Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250351 5 警告 Joomla! - Joomla! における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-2488 2012-03-27 18:43 2011-04-4 Show GitHub Exploit DB Packet Storm
250352 2.6 注意 The Icinga Project - Icinga の config.c におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2477 2012-03-27 18:43 2011-06-14 Show GitHub Exploit DB Packet Storm
250353 4.3 警告 Coppermine Photo Gallery - CPG におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2476 2012-03-27 18:43 2011-06-2 Show GitHub Exploit DB Packet Storm
250354 10 危険 サイベース - Sybase OneBridge Mobile Data Suite の ECTrace.dll における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2011-2475 2012-03-27 18:43 2011-06-9 Show GitHub Exploit DB Packet Storm
250355 5 警告 サイベース - Sybase EAServer Developer Edition の HTTP Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-2474 2012-03-27 18:43 2011-06-9 Show GitHub Exploit DB Packet Storm
250356 6.3 警告 maynard johnson - OProfile の do_dump_data 関数における任意のファイルを作成または上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-2473 2012-03-27 18:43 2011-06-9 Show GitHub Exploit DB Packet Storm
250357 6.3 警告 maynard johnson - OProfile の utils/opcontrol におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-2472 2012-03-27 18:43 2011-06-9 Show GitHub Exploit DB Packet Storm
250358 7.2 危険 maynard johnson - OProfile の utils/opcontrol における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2471 2012-03-27 18:43 2011-06-9 Show GitHub Exploit DB Packet Storm
250359 4.3 警告 reallysimplechat - ARSC におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2470 2012-03-27 18:43 2011-06-29 Show GitHub Exploit DB Packet Storm
250360 5.8 警告 likewise - Likewise Open および Likewise Enterprise の lsassd における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2467 2012-03-27 18:43 2011-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295051 - redhat jboss_enterprise_application_platform
enterprise_linux 		The EJB invocation handler implementation in Red Hat JBossWS, as used in JBoss Enterprise Application Platform (EAP) before 6.2.0, does not properly enforce the method level restrictions for JAX-WS S… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2133 2024-11-21 10:51 2013-12-7 Show GitHub Exploit DB Packet Storm
295052 - redhat
openfabrics 		enterprise_linux
ibutils 		OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on (1) ibdiagnet.db, (2) ibdiagnet.fdbs, (3) ibdiagnet_ibis.log, (4) ibdiagnet.log, (5) ibdiagnet.lst, (… CWE-59
Link Following 		CVE-2013-2561 2024-11-21 10:51 2013-11-24 Show GitHub Exploit DB Packet Storm
295053 - dlink dsl-2740b_firmware
dsl-2740b 		The D-Link DSL-2740B Gateway with firmware EU_1.0, when an active administrator session exists, allows remote attackers to bypass authentication and gain administrator access via a request to login.c… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2271 2024-11-21 10:51 2013-11-19 Show GitHub Exploit DB Packet Storm
295054 - mediawiki mediawiki Unrestricted file upload vulnerability in the chunk upload API in MediaWiki 1.19 through 1.19.6 and 1.20.x before 1.20.6 allows remote attackers to execute arbitrary code by uploading a file with an … NVD-CWE-Other
CVE-2013-2114 2024-11-21 10:51 2013-11-18 Show GitHub Exploit DB Packet Storm
295055 - openvz vzkernel vzkernel before 042stab080.2 in the OpenVZ modification for the Linux kernel 2.6.32 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2239 2024-11-21 10:51 2013-11-12 Show GitHub Exploit DB Packet Storm
295056 - andreas_krennmair tpp tpp 1.3.1 allows remote attackers to execute arbitrary commands via a --exec command in a TPP template file. CWE-94
Code Injection 		CVE-2013-2208 2024-11-21 10:51 2013-10-29 Show GitHub Exploit DB Packet Storm
295057 - redhat
ubuntu 		jboss_enterprise_portal_platform
openshift
jboss_enterprise_brms_platform
jboss_enterprise_web_server
ubuntu 		The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write … CWE-20
 Improper Input Validation  		CVE-2013-2186 2024-11-21 10:51 2013-10-29 Show GitHub Exploit DB Packet Storm
295058 - redhat jboss_enterprise_portal_platform The default configuration of Red Hat JBoss Portal before 6.1.0 enables the JGroups diagnostics service with no authentication when a JGroups channel is started, which allows remote attackers to obtai… CWE-287
Improper Authentication 		CVE-2013-2102 2024-11-21 10:51 2013-10-29 Show GitHub Exploit DB Packet Storm
295059 - quagga quagga Stack-based buffer overflow in the new_msg_lsa_change_notify function in the OSPFD API (ospf_api.c) in Quagga before 0.99.22.2, when --enable-opaque-lsa and the -a command line option are used, allow… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2236 2024-11-21 10:51 2013-10-24 Show GitHub Exploit DB Packet Storm
295060 - apache org.apache.sling.servlets.post The deepGetOrCreateNode function in impl/operations/AbstractCreateOperation.java in org.apache.sling.servlets.post.bundle 2.2.0 and 2.3.0 in Apache Sling does not properly handle a NULL value that re… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-2254 2024-11-21 10:51 2013-10-18 Show GitHub Exploit DB Packet Storm