Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251571	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-2769	2011-12-27 11:01	2011-10-27	Show	GitHub Exploit DB Packet Storm

251572	5.8	警告	The Tor Project	-	Tor における匿名化のためのプロパティを無効にされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2768	2011-12-27 10:54	2011-10-27	Show	GitHub Exploit DB Packet Storm

251573	7.5	危険	PmWiki	-	PmWiki の PageListSort 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4453	2011-12-27 10:46	2011-11-11	Show	GitHub Exploit DB Packet Storm

251574	-	-	The Support Incident Tracker Project	-	Support Incident Tracker に複数の脆弱性	-	CVE-2011-3831 CVE-2011-3833 CVE-2011-5067 CVE-2011-5068 CVE-2011-5069 CVE-2011-5070	2011-12-27 09:42	2011-12-5	Show	GitHub Exploit DB Packet Storm

251575	9.3	危険	Sielco Sistemi	-	Sielco Sistemi Winlog PRO および Winlog Lite におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4037	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

251576	5	警告	Moodle	-	Moodle の calendar/set.php における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4203	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

251577	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4634	2011-12-26 16:31	2011-12-1	Show	GitHub Exploit DB Packet Storm

251578	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の libraries/display_export.lib.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4780	2011-12-26 16:30	2011-12-21	Show	GitHub Exploit DB Packet Storm

251579	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の libraries/config/ConfigFile.class.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4782	2011-12-26 16:29	2011-12-21	Show	GitHub Exploit DB Packet Storm

251580	6.5	警告	WordPress.org	-	WordPress において任意の PHP コードが実行可能な脆弱性	CWE-94 コード・インジェクション	-	2011-12-26 14:27	2011-12-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
287431	-	softaculous	webuzo	The login function in Softaculous Webuzo before 2.1.4 provides different error messages for invalid authentication attempts depending on whether the user account exists, which allows remote attackers…	CWE-200 Information Exposure	CVE-2013-6043	2024-11-21 10:58	2014-12-28	Show	GitHub Exploit DB Packet Storm

287432	-	softaculous	webuzo	index.php in Softaculous Webuzo before 2.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in a SOFTCookies sid cookie within a login action.	CWE-78 OS Command	CVE-2013-6041	2024-11-21 10:58	2014-12-28	Show	GitHub Exploit DB Packet Storm

287433	-	sensiolabs	symfony	The Security component in Symfony 2.0.x before 2.0.25, 2.1.x before 2.1.13, 2.2.x before 2.2.9, and 2.3.x before 2.3.6 allows remote attackers to cause a denial of service (CPU consumption) via a lon…	CWE-399 Resource Management Errors	CVE-2013-5958	2024-11-21 10:58	2014-12-28	Show	GitHub Exploit DB Packet Storm

287434	-	codeaurora	android-msm	The Qualcomm Innovation Center (QuIC) init scripts in Code Aurora Forum (CAF) releases of Android 4.1.x through 4.4.x allow local users to modify file metadata via a symlink attack on a file accessed…	CWE-59 Link Following	CVE-2013-6124	2024-11-21 10:58	2014-08-31	Show	GitHub Exploit DB Packet Storm

287435	-	hp	service_manager	Cross-site scripting (XSS) vulnerability in the Mobility Web Client and Service Request Catalog (SRC) components in HP Service Manager (SM) 7.21 and 9.x before 9.34 allows remote attackers to inject …	CWE-79 Cross-site Scripting	CVE-2013-6222	2024-11-21 10:58	2014-08-24	Show	GitHub Exploit DB Packet Storm

287436	-	ibm	power_760_firmware power_770 power_780 power_795 power_ese power_740_firmware power_710 power_720 power_730 power_740 power_770_firmware power_750 power_760 pow…	Unspecified vulnerability on IBM Power 7 Systems 740 before 740.70 01Ax740_121, 760 before 760.40 Ax760_078, and 770 before 770.30 01Ax770_062 allows local users to gain Service Processor privileges …	NVD-CWE-noinfo	CVE-2013-6306	2024-11-21 10:58	2014-08-23	Show	GitHub Exploit DB Packet Storm

287437	-	yealink	sip-t38g	cgi-bin/cgiServer.exx in Yealink VoIP Phone SIP-T38G allows remote authenticated users to execute arbitrary commands by calling the system method in the body of a request, as demonstrated by running …	CWE-78 OS Command	CVE-2013-5758	2024-11-21 10:58	2014-08-4	Show	GitHub Exploit DB Packet Storm

287438	-	yealink	sip-t38g	Absolute path traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a full pathname in the dumpConfigFile function in the command parame…	CWE-22 Path Traversal	CVE-2013-5757	2024-11-21 10:58	2014-08-4	Show	GitHub Exploit DB Packet Storm

287439	-	yealink	sip-t38g	Directory traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a .. (dot dot) in the page parameter to cgi-bin/cgiServer.exx.	CWE-22 Path Traversal	CVE-2013-5756	2024-11-21 10:58	2014-08-4	Show	GitHub Exploit DB Packet Storm

287440	-	oracle	mojarra	Oracle Mojarra 2.2.x before 2.2.6 and 2.1.x before 2.1.28 does not perform appropriate encoding when a (1) <h:outputText> tag or (2) EL expression is used after a scriptor style block, which allows r…	CWE-79 Cross-site Scripting	CVE-2013-5855	2024-11-21 10:58	2014-07-17	Show	GitHub Exploit DB Packet Storm