Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 6, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 217561 | 4.3 | 警告 | clearswift | - | Clearswift MIMEsweeper for Web におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-3522 | 2014-03-11 17:43 | 2006-07-12 | Show | GitHub Exploit DB Packet Storm |
| 217562 | 5 | 警告 | Nuked-Klan | - | Nuked-Klan におけるクロスサイトリクエストフォージェリの脆弱性 | - | CVE-2006-3479 | 2014-03-11 17:43 | 2006-07-10 | Show | GitHub Exploit DB Packet Storm |
| 217563 | 4.3 | 警告 | phpwebgallery | - | PhpWebGallery におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-3476 | 2014-03-11 17:43 | 2006-07-10 | Show | GitHub Exploit DB Packet Storm |
| 217564 | 7.5 | 危険 | Drupal | - | form_mail Drupal Module における CRLF インジェクションの脆弱性 | - | CVE-2006-3473 | 2014-03-11 17:43 | 2006-07-10 | Show | GitHub Exploit DB Packet Storm |
| 217565 | 7.5 | 危険 | mybulletinboard | - | MyBulletinBoard におけるクロスサイトリクエストフォージェリの脆弱性 | - | CVE-2006-3420 | 2014-03-11 17:43 | 2006-07-7 | Show | GitHub Exploit DB Packet Storm |
| 217566 | 5.4 | 警告 | マイクロソフト | - | Windows XP および 2003 におけるバッファオーバーフローの脆弱性 | - | CVE-2006-3351 | 2014-03-11 17:43 | 2006-07-6 | Show | GitHub Exploit DB Packet Storm |
| 217567 | 4.3 | 警告 | ajax softwares | - | AliPAGER におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-3345 | 2014-03-11 17:43 | 2006-07-3 | Show | GitHub Exploit DB Packet Storm |
| 217568 | 2.6 | 注意 | Atlassian | - | Atlassian JIRA におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-3338 | 2014-03-11 17:43 | 2006-07-3 | Show | GitHub Exploit DB Packet Storm |
| 217569 | 6.8 | 警告 | DeltaScripts | - | PHP/MySQL Classifieds におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-3330 | 2014-03-11 17:43 | 2006-06-30 | Show | GitHub Exploit DB Packet Storm |
| 217570 | 4.3 | 警告 | e-cbd.biz | - | Custom dating biz dating script におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2006-3327 | 2014-03-11 17:43 | 2006-06-30 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 6, 2026, 4:08 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 294401 | 7.8 |
HIGH
Local |
linux canonical |
linux_kernel ubuntu_linux |
OverlayFS in the Linux kernel before 3.0.0-16.28, as used in Ubuntu 10.0.4 LTS and 11.10, is missing inode security checks which could allow attackers to bypass security restrictions and perform unau… |
CWE-862
Missing Authorization |
CVE-2012-0055 | 2024-11-21 10:34 | 2020-02-20 | Show | GitHub Exploit DB Packet Storm |
| 294402 | 5.3 |
MEDIUM
Network |
mirc | mirc | mIRC prior to 7.22 has a message leak because chopping of outbound messages is mishandled. |
CWE-200
Information Exposure |
CVE-2011-5282 | 2024-11-21 10:34 | 2020-01-22 | Show | GitHub Exploit DB Packet Storm |
| 294403 | 7.5 |
HIGH
Network |
spamdyke | spamdyke | spamdyke prior to 4.2.1: STARTTLS reveals plaintext |
CWE-74
Injection |
CVE-2012-0070 | 2024-11-21 10:34 | 2020-01-15 | Show | GitHub Exploit DB Packet Storm |
| 294404 | 6.4 |
MEDIUM
Adjacent |
cisco | ironport_web_security_appliance | Cisco IronPort Web Security Appliance AsyncOS software prior to 7.5 has a SSL Certificate Caching vulnerability which could allow man-in-the-middle attacks |
CWE-20
Improper Input Validation |
CVE-2012-0334 | 2024-11-21 10:34 | 2020-01-15 | Show | GitHub Exploit DB Packet Storm |
| 294405 | 9.8 |
CRITICAL
Network |
imperva | securesphere_web_application_firewall | Imperva SecureSphere Web Application Firewall (WAF) before 12-august-2010 allows SQL injection filter bypass. |
CWE-89
SQL Injection |
CVE-2011-5266 | 2024-11-21 10:34 | 2020-01-9 | Show | GitHub Exploit DB Packet Storm |
| 294406 | 9.8 |
CRITICAL
Network |
distributed_ruby_project | distributed_ruby | Distributed Ruby (aka DRuby) 1.8 mishandles instance_eval. |
NVD-CWE-noinfo
|
CVE-2011-5331 | 2024-11-21 10:34 | 2019-11-19 | Show | GitHub Exploit DB Packet Storm |
| 294407 | 9.8 |
CRITICAL
Network |
distributed_ruby_project | distributed_ruby | Distributed Ruby (aka DRuby) 1.8 mishandles the sending of syscalls. |
NVD-CWE-noinfo
|
CVE-2011-5330 | 2024-11-21 10:34 | 2019-11-19 | Show | GitHub Exploit DB Packet Storm |
| 294408 | 5.5 |
MEDIUM
Local |
clusterlabs | pacemaker | Pacemaker before 1.1.6 configure script creates temporary files insecurely |
CWE-59
Link Following |
CVE-2011-5271 | 2024-11-21 10:34 | 2019-11-12 | Show | GitHub Exploit DB Packet Storm |
| 294409 | 7.4 |
HIGH
Network |
tahoe-lafs debian |
tahoe-lafs debian_linux |
Tahoe-LAFS 1.9.0 fails to ensure integrity which allows remote attackers to corrupt mutable files or directories upon retrieval. |
CWE-20
Improper Input Validation |
CVE-2012-0051 | 2024-11-21 10:34 | 2019-11-8 | Show | GitHub Exploit DB Packet Storm |
| 294410 | 4.3 |
MEDIUM
Network |
openttd debian fedoraproject |
openttd debian_linux fedora |
OpenTTD before 1.1.5 contains a Denial of Service (slow read attack) that prevents users from joining the server. |
CWE-400
Uncontrolled Resource Consumption |
CVE-2012-0049 | 2024-11-21 10:34 | 2019-11-8 | Show | GitHub Exploit DB Packet Storm |