Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
217931 4.3 警告 Andy Bailey - WordPress 用 CommentLuv プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1409 2014-03-5 17:13 2013-02-6 Show GitHub Exploit DB Packet Storm
217932 4.3 警告 アイファイ - Eye-Fi Helper におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4696 2014-03-5 16:56 2011-11-17 Show GitHub Exploit DB Packet Storm
217933 4.3 警告 DrinkedIn - Android 用 DrinkedIn BarFinder アプリケーションにおける任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1887 2014-03-5 16:42 2014-02-7 Show GitHub Exploit DB Packet Storm
217934 6.4 警告 HS Group - Android 用 ForzeArmate アプリケーションにおける任意の JavaScript コードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1885 2014-03-5 16:40 2014-02-7 Show GitHub Exploit DB Packet Storm
217935 7.5 危険 Google - Android の java/android/webkit/BrowserFrame.java における任意の Java コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-1939 2014-03-5 15:59 2014-02-10 Show GitHub Exploit DB Packet Storm
217936 9 危険 AVTECH - AVTECH AVN801 DVR のファームウェアの cgi-bin/user/Config.cgi におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4981 2014-03-5 14:46 2013-08-28 Show GitHub Exploit DB Packet Storm
217937 9 危険 AVTECH - AVTECH AVN801 DVR のファームウェアの RTSP Packet Handler におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4980 2014-03-5 14:46 2013-08-28 Show GitHub Exploit DB Packet Storm
217938 10 危険 Hangzhou Hikvision Digital Technology - Hikvision DS-2CD7153-E IP カメラのファームウェアの RTSP Packet Handler におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4977 2014-03-5 14:31 2013-08-6 Show GitHub Exploit DB Packet Storm
217939 6.8 警告 Inmatrix - INMATRIX Zoom Player におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3260 2014-03-5 14:12 2013-06-7 Show GitHub Exploit DB Packet Storm
217940 6.8 警告 Inmatrix - INMATRIX Zoom Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-3259 2014-03-5 14:12 2013-06-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295691 - phpgedview phpgedview PhpGedView 4.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by serviceClient… CWE-200
Information Exposure 		CVE-2011-3778 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295692 - phpfreechat phpfreechat phpFreeChat 1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/zilveer… CWE-200
Information Exposure 		CVE-2011-3777 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295693 - musawir_ali phpformgenerator phpFormGenerator 2.09 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by forms/pr… CWE-200
Information Exposure 		CVE-2011-3776 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295694 - litoweb phpfilenavigator PHPfileNavigator 2.3.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xestion… CWE-200
Information Exposure 		CVE-2011-3775 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295695 - bishop_bettini phpesp php Easy Survey Package (phpESP) 2.1.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonst… CWE-200
Information Exposure 		CVE-2011-3774 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295696 - phpdevshell phpdevshell PHPDevShell 3.0.0-Beta-4b allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by gzip… CWE-200
Information Exposure 		CVE-2011-3773 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295697 - php-collab phpcollab phpCollab 2.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by topics/noti_newt… CWE-200
Information Exposure 		CVE-2011-3772 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295698 - gnu phpbook phpBook 2.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by doc/update_smili… CWE-200
Information Exposure 		CVE-2011-3771 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295699 - phpalbum phpalbum phpAlbum 0.4.1.14 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/Flowi… CWE-200
Information Exposure 		CVE-2011-3770 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm
295700 - blondish phpads PHPads 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by ads.inc.php. CWE-200
Information Exposure 		CVE-2011-3769 2024-11-21 10:31 2011-09-24 Show GitHub Exploit DB Packet Storm