Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
218301 4.3 警告 マイクロソフト - Microsoft Internet Explorer 8 から 11 における Mandatory Integrity Control 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0268 2014-02-13 16:28 2014-02-11 Show GitHub Exploit DB Packet Storm
218302 9.3 危険 マイクロソフト - Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-0267 2014-02-13 16:27 2014-02-11 Show GitHub Exploit DB Packet Storm
218303 4.3 警告 マイクロソフト - Microsoft .NET Framework の VsaVb7rt.dll における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0295 2014-02-13 16:26 2014-02-11 Show GitHub Exploit DB Packet Storm
218304 9.3 危険 マイクロソフト - Microsoft .NET Framework における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0257 2014-02-13 16:25 2014-02-11 Show GitHub Exploit DB Packet Storm
218305 5 警告 マイクロソフト - Microsoft .NET Framework におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0253 2014-02-13 16:23 2014-02-11 Show GitHub Exploit DB Packet Storm
218306 10 危険 マイクロソフト - Microsoft Forefront Protection 2010 for Exchange Server における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2014-0294 2014-02-13 16:21 2014-02-11 Show GitHub Exploit DB Packet Storm
218307 9.3 危険 マイクロソフト - 複数の Microsoft Windows 製品の Direct2D の実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-0263 2014-02-13 16:20 2014-02-11 Show GitHub Exploit DB Packet Storm
218308 7.8 危険 マイクロソフト - 複数の Microsoft Windows 製品の IPv6 の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2014-0254 2014-02-13 16:19 2014-02-11 Show GitHub Exploit DB Packet Storm
218309 7.1 危険 マイクロソフト - 複数の Microsoft Windows 製品における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0266 2014-02-13 16:18 2014-02-11 Show GitHub Exploit DB Packet Storm
218310 10 危険 アドビシステムズ - Adobe Shockwave Player における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2014-0501 2014-02-13 14:41 2014-02-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294761 - cristopher_shi php-scms Cross-site scripting (XSS) vulnerability in templates/default/Admin/Login.html in PHP-SCMS 1.6.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the lang parameter to i… CWE-79
Cross-site Scripting 		CVE-2011-5220 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294762 - mpdf1 mpdf Directory traversal vulnerability in examples/show_code.php in mPDF 5.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter. CWE-22
Path Traversal 		CVE-2011-5219 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294763 - neubivljiv dota_openstats SQL injection vulnerability in DotA OpenStats 1.3.9 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. CWE-89
SQL Injection 		CVE-2011-5218 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294764 - hitachi jp1\/serverconductor\/deploymentmanager
serverconductor\/deploymentmanager 		Directory traversal vulnerability in the PXE Mtftp service in Hitachi JP1/ServerConductor/DeploymentManager before 08-55 Japanese and before 08-51 English allows remote attackers to read arbitrary fi… CWE-22
Path Traversal 		CVE-2011-5217 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294765 - troyef
wordpress 		scorm_cloud
wordpress 		SQL injection vulnerability in ajax.php in SCORM Cloud For WordPress plugin before 1.0.7 for WordPress allows remote attackers to execute arbitrary SQL commands via the active parameter. NOTE: some … CWE-89
SQL Injection 		CVE-2011-5216 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294766 - 2daybiz video_community_portal_script SQL injection vulnerability in index.php in Video Community Portal allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2011-5215 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294767 - browsercrm browsercrm Multiple cross-site scripting (XSS) vulnerabilities in BrowserCRM 5.100.01 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) index.php, (2) modules/ad… CWE-79
Cross-site Scripting 		CVE-2011-5214 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294768 - browsercrm browsercrm Multiple SQL injection vulnerabilities in BrowserCRM 5.100.01 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) login[username] parameter to index.php, (2) parent_id pa… CWE-89
SQL Injection 		CVE-2011-5213 2024-11-21 10:33 2012-10-26 Show GitHub Exploit DB Packet Storm
294769 - intelliants subrion_cms SQL injection vulnerability in admin/index.php in Subrion CMS 2.0.4 allows remote attackers to execute arbitrary SQL commands via the (1) user name or (2) password field. CWE-89
SQL Injection 		CVE-2011-5212 2024-11-21 10:33 2012-10-23 Show GitHub Exploit DB Packet Storm
294770 - intelliants subrion_cms Cross-site scripting (XSS) vulnerability in the poll module in Subrion CMS 2.0.4 allows remote attackers to inject arbitrary web script or HTML via the title field. NOTE: some of these details are o… CWE-79
Cross-site Scripting 		CVE-2011-5211 2024-11-21 10:33 2012-10-23 Show GitHub Exploit DB Packet Storm