Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250601	6.8	警告	Apache Software Foundation	-	Apache Archiva におけるクロスサイトフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1026	2012-03-27 18:43	2011-06-2	Show	GitHub Exploit DB Packet Storm

250602	7.2	危険	Linux	-	Linux kernel の ldm_frag_add 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1017	2012-03-27 18:43	2011-03-1	Show	GitHub Exploit DB Packet Storm

250603	4.9	警告	Linux	-	Linux kernel の ldm_parse_vmdb 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-1012	2012-03-27 18:43	2011-03-1	Show	GitHub Exploit DB Packet Storm

250604	4	警告	Best Practical Solutions	-	Best Practical Solutions RT の Scrips_Overlay.pm における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1008	2012-03-27 18:43	2011-02-28	Show	GitHub Exploit DB Packet Storm

250605	2.1	注意	Best Practical Solutions	-	Best Practical Solutions RT における資格情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-1007	2012-03-27 18:43	2011-02-28	Show	GitHub Exploit DB Packet Storm

250606	6.8	警告	ClamAV	-	ClamAV の vba_read_project_strings 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-1003	2012-03-27 18:43	2011-02-23	Show	GitHub Exploit DB Packet Storm

250607	4.3	警告	Google	-	Android SDK の dexdump におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-1001	2012-03-27 18:43	2011-07-8	Show	GitHub Exploit DB Packet Storm

250608	6.4	警告	freedesktop.org	-	Telepathy Gabble における音声やビデオ通話を傍受される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1000	2012-03-27 18:43	2011-02-18	Show	GitHub Exploit DB Packet Storm

250609	6.8	警告	dhcpcd project	-	dhcpcd における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0996	2012-03-27 18:43	2011-04-13	Show	GitHub Exploit DB Packet Storm

250610	2.1	注意	Novell Christian Neukirchen	-	SLE の sqlite3-ruby gem における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0995	2012-03-27 18:43	2011-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
290411	-	simplemachines	simple_machines_forum	Simple Machines Forum (SMF) 2.0.6, 1.1.19, and earlier allows remote attackers to impersonate arbitrary users via a Unicode homoglyph character in a username.	CWE-20 Improper Input Validation	CVE-2013-7236	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290412	-	simplemachines	simple_machines_forum	Simple Machines Forum (SMF) before 1.1.19 and 2.x before 2.0.6 allows remote attackers to impersonate arbitrary users via multiple space characters characters.	CWE-20 Improper Input Validation	CVE-2013-7235	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290413	-	simplemachines	simple_machines_forum	Simple Machines Forum (SMF) before 1.1.19 and 2.x before 2.0.6 allows remote attackers to conduct clickjacking attacks via an X-Frame-Options header.	CWE-20 Improper Input Validation	CVE-2013-7234	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290414	-	gnome	gnome-shell	The automatic screen lock functionality in GNOME Shell (aka gnome-shell) before 3.10 does not prevent access to the "Enter a Command" dialog, which allows physically proximate attackers to execute ar…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-7221	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290415	-	gnome	gnome-shell	js/ui/screenShield.js in GNOME Shell (aka gnome-shell) before 3.8 allows physically proximate attackers to execute arbitrary commands by leveraging an unattended workstation with the keyboard focus o…	NVD-CWE-Other	CVE-2013-7220	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290416	-	phusion	juvia	Juvia uses the same secret key for all installations, which allows remote attackers to have unspecified impact by leveraging the secret key in app/config/initializers/secret_token.rb, related to cook…	CWE-255 Credentials Management	CVE-2013-7134	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290417	-	basespace_ruby_sdk_project	basespace_ruby_sdk	The put_call function in the API client (api/api_client.rb) in the BaseSpace Ruby SDK (aka bio-basespace-sdk) gem 0.1.7 for Ruby uses the API_KEY on the command line, which allows remote attackers to…	CWE-200 Information Exposure	CVE-2013-7111	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290418	-	entity_reference_project	entityreference	The Entity reference module 7.x-1.x before 7.x-1.1-rc1 for Drupal allows remote attackers to read private nodes titles by leveraging edit permissions to a node that references a private node.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-7066	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290419	-	organic_groups_project	organic_groups	The Organic Groups (OG) module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users to bypass group restrictions on nodes with all groups set to optional input via an empty group field.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-7068	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm

290420	-	organic_groups_project	organic_groups	The Organic Groups (OG) module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to bypass access restrictions and post to arbitrary groups via a group audience field, as demonstrated by the …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-7065	2024-11-21 11:00	2014-04-29	Show	GitHub Exploit DB Packet Storm