Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 9, 2026, 4:11 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250901	5	警告	Novell	-	Novell Data Synchronizer の WebAdmin におけるアクセス権を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-3013	2012-03-27 18:43	2011-07-26	Show	GitHub Exploit DB Packet Storm

250902	10	危険	ioquake3 worldofpadman urbanterror tremulous	-	World of Padman などの製品で使用される ioQuake3 エンジンにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3012	2012-03-27 18:43	2011-08-9	Show	GitHub Exploit DB Packet Storm

250903	5	警告	Ruby-lang.org	-	Ruby における乱数の値を推測される脆弱性	CWE-310 暗号の問題	CVE-2011-3009	2012-03-27 18:43	2011-08-5	Show	GitHub Exploit DB Packet Storm

250904	6.8	警告	マカフィー	-	McAfee SaaS Endpoint Protection の myCIOScn.dll における任意のファイルを書かれる脆弱性	CWE-94 コード・インジェクション	CVE-2011-3007	2012-03-27 18:43	2011-08-10	Show	GitHub Exploit DB Packet Storm

250905	6.8	警告	マカフィー	-	McAfee の SaaS Endpoint Protection における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3006	2012-03-27 18:43	2011-08-10	Show	GitHub Exploit DB Packet Storm

250906	5	警告	Mozilla Foundation	-	Bugzilla におけるプライベートグループ名の存在を発見される脆弱性	CWE-DesignError	CVE-2011-2979	2012-03-27 18:43	2011-08-9	Show	GitHub Exploit DB Packet Storm

250907	5	警告	Mozilla Foundation	-	Bugzilla における任意のアドレスを変更される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2978	2012-03-27 18:43	2011-08-9	Show	GitHub Exploit DB Packet Storm

250908	2.1	注意	Mozilla Foundation	-	Bugzilla における重要な情報を取得される脆弱性	CWE-DesignError	CVE-2011-2977	2012-03-27 18:43	2011-08-9	Show	GitHub Exploit DB Packet Storm

250909	4.3	警告	Mozilla Foundation	-	Bugzilla におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2976	2012-03-27 18:43	2011-08-9	Show	GitHub Exploit DB Packet Storm

250910	6.8	警告	UMN	-	MapServer の msAddImageSymbol 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2975	2012-03-27 18:43	2011-08-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253401	8.1	HIGH Network	opensuse	libzypp	In libzypp before 20170803 it was possible to add unsigned YUM repositories without warning to the user that could lead to man in the middle or malicious servers to inject malicious RPM packages into…	CWE-20 Improper Input Validation	CVE-2017-7435	2024-11-21 12:31	2018-03-2	Show	GitHub Exploit DB Packet Storm

253402	9.1	CRITICAL Network	netiq	identity_manager	The NetIQ Identity Manager Plugins before 4.6.1 contained various XML External XML Entity (XXE) handling flaws that could be used by attackers to leak information or cause denial of service attacks.	CWE-611 XXE	CVE-2017-7426	2024-11-21 12:31	2018-03-2	Show	GitHub Exploit DB Packet Storm

253403	9.8	CRITICAL Network	xmlsoft google debian	libxml2 android debian_linux	Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7376	2024-11-21 12:31	2018-02-20	Show	GitHub Exploit DB Packet Storm

253404	9.8	CRITICAL Network	xmlsoft debian google	libxml2 debian_linux android	A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD …	CWE-611 XXE	CVE-2017-7375	2024-11-21 12:31	2018-02-20	Show	GitHub Exploit DB Packet Storm

253405	8.8	HIGH Network	vanderbilt	redcap	A SQL injection issue exists in a file upload handler in REDCap 7.x before 7.0.11 via a trailing substring to SendITController:upload.	CWE-89 SQL Injection	CVE-2017-7351	2024-11-21 12:31	2018-02-9	Show	GitHub Exploit DB Packet Storm

253406	7.8	HIGH Local	yandex	yandex_browser	Yandex Browser installer for Desktop before 17.4.1 has a DLL Hijacking Vulnerability because an untrusted search path is used for dnsapi.dll, winmm.dll, ntmarta.dll, cryptbase.dll or profapi.dll.	CWE-426 Untrusted Search Path	CVE-2017-7327	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

253407	7.5	HIGH Network	yandex	yandex_browser	Race condition issue in Yandex Browser for Android before 17.4.0.16 allowed a remote attacker to potentially exploit memory corruption via a crafted HTML page	CWE-362 Race Condition	CVE-2017-7326	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

253408	7.5	HIGH Network	yandex	yandex_browser	Yandex Browser before 16.9.0 allows remote attackers to spoof the address bar via window.open.	CWE-20 Improper Input Validation	CVE-2017-7325	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

253409	7.8	HIGH Local	apple	mac_os_x	An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7163	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm

253410	7.8	HIGH Local	apple	iphone_os mac_os_x watchos tvos	An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7162	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed