Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
218391	5.6	警告	SystemTap	-	SystemTap における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2012-0875	2014-02-6 15:33	2012-02-20	Show	GitHub Exploit DB Packet Storm

218392	6.8	警告	KDE project Novell Canonical	-	Ark におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-2725	2014-02-6 15:32	2011-07-26	Show	GitHub Exploit DB Packet Storm

218393	6.8	警告	Rapid7	-	Rapid7 Nexpose のセキュリティコンソールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6493	2014-02-6 14:40	2012-12-19	Show	GitHub Exploit DB Packet Storm

218394	9.3	危険	Csound	-	Csound の util/lpci_main.c 内の main 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-2108	2014-02-6 14:38	2012-04-4	Show	GitHub Exploit DB Packet Storm

218395	9.3	危険	Csound	-	Csound の util/lpci_main.c 内の main 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-2107	2014-02-6 14:38	2012-04-4	Show	GitHub Exploit DB Packet Storm

218396	9.3	危険	Csound	-	Csound の util/pv_import.c 内の pv_import 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-2106	2014-02-6 14:37	2012-04-4	Show	GitHub Exploit DB Packet Storm

218397	6.8	警告	OTRS プロジェクト	-	Open Ticket Request System の Kernel/Modules/ 内の複数の .pm ファイルにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-1694	2014-02-6 14:08	2014-01-28	Show	GitHub Exploit DB Packet Storm

218398	7.5	危険	OTRS プロジェクト	-	Open Ticket Request System の Kernel/System/State.pm における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-1471	2014-02-6 14:04	2014-01-28	Show	GitHub Exploit DB Packet Storm

218399	1.9	注意	dest-unreach.org	-	socat におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-0019	2014-02-6 12:21	2014-01-28	Show	GitHub Exploit DB Packet Storm

218400	8.5	危険	TRENDnet	-	TRENDnet TEW-812DRU ルータにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2013-3365	2014-02-6 12:20	2013-07-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294721	-	cobbler_project	cobbler	The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows context-dependent attackers to execute arbitrary code via vectors related to the use of the yaml.load function instead of th…	CWE-20 Improper Input Validation	CVE-2011-4953	2024-11-21 10:33	2014-10-27	Show	GitHub Exploit DB Packet Storm

294722	-	imperva	securesphere_web_application_firewall	Cross-site scripting (XSS) vulnerability in the Violations Table in the management GUI in the MX Management Server in Imperva SecureSphere Web Application Firewall (WAF) 9.0 allows remote attackers t…	CWE-79 Cross-site Scripting	CVE-2011-4887	2024-11-21 10:33	2014-09-11	Show	GitHub Exploit DB Packet Storm

294723	-	dlink	dir-601_firmware dir-601	Directory traversal vulnerability in the TFTP server in D-Link DIR-601 Wireless N150 Home Router with firmware 1.02NA allows remote attackers to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2011-4821	2024-11-21 10:33	2014-06-20	Show	GitHub Exploit DB Packet Storm

294724	-	intersectalliance	system_intrusion_analysis_and_reporting_environment	Cross-site scripting (XSS) vulnerability in the events page in the System iNtrusion Analysis and Reporting Environment (SNARE) for Linux agent before 1.7.0 allows remote attackers to inject arbitrary…	CWE-79 Cross-site Scripting	CVE-2011-5249	2024-11-21 10:33	2014-05-15	Show	GitHub Exploit DB Packet Storm

294725	-	disk_pool_manager_project	disk_pool_manager	Multiple SQL injection vulnerabilities in LCG Disk Pool Manager (DPM) before 1.8.6, as used in EGI UDM, allow remote attackers to execute arbitrary SQL commands via the (1) r_token variable in the dp…	CWE-89 SQL Injection	CVE-2011-4970	2024-11-21 10:33	2014-05-13	Show	GitHub Exploit DB Packet Storm

294726	-	silverstripe	silverstripe	Cross-site scripting (XSS) vulnerability in the process function in SSViewer.php in SilverStripe before 2.3.13 and 2.4.x before 2.4.6 allows remote attackers to inject arbitrary web script or HTML vi…	CWE-79 Cross-site Scripting	CVE-2011-4958	2024-11-21 10:33	2014-04-8	Show	GitHub Exploit DB Packet Storm

294727	-	condor_project fedoraproject redhat	condor fedora enterprise_mrg	Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x versions, as used in Red Hat MRG Grid and possibly other products, allow local users to cause a denial…	CWE-134 Use of Externally-Controlled Format String	CVE-2011-4930	2024-11-21 10:33	2014-02-11	Show	GitHub Exploit DB Packet Storm

294728	-	memcached	memcached	Multiple integer signedness errors in the (1) process_bin_sasl_auth, (2) process_bin_complete_sasl_auth, (3) process_bin_update, and (4) process_bin_append_prepend functions in Memcached 1.4.5 and ea…	CWE-189 Numeric Errors	CVE-2011-4971	2024-11-21 10:33	2013-12-13	Show	GitHub Exploit DB Packet Storm

294729	-	freeradius	freeradius	modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenti…	CWE-255 Credentials Management	CVE-2011-4966	2024-11-21 10:33	2013-03-13	Show	GitHub Exploit DB Packet Storm

294730	-	jquery	jquery	Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag.	CWE-79 Cross-site Scripting	CVE-2011-4969	2024-11-21 10:33	2013-03-9	Show	GitHub Exploit DB Packet Storm