Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251351	4.3	警告	Antisocial Media LLC	-	WordPress 用 Antisnews テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3857	2012-03-5 11:05	2011-09-28	Show	GitHub Exploit DB Packet Storm

251352	4.3	警告	A Tasty Pixel	-	WordPress 用 Elegant Grunge テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3856	2012-03-5 11:05	2011-09-28	Show	GitHub Exploit DB Packet Storm

251353	4.3	警告	Graph Paper Press	-	WordPress 用 F8 Lite テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3855	2012-03-5 11:04	2011-09-28	Show	GitHub Exploit DB Packet Storm

251354	4.3	警告	Quirm	-	WordPress 用 ZenLite テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3854	2012-03-5 11:04	2011-09-28	Show	GitHub Exploit DB Packet Storm

251355	4.3	警告	ThemeHybrid	-	WordPress 用 Hybrid テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3853	2012-03-5 11:04	2011-09-28	Show	GitHub Exploit DB Packet Storm

251356	4.3	警告	Theme4Press	-	WordPress 用 EvoLve テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3852	2012-03-5 11:03	2011-09-28	Show	GitHub Exploit DB Packet Storm

251357	4.3	警告	DevPress	-	WordPress 用 News テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3851	2012-03-5 11:03	2011-09-28	Show	GitHub Exploit DB Packet Storm

251358	4.3	警告	Bytes For All	-	WordPress 用 Atahualpa テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3850	2012-03-5 11:02	2011-09-28	Show	GitHub Exploit DB Packet Storm

251359	5.1	警告	Mozilla Foundation	-	Bugzilla の xmlrpc.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0453	2012-03-2 15:18	2012-02-9	Show	GitHub Exploit DB Packet Storm

251360	9.3	危険	シスコシステムズ	-	Cisco Wireless LAN Controller デバイスにおける設定を読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0371	2012-03-2 15:04	2012-02-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257711	8.8	HIGH Network	apple	iphone_os safari tvos icloud itunes webkit	An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-13856	2024-11-21 12:11	2017-12-26	Show	GitHub Exploit DB Packet Storm

257712	5.5	MEDIUM Local	apple	iphone_os mac_os_x watchos tvos	An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the …	CWE-704 Incorrect Type Conversion or Cast	CVE-2017-13855	2024-11-21 12:11	2017-12-26	Show	GitHub Exploit DB Packet Storm

257713	7.8	HIGH Local	apple	mac_os_x	An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "IOKit" component. It allows attackers to execute arbitrary code in a privileged context vi…	CWE-20 Improper Input Validation	CVE-2017-13848	2024-11-21 12:11	2017-12-26	Show	GitHub Exploit DB Packet Storm

257714	7.8	HIGH Local	apple	iphone_os mac_os_x	An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. The issue involves the "IOKit" component. It allows attackers to execute arbitrary co…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-13847	2024-11-21 12:11	2017-12-26	Show	GitHub Exploit DB Packet Storm

257715	7.5	HIGH Network	rockwellautomation	factorytalk_alarms_and_events	An Improper Input Validation issue was discovered in Rockwell Automation FactoryTalk Alarms and Events, Version 2.90 and earlier. An unauthenticated attacker with remote access to a network with Fact…	CWE-20 Improper Input Validation	CVE-2017-14022	2024-11-21 12:11	2017-12-23	Show	GitHub Exploit DB Packet Storm

257716	7.5	HIGH Network	google	android	An information disclosure vulnerability in the NVIDIA libwilhelm. Product: Android. Versions: Android kernel. Android ID A-64339309. References: N-CVE-2017-13175.	CWE-200 Information Exposure	CVE-2017-13175	2024-11-21 12:11	2017-12-6	Show	GitHub Exploit DB Packet Storm

257717	7.8	HIGH Local	google	android	An elevation of privilege vulnerability in the kernel edl. Product: Android. Versions: Android kernel. Android ID A-63100473.	NVD-CWE-noinfo	CVE-2017-13174	2024-11-21 12:11	2017-12-6	Show	GitHub Exploit DB Packet Storm

257718	7.8	HIGH Local	google	android	An elevation of privilege vulnerability in the MediaTek system server. Product: Android. Versions: Android kernel. Android ID A-28067350. References: M-ALPS02672361.	NVD-CWE-noinfo	CVE-2017-13173	2024-11-21 12:11	2017-12-6	Show	GitHub Exploit DB Packet Storm

257719	7.8	HIGH Local	google	android	An elevation of privilege vulnerability in the MediaTek bluetooth driver. Product: Android. Versions: Android kernel. Android ID A-36493287. References: M-ALPS03495791.	NVD-CWE-noinfo	CVE-2017-13172	2024-11-21 12:11	2017-12-6	Show	GitHub Exploit DB Packet Storm

257720	7.8	HIGH Local	google	android	An elevation of privilege vulnerability in the MediaTek performance service. Product: Android. Versions: Android kernel. Android ID A-64316572. References: M-ALPS03479086.	NVD-CWE-noinfo	CVE-2017-13171	2024-11-21 12:11	2017-12-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed