Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251571	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-2769	2011-12-27 11:01	2011-10-27	Show	GitHub Exploit DB Packet Storm

251572	5.8	警告	The Tor Project	-	Tor における匿名化のためのプロパティを無効にされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2768	2011-12-27 10:54	2011-10-27	Show	GitHub Exploit DB Packet Storm

251573	7.5	危険	PmWiki	-	PmWiki の PageListSort 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4453	2011-12-27 10:46	2011-11-11	Show	GitHub Exploit DB Packet Storm

251574	-	-	The Support Incident Tracker Project	-	Support Incident Tracker に複数の脆弱性	-	CVE-2011-3831 CVE-2011-3833 CVE-2011-5067 CVE-2011-5068 CVE-2011-5069 CVE-2011-5070	2011-12-27 09:42	2011-12-5	Show	GitHub Exploit DB Packet Storm

251575	9.3	危険	Sielco Sistemi	-	Sielco Sistemi Winlog PRO および Winlog Lite におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4037	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

251576	5	警告	Moodle	-	Moodle の calendar/set.php における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4203	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

251577	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4634	2011-12-26 16:31	2011-12-1	Show	GitHub Exploit DB Packet Storm

251578	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の libraries/display_export.lib.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4780	2011-12-26 16:30	2011-12-21	Show	GitHub Exploit DB Packet Storm

251579	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の libraries/config/ConfigFile.class.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4782	2011-12-26 16:29	2011-12-21	Show	GitHub Exploit DB Packet Storm

251580	6.5	警告	WordPress.org	-	WordPress において任意の PHP コードが実行可能な脆弱性	CWE-94 コード・インジェクション	-	2011-12-26 14:27	2011-12-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257621	9.8	CRITICAL Network	nexusphp_project	nexusphp	SQL injection vulnerability in massmail.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the or parameter.	CWE-89 SQL Injection	CVE-2017-12910	2024-11-21 12:10	2017-08-18	Show	GitHub Exploit DB Packet Storm

257622	9.8	CRITICAL Network	nexusphp_project	nexusphp	SQL injection vulnerability in modtask.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the userid parameter.	CWE-89 SQL Injection	CVE-2017-12909	2024-11-21 12:10	2017-08-18	Show	GitHub Exploit DB Packet Storm

257623	9.8	CRITICAL Network	nexusphp_project	nexusphp	SQL injection vulnerability in takeconfirm.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the conusr parameter.	CWE-89 SQL Injection	CVE-2017-12908	2024-11-21 12:10	2017-08-18	Show	GitHub Exploit DB Packet Storm

257624	6.1	MEDIUM Network	nexusphp_project	nexusphp	Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the url path to usersearch.php.	CWE-79 Cross-site Scripting	CVE-2017-12907	2024-11-21 12:10	2017-08-18	Show	GitHub Exploit DB Packet Storm

257625	7.8	HIGH Local	foxitsoftware	pdf_compressor	Foxit PDF Compressor installers from versions from 7.0.0.183 to 7.7.2.10 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the curren…	CWE-426 Untrusted Search Path	CVE-2017-12892	2024-11-21 12:10	2017-08-17	Show	GitHub Exploit DB Packet Storm

257626	8.8	HIGH Network	opencv debian	opencv debian_linux	In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or…	CWE-190 Integer Overflow or Wraparound	CVE-2017-12864	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

257627	8.8	HIGH Network	opencv debian	opencv debian_linux	In opencv/modules/imgcodecs/src/grfmt_pxm.cpp, function PxMDecoder::readData has an integer overflow when calculate src_pitch. If the image is from remote, may lead to remote code execution or denial…	CWE-190 Integer Overflow or Wraparound	CVE-2017-12863	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

257628	8.8	HIGH Network	opencv debian	opencv debian_linux	In modules/imgcodecs/src/grfmt_pxm.cpp, the length of buffer AutoBuffer _src is small than expected, which will cause copy buffer overflow later. If the image is from remote, may lead to remote code …	CWE-787 Out-of-bounds Write	CVE-2017-12862	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

257629	7.5	HIGH Network	numpy	numpy	The numpy.pad function in Numpy 1.13.1 and older versions is missing input validation. An empty list or ndarray will stick into an infinite loop, which can allow attackers to cause a DoS attack.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-12852	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

257630	6.5	MEDIUM Local	xen	xen	Xen maintains the _GTF_{read,writ}ing bits as appropriate, to inform the guest that a grant is in use. A guest is expected not to modify the grant details while it is in use, whereas the guest is fre…	CWE-200 Information Exposure	CVE-2017-12855	2024-11-21 12:10	2017-08-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed