Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250261 7.5 危険 SmarterTools Inc. - SmarterTools SmarterStats Web サーバにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2149 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
250262 10 危険 SmarterTools Inc. - SmarterTools SmarterStats Web サーバの Admin/frmSite.aspx における任意コマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-2148 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
250263 3.6 注意 Openswan - Openswan における任意のプロセスを kill される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2147 2012-03-27 18:43 2011-05-20 Show GitHub Exploit DB Packet Storm
250264 5 警告 IBM - IBM Datacap Taskmaster Capture の eDocument Conversion Actions 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2144 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250265 6.8 警告 IBM - IBM Datacap Taskmaster Captureにおけるログインのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2143 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250266 5 警告 IBM - IBM Datacap Taskmaster Capture の Web Client Service における平文のパスワードを要求する脆弱性 CWE-310
暗号の問題 		CVE-2011-2142 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250267 7.5 危険 IBM - IBM Datacap Taskmaster Capture の TMWeb におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2141 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250268 5 警告 opensymphony
Apache Software Foundation		 - Apache Struts の XWork における重要情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2088 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250269 4.3 警告 Apache Software Foundation - Apache Struts の javatemplates プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2087 2012-03-27 18:43 2011-05-13 Show GitHub Exploit DB Packet Storm
250270 5 警告 inventivetec - MediaCAST における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2081 2012-03-27 18:43 2011-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295461 - canonical apt-xapian-index
ubuntu_linux 		apt-xapian-index before 0.45ubuntu2.1, 0.44ubuntu7.1, and 0.44ubuntu5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restr… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1064 2024-11-21 10:48 2013-10-4 Show GitHub Exploit DB Packet Storm
295462 - canonical
evan_dandrea 		ubuntu_linux
usb-creator 		usb-creator 0.2.47 before 0.2.47.1, 0.2.40 before 0.2.40ubuntu2, and 0.2.38 before 0.2.38.2 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass i… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1063 2024-11-21 10:48 2013-10-4 Show GitHub Exploit DB Packet Storm
295463 - canonical
michael_vogt 		ubuntu_linux
ubuntu-system-service 		ubuntu-system-service 0.2.4 before 0.2.4.1. 0.2.3 before 0.2.3.1, and 0.2.2 before 0.2.2.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass in… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1062 2024-11-21 10:48 2013-10-4 Show GitHub Exploit DB Packet Storm
295464 - marc_deslauriers
canonical 		software-properties
ubuntu_linux 		dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authorit… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1061 2024-11-21 10:48 2013-10-4 Show GitHub Exploit DB Packet Storm
295465 - enea
emerson 		ose
dl_8000_remote_terminal_unit
roc_800l_remote_terminal_unit
roc_800_remote_terminal_unit 		The Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier have hardcoded credentials in a ROM… CWE-255
Credentials Management 		CVE-2013-0694 2024-11-21 10:48 2013-10-3 Show GitHub Exploit DB Packet Storm
295466 - enea
emerson 		ose
roc_800l_remote_terminal_unit
dl_8000_remote_terminal_unit
roc_800_remote_terminal_unit 		The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier performs … CWE-200
Information Exposure 		CVE-2013-0693 2024-11-21 10:48 2013-10-3 Show GitHub Exploit DB Packet Storm
295467 - enea
emerson 		ose
roc_800l_remote_terminal_unit
roc_800_remote_terminal_unit
dl_8000_remote_terminal_unit 		The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows re… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0692 2024-11-21 10:48 2013-10-3 Show GitHub Exploit DB Packet Storm
295468 - enea
emerson 		ose
roc_800l_remote_terminal_unit
roc_800_remote_terminal_unit
dl_8000_remote_terminal_unit 		The TFTP server on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote at… CWE-94
Code Injection 		CVE-2013-0689 2024-11-21 10:48 2013-10-3 Show GitHub Exploit DB Packet Storm
295469 - canonical ubuntu_linux A certain Ubuntu build procedure for perf, as distributed in the Linux kernel packages in Ubuntu 10.04 LTS, 12.04 LTS, 12.10, 13.04, and 13.10, sets the HOME environment variable to the ~buildd direc… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1060 2024-11-21 10:48 2013-09-25 Show GitHub Exploit DB Packet Storm
295470 - cisco anyconnect_secure_mobility_client Cisco AnyConnect Secure Mobility Client on Mac OS X uses weak permissions for a library directory, which allows local users to gain privileges via a crafted library file, aka Bug ID CSCue33619. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1130 2024-11-21 10:48 2013-09-21 Show GitHub Exploit DB Packet Storm