Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251521	10	危険	シスコシステムズ	-	Cisco TelePresence Manager における任意のコードを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0381	2011-11-29 09:55	2011-02-23	Show	GitHub Exploit DB Packet Storm

251522	7.5	危険	シスコシステムズ	-	Cisco TelePresence Manager における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-0380	2011-11-29 09:54	2011-02-23	Show	GitHub Exploit DB Packet Storm

251523	7.9	危険	シスコシステムズ	-	複数の Cisco 製品におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0379	2011-11-29 09:53	2011-02-23	Show	GitHub Exploit DB Packet Storm

251524	8.3	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスの XML-RPC 実装における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0378	2011-11-29 09:53	2011-02-23	Show	GitHub Exploit DB Packet Storm

251525	7.8	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0377	2011-11-29 09:52	2011-02-23	Show	GitHub Exploit DB Packet Storm

251526	10	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-0376	2011-11-29 09:51	2011-02-23	Show	GitHub Exploit DB Packet Storm

251527	9	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0375	2011-11-29 09:51	2011-02-23	Show	GitHub Exploit DB Packet Storm

251528	9	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0374	2011-11-29 09:50	2011-02-23	Show	GitHub Exploit DB Packet Storm

251529	9	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0373	2011-11-29 09:50	2011-02-23	Show	GitHub Exploit DB Packet Storm

251530	10	危険	シスコシステムズ	-	Cisco TelePresence エンドポイントデバイスにおける任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0372	2011-11-29 09:49	2011-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277131	-	google	chrome	The SkBitmap::ReadRawPixels function in core/SkBitmap.cpp in the filters implementation in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-1213	2024-11-21 11:24	2015-03-9	Show	GitHub Exploit DB Packet Storm

277132	-	nvidia	gpu_driver_r304 gpu_driver_r346 gpu_driver_r340 gpu_driver_r343	The NVIDIA Display Driver R304 before 309.08, R340 before 341.44, R343 before 345.20, and R346 before 347.52 does not properly validate local client impersonation levels when performing a "kernel adm…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-1170	2024-11-21 11:24	2015-03-7	Show	GitHub Exploit DB Packet Storm

277133	-	sharelatex	sharelatex	Common LaTeX Service Interface (CLSI) before 0.1.3, as used in ShareLaTeX before 0.1.3, allows remote authenticated users to execute arbitrary code via ` (backtick) characters in a filename.	CWE-77 Command Injection	CVE-2015-0934	2024-11-21 11:24	2015-03-4	Show	GitHub Exploit DB Packet Storm

277134	-	sharelatex	sharelatex	Absolute path traversal vulnerability in ShareLaTeX 0.1.3 and earlier, when the paranoid openin_any setting is omitted, allows remote authenticated users to read arbitrary files via a \include comman…	CWE-22 Path Traversal	CVE-2015-0933	2024-11-21 11:24	2015-03-4	Show	GitHub Exploit DB Packet Storm

277135	-	network_vision	intravue	Network Vision IntraVue before 2.3.0a14 on Windows allows remote attackers to execute arbitrary OS commands via unspecified vectors.	CWE-78 OS Command	CVE-2015-0977	2024-11-21 11:24	2015-02-27	Show	GitHub Exploit DB Packet Storm

277136	-	gnu	cpio	cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.	NVD-CWE-Other	CVE-2015-1197	2024-11-21 11:24	2015-02-20	Show	GitHub Exploit DB Packet Storm

277137	-	ektron	ektron_content_management_system	Ektron Content Management System (CMS) 8.5 and 8.7 before 8.7sp2 and 9.0 before sp1, when the Saxon XSLT parser is used, allows remote attackers to execute arbitrary code via a crafted XSLT document,…	CWE-74 Injection	CVE-2015-0931	2024-11-21 11:24	2015-02-14	Show	GitHub Exploit DB Packet Storm

277138	-	ektron	ektron_content_management_system	The ContentBlockEx method in Workarea/ServerControlWS.asmx in Ektron Content Management System (CMS) 8.5 and 8.7 before 8.7sp2 and 9.0 before sp1 allows remote attackers to read arbitrary files via a…	NVD-CWE-Other	CVE-2015-0923	2024-11-21 11:24	2015-02-14	Show	GitHub Exploit DB Packet Storm

277139	-	holding_pattern_project	holding_pattern	Unrestricted file upload vulnerability in admin/upload-file.php in the Holding Pattern theme (aka holding_pattern) 0.6 and earlier for WordPress allows remote attackers to execute arbitrary PHP code …	NVD-CWE-Other	CVE-2015-1172	2024-11-21 11:24	2015-02-12	Show	GitHub Exploit DB Packet Storm

277140	-	apereo	central_authentication_service	Apereo Central Authentication Service (CAS) Server before 3.5.3 allows remote attackers to conduct LDAP injection attacks via a crafted username, as demonstrated by using a wildcard and a valid passw…	CWE-74 Injection	CVE-2015-1169	2024-11-21 11:24	2015-02-11	Show	GitHub Exploit DB Packet Storm