 ZyXEL - ZyXEL P660 シリーズにサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3588 2014-04-7 15:44 2014-04-1 Show GitHub Exploit DB Packet Storm
217096 7.5 危険 CA Technologies - CA ERwin Web Portal におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-2210 2014-04-7 15:04 2014-04-3 Show GitHub Exploit DB Packet Storm
217097 5 警告 シスコシステムズ - Cisco IOS および IOS XE の IKE の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-2143 2014-04-7 14:58 2014-04-3 Show GitHub Exploit DB Packet Storm
217098 4.3 警告 シスコシステムズ - Cisco Emergency Responder におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2117 2014-04-7 14:58 2014-04-3 Show GitHub Exploit DB Packet Storm
217099 4.3 警告 シスコシステムズ - Cisco Emergency Responder における Web ページを挿入される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-2116 2014-04-7 14:58 2014-04-3 Show GitHub Exploit DB Packet Storm
217100 6.8 警告 シスコシステムズ - Cisco Emergency Responder の CERUserServlet ページにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2014-2115 2014-04-7 14:57 2014-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295351 - parallels parallels_plesk_panel The billing system for Parallels Plesk Panel 10.3.1_build1013110726.09 does not disable the SSL 2.0 protocol, which makes it easier for remote attackers to conduct spoofing attacks by leveraging prot… CWE-310
Cryptographic Issues 		CVE-2011-4746 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295352 - parallels parallels_plesk_panel Multiple cross-site scripting (XSS) vulnerabilities in the billing system for Parallels Plesk Panel 10.3.1_build1013110726.09 allow remote attackers to inject arbitrary web script or HTML via crafted… CWE-79
Cross-site Scripting 		CVE-2011-4745 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295353 - parallels parallels_plesk_panel The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by lev… NVD-CWE-Other
CVE-2011-4744 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295354 - parallels parallels_plesk_panel The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 omits the Content-Type header's charset parameter for certain resources, which might allow remote attackers to have an unspecified … NVD-CWE-Other
CVE-2011-4743 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295355 - parallels parallels_plesk_panel The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 has web pages containing e-mail addresses that are not intended for correspondence about the local application deployment, which al… CWE-200
Information Exposure 		CVE-2011-4742 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295356 - parallels parallels_plesk_panel The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 includes a database connection string within a web page, which allows remote attackers to obtain potentially sensitive information … CWE-200
Information Exposure 		CVE-2011-4741 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295357 - parallels parallels_plesk_panel The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 generates web pages containing external links in response to GET requests with query strings for smb/app/search-data/catalogId/mark… CWE-200
Information Exposure 		CVE-2011-4740 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295358 - parallels parallels_plesk_panel The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass au… CWE-255
Credentials Management 		CVE-2011-4739 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295359 - parallels parallels_plesk_panel The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attackers to obtain potent… CWE-200
Information Exposure 		CVE-2011-4738 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm
295360 - parallels parallels_plesk_panel The Control Panel in Parallels Plesk Panel 10.2.0 build 20110407.20 includes a submitted password within an HTTP response body, which allows remote attackers to obtain sensitive information by sniffi… CWE-200
Information Exposure 		CVE-2011-4737 2024-11-21 10:32 2011-12-16 Show GitHub Exploit DB Packet Storm