Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251281 7.5 危険 Lucid Crew - Pixie CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4710 2011-12-13 14:53 2011-12-8 Show GitHub Exploit DB Packet Storm
251282 4.3 警告 Hotaru CMS - Hotaru CMS の Search プラグイン内にある Hotaru.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4709 2011-12-13 14:52 2011-12-8 Show GitHub Exploit DB Packet Storm
251283 4.3 警告 IBM - IBM Rational Asset Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4708 2011-12-13 14:51 2011-05-5 Show GitHub Exploit DB Packet Storm
251284 4.3 警告 SAP - SAP Netweaver の Virus Scan Interface におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4707 2011-12-13 14:50 2011-12-8 Show GitHub Exploit DB Packet Storm
251285 5 警告 Igor Sysoev - nginx におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4315 2011-12-13 14:49 2011-11-15 Show GitHub Exploit DB Packet Storm
251286 7.5 危険 Mambo Foundation - Mambo CMS の administrator/index2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-2917 2011-12-13 14:41 2011-12-8 Show GitHub Exploit DB Packet Storm
251287 6.8 警告 MIT Kerberos - MIT Kerberos の process_tgs_req 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1530 2011-12-13 14:40 2011-12-6 Show GitHub Exploit DB Packet Storm
251288 6.4 警告 BlackBerry - BlackBerry Administration API におけるテキストファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2011-0287 2011-12-13 14:35 2011-07-12 Show GitHub Exploit DB Packet Storm
251289 6.4 警告 Widelands - Widelands におけるパストラバーサル攻撃を誘発される脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4675 2011-12-12 18:21 2011-12-5 Show GitHub Exploit DB Packet Storm
251290 5 警告 One Click Orgs - One Click Orgs のパスワードリセット機能におけるユーザアカウントを列挙される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-4678 2011-12-12 18:19 2011-12-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286081 7.5 HIGH
Network 		zabbix zabbix Zabbix before 5.0 represents passwords in the users table with unsalted MD5. CWE-326
Inadequate Encryption Strength 		CVE-2013-7484 2024-11-21 11:01 2019-11-30 Show GitHub Exploit DB Packet Storm
286082 5.5 MEDIUM
Local 		redhat openshift_origin Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly. CWE-20
 Improper Input Validation  		CVE-2014-0084 2024-11-21 11:01 2019-11-22 Show GitHub Exploit DB Packet Storm
286083 5.5 MEDIUM
Local 		net-ldap_project
debian 		net-ldap
debian_linux 		The Ruby net-ldap gem before 0.11 uses a weak salt when generating SSHA passwords. CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2014-0083 2024-11-21 11:01 2019-11-21 Show GitHub Exploit DB Packet Storm
286084 7.8 HIGH
Local 		redhat openshift OpenShift: Install script has temporary file creation vulnerability which can result in arbitrary code execution CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2014-0023 2024-11-21 11:01 2019-11-16 Show GitHub Exploit DB Packet Storm
286085 7.5 HIGH
Network 		chrony_project
debian
fedoraproject 		chrony
debian_linux
fedora 		Chrony before 1.29.1 has traffic amplification in cmdmon protocol NVD-CWE-Other
CVE-2014-0021 2024-11-21 11:01 2019-11-16 Show GitHub Exploit DB Packet Storm
286086 9.8 CRITICAL
Network 		hbwsl slidedeck_2 The slidedeck2 plugin before 2.3.5 for WordPress has file inclusion. CWE-20
 Improper Input Validation  		CVE-2013-7483 2024-11-21 11:01 2019-08-23 Show GitHub Exploit DB Packet Storm
286087 6.1 MEDIUM
Network 		reflex_gallery_project reflex_gallery The reflex-gallery plugin before 1.4.3 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2013-7482 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm
286088 6.1 MEDIUM
Network 		bestwebsoft contact_form The contact-form-plugin plugin before 3.3.5 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2013-7481 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm
286089 6.1 MEDIUM
Network 		pixelite events_manager The events-manager plugin before 5.3.6.1 for WordPress has XSS via the booking form and admin areas. CWE-79
Cross-site Scripting 		CVE-2013-7480 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm
286090 6.1 MEDIUM
Network 		pixelite events_manager The events-manager plugin before 5.3.9 for WordPress has XSS in the search form field. CWE-79
Cross-site Scripting 		CVE-2013-7479 2024-11-21 11:01 2019-08-22 Show GitHub Exploit DB Packet Storm