Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217621 2.6 注意 New Atlanta Communications, LLC. - Windows 用 BlueDragon Server および Server JX におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2311 2014-03-11 17:43 2006-06-26 Show GitHub Exploit DB Packet Storm
217622 6.4 警告 mirabilis - ICQ Client におけるクロスアプリケーションスクリプティングの脆弱性 - CVE-2006-2303 2014-03-11 17:43 2006-05-11 Show GitHub Exploit DB Packet Storm
217623 5.8 警告 inhouse associates - IA-Calendar におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-2291 2014-03-11 17:43 2006-05-10 Show GitHub Exploit DB Packet Storm
217624 2.1 注意 Avahi - Avahi におけるバッファオーバーフローの脆弱性 - CVE-2006-2289 2014-03-11 17:43 2006-05-10 Show GitHub Exploit DB Packet Storm
217625 5 警告 intervations - FileCOPA におけるバッファオーバーフローの脆弱性 - CVE-2006-2254 2014-03-11 17:43 2006-05-9 Show GitHub Exploit DB Packet Storm
217626 7.6 危険 id software - Quake 3 Engine および Quake III Arena におけるバッファオーバーフローの脆弱性 - CVE-2006-2236 2014-03-11 17:43 2006-05-8 Show GitHub Exploit DB Packet Storm
217627 7.6 危険 codemunkyx - CodeMunkyX Simple Poll における管理者権限を取得される脆弱性 - CVE-2006-2235 2014-03-11 17:43 2006-05-5 Show GitHub Exploit DB Packet Storm
217628 7.5 危険 banktown - BankTown Client Control におけるバッファオーバーフローの脆弱性 - CVE-2006-2233 2014-03-11 17:43 2006-05-5 Show GitHub Exploit DB Packet Storm
217629 5 警告 dxmsoft - XM Easy Personal FTP Server におけるバッファオーバーフローの脆弱性 - CVE-2006-2226 2014-03-11 17:43 2006-05-5 Show GitHub Exploit DB Packet Storm
217630 7.5 危険 dxmsoft - XM Easy Personal FTP Server におけるバッファオーバーフローの脆弱性 - CVE-2006-2225 2014-03-11 17:43 2006-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294711 - f5 nginx nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via (1) a trailing . (dot) or (2) certain "$index_al… NVD-CWE-noinfo
CVE-2011-4963 2024-11-21 10:33 2012-07-27 Show GitHub Exploit DB Packet Storm
294712 - avaya aura_application_server_5300 Stack-based buffer overflow in cstore.exe in the Media Application Server (MAS) in Avaya Aura Application Server 5300 (formerly Nortel Media Application Server) 1.x before 1.0.2 and 2.0 before Patch … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-5096 2024-11-21 10:33 2012-07-4 Show GitHub Exploit DB Packet Storm
294713 - wordpress wordpress The make_clickable function in wp-includes/formatting.php in WordPress before 3.1.1 does not properly check URLs before passing them to the PCRE library, which allows remote attackers to cause a deni… CWE-20
 Improper Input Validation  		CVE-2011-4957 2024-11-21 10:33 2012-06-28 Show GitHub Exploit DB Packet Storm
294714 - wordpress wordpress Cross-site scripting (XSS) vulnerability in WordPress before 3.1.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2011-4956 2024-11-21 10:33 2012-06-28 Show GitHub Exploit DB Packet Storm
294715 - python python The list_directory function in Lib/SimpleHTTPServer.py in SimpleHTTPServer in Python before 2.5.6c1, 2.6.x before 2.6.7 rc2, and 2.7.x before 2.7.2 does not place a charset parameter in the Content-T… CWE-79
Cross-site Scripting 		CVE-2011-4940 2024-11-21 10:33 2012-06-27 Show GitHub Exploit DB Packet Storm
294716 - linux
novell 		linux_kernel
suse_linux_enterprise_server 		The ROSE protocol implementation in the Linux kernel before 2.6.39 does not verify that certain data-length values are consistent with the amount of data sent, which might allow remote attackers to o… CWE-20
 Improper Input Validation  		CVE-2011-4914 2024-11-21 10:33 2012-06-22 Show GitHub Exploit DB Packet Storm
294717 - novell
linux 		suse_linux_enterprise_server
linux_kernel 		The rose_parse_ccitt function in net/rose/rose_subr.c in the Linux kernel before 2.6.39 does not validate the FAC_CCITT_DEST_NSAP and FAC_CCITT_SRC_NSAP fields, which allows remote attackers to (1) c… CWE-20
 Improper Input Validation  		CVE-2011-4913 2024-11-21 10:33 2012-06-22 Show GitHub Exploit DB Packet Storm
294718 - openssl openssl The Diffie-Hellman key-exchange implementation in OpenSSL 0.9.8, when FIPS mode is enabled, does not properly validate a public parameter, which makes it easier for man-in-the-middle attackers to obt… CWE-310
Cryptographic Issues 		CVE-2011-5095 2024-11-21 10:33 2012-06-21 Show GitHub Exploit DB Packet Storm
294719 - mozilla network_security_services Mozilla Network Security Services (NSS) 3.x, with certain settings of the SSL_ENABLE_RENEGOTIATION option, does not properly restrict client-initiated renegotiation within the SSL and TLS protocols, … NVD-CWE-Other
CVE-2011-5094 2024-11-21 10:33 2012-06-17 Show GitHub Exploit DB Packet Storm
294720 - bestpractical rt Best Practical Solutions RT 4.x before 4.0.6 does not properly implement the DisallowExecuteCode option, which allows remote authenticated users to bypass intended access restrictions and execute arb… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-5093 2024-11-21 10:33 2012-06-5 Show GitHub Exploit DB Packet Storm