Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250781	4	警告	GPLHost	-	DTC の shared/inc/sql/ssh.php における任意のアカウントを削除される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0437	2012-03-27 18:42	2011-03-7	Show	GitHub Exploit DB Packet Storm

250782	5	警告	GPLHost	-	DTC における重要な帯域幅の情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2011-0435	2012-03-27 18:42	2011-03-7	Show	GitHub Exploit DB Packet Storm

250783	7.5	危険	GPLHost	-	DTC における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0434	2012-03-27 18:42	2011-03-7	Show	GitHub Exploit DB Packet Storm

250784	7.5	危険	simon pamies	-	PyWebDAV の get_userinfo メソッドにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0432	2012-03-27 18:42	2011-03-14	Show	GitHub Exploit DB Packet Storm

250785	5	警告	OpenAFS	-	OpenAFS の kernel モジュールの afs_linux_lock 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0431	2012-03-27 18:42	2011-02-18	Show	GitHub Exploit DB Packet Storm

250786	7.5	危険	OpenAFS	-	OpenAFS の Rx サーバプロセスにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0430	2012-03-27 18:42	2011-02-18	Show	GitHub Exploit DB Packet Storm

250787	6.8	警告	The Tor Project	-	Tor におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0427	2012-03-27 18:42	2011-01-17	Show	GitHub Exploit DB Packet Storm

250788	4.3	警告	VMware	-	VMware vCenter の vCenter Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-0426	2012-03-27 18:42	2011-05-5	Show	GitHub Exploit DB Packet Storm

250789	7.5	危険	PolyVision	-	PolyVision RoomWizard におけるコンソールアクセスを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-0423	2012-03-27 18:42	2011-01-11	Show	GitHub Exploit DB Packet Storm

250790	4	警告	pureftpd NetBSD	-	Pure-FTPd および NetBSD の glob 実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0418	2012-03-27 18:42	2011-05-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286881	-		geodesicsolutions	geocore_max	Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 (formerly GeoClassifieds and GeoAuctions) allow remote attackers to execute arbitrary SQL commands via t…	CWE-89 SQL Injection	CVE-2014-3871	2024-11-21 11:09	2014-05-27	Show	GitHub Exploit DB Packet Storm

286882	-		bib2html_project	bib2html	Cross-site scripting (XSS) vulnerability in the bib2html plugin 0.9.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the styleShortName parameter in an adminStyleAdd…	CWE-79 Cross-site Scripting	CVE-2014-3870	2024-11-21 11:09	2014-05-27	Show	GitHub Exploit DB Packet Storm

286883	-		usercake	usercake	Multiple cross-site request forgery (CSRF) vulnerabilities in user_settings.php in Usercake 2.0.2 and earlier allow remote attackers to hijack the authentication of administrators for requests that c…	CWE-352 Origin Validation Error	CVE-2014-3866	2024-11-21 11:09	2014-05-27	Show	GitHub Exploit DB Packet Storm

286884	-		ibm	sametime	The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 does not include the HTTPOnly flag in a Set-Cookie header for an unspecified cookie, which makes it easier for remote at…	CWE-200 Information Exposure	CVE-2014-3867	2024-11-21 11:09	2014-05-26	Show	GitHub Exploit DB Packet Storm

286885	5.4	MEDIUM Network	redhat	jboss_aerogear	Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with s…	CWE-79 Cross-site Scripting	CVE-2014-3650	2024-11-21 11:08	2022-07-1	Show	GitHub Exploit DB Packet Storm

286886	7.5	HIGH Network	redhat	jboss_aerogear	The simplepush server iterates through the application installations and pushes a notification to the server provided by deviceToken. But this is user controlled. If a bogus applications is registere…	CWE-400 Uncontrolled Resource Consumption	CVE-2014-3648	2024-11-21 11:08	2022-07-1	Show	GitHub Exploit DB Packet Storm

286887	9.8	CRITICAL Network	musl-libc	musl	Multiple stack-based buffer overflows in the __dn_expand function in network/dn_expand.c in musl libc 1.1x before 1.1.2 and 0.9.13 through 1.0.3 allow remote attackers to (1) have unspecified impact …	CWE-787 Out-of-bounds Write	CVE-2014-3484	2024-11-21 11:08	2020-02-20	Show	GitHub Exploit DB Packet Storm

286888	9.8	CRITICAL Network	php	php	Use-after-free vulnerability in the add_post_var function in the Posthandler component in PHP 5.6.x before 5.6.1 might allow remote attackers to execute arbitrary code by leveraging a third-party fil…	CWE-416 Use After Free	CVE-2014-3622	2024-11-21 11:08	2020-02-19	Show	GitHub Exploit DB Packet Storm

286889	5.4	MEDIUM Network	mybb	mybb	Multiple cross-site scripting (XSS) vulnerabilities in the MyBB (aka MyBulletinBoard) before 1.8.4 allow remote authenticated users to inject arbitrary web script or HTML via the title parameter in t…	CWE-79 Cross-site Scripting	CVE-2014-3827	2024-11-21 11:08	2020-02-12	Show	GitHub Exploit DB Packet Storm

286890	5.4	MEDIUM Network	mybb	mybb	Cross-site scripting (XSS) vulnerability in MyBB before 1.6.13 allows remote authenticated users to inject arbitrary web script or HTML via the name parameter in the edit action of the config-profile…	CWE-79 Cross-site Scripting	CVE-2014-3826	2024-11-21 11:08	2020-02-12	Show	GitHub Exploit DB Packet Storm