Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251581 7.5 危険 Exim Development - Exim の src/dkim.c 内の dkim_exim_verify_finish 関数における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2011-1764 2011-10-12 16:00 2011-04-29 Show GitHub Exploit DB Packet Storm
251582 2.1 注意 Ted Felix - Ted Felix acpid の acpid.c におけるサービス運用妨害 (デーモンハング) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1159 2011-10-12 15:55 2011-10-5 Show GitHub Exploit DB Packet Storm
251583 7.8 危険 Linux - Linux kernel の net/dns_resolver/dns_key.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-1076 2011-10-12 15:45 2011-10-5 Show GitHub Exploit DB Packet Storm
251584 4.3 警告 リアルネットワークス - RealNetworks RealPlayer の ActiveX コントロールにおけるクロスゾーンスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1221 2011-10-12 15:13 2011-08-26 Show GitHub Exploit DB Packet Storm
251585 9.3 危険 アドビシステムズ - Adobe Photoshop Elements におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2443 2011-10-12 15:12 2011-09-30 Show GitHub Exploit DB Packet Storm
251586 5 警告 Quassel IRC - Quassel の CtcpParser::packedReply メソッドにおけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3354 2011-10-12 15:12 2011-10-4 Show GitHub Exploit DB Packet Storm
251587 6.8 警告 VMware - VMware の Spring Framework および Spring Security におけるセキュリティ制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2894 2011-10-12 15:11 2011-09-9 Show GitHub Exploit DB Packet Storm
251588 - - (複数のベンダ) - UPnP 対応の複数のルータにアクセス制限不備の脆弱性 - - 2011-10-12 14:57 2011-10-6 Show GitHub Exploit DB Packet Storm
251589 10 危険 Iceni Technology - Iceni Argus にバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3332 2011-10-12 14:42 2011-10-6 Show GitHub Exploit DB Packet Storm
251590 7.5 危険 Likno Software Inc. - WordPress 用 Allwebmenus プラグイン内にある actions.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3981 2011-10-11 10:23 2011-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
277631 - dandyid_services_project dandyid_services Multiple cross-site request forgery (CSRF) vulnerabilities in the DandyID Services plugin 1.5.9 and earlier for WordPress allow remote attackers to hijack the authentication of administrators for req… CWE-352
 Origin Validation Error 		CVE-2014-9335 2024-11-21 11:20 2014-12-20 Show GitHub Exploit DB Packet Storm
277632 - otrs otrs_help_desk The GenericInterface in OTRS Help Desk 3.2.x before 3.2.17, 3.3.x before 3.3.11, and 4.0.x before 4.0.3 allows remote authenticated users to access and modify arbitrary tickets via unspecified vector… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-9324 2024-11-21 11:20 2014-12-20 Show GitHub Exploit DB Packet Storm
277633 - glpi-project glpi SQL injection vulnerability in ajax/getDropdownValue.php in GLPI before 0.85.1 allows remote authenticated users to execute arbitrary SQL commands via the condition parameter. CWE-89
SQL Injection 		CVE-2014-9258 2024-11-21 11:20 2014-12-20 Show GitHub Exploit DB Packet Storm
277634 - morfy_cms_project morfy_cms Static code injection vulnerability in install.php in Morfy CMS 1.05 allows remote authenticated users to inject arbitrary PHP code into config.php via the site_url parameter. CWE-94
Code Injection 		CVE-2014-9185 2024-11-21 11:20 2014-12-20 Show GitHub Exploit DB Packet Storm
277635 - huawei p7-l10_firmware The PackageInstaller module in Huawei P7-L10 smartphones before V100R001C00B136 allows remote attackers to spoof the origin website and bypass the website whitelist protection mechanism via a crafted… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-9135 2024-11-21 11:20 2014-12-20 Show GitHub Exploit DB Packet Storm
277636 - arris touchstone_tg862g\/ct_firmware ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier has a default password of password for the admin account, which makes it easier for remote attackers to obtain access… CWE-255
Credentials Management 		CVE-2014-9406 2024-11-21 11:20 2014-12-19 Show GitHub Exploit DB Packet Storm
277637 - mantisbt mantisbt bug_report.php in MantisBT before 1.2.18 allows remote attackers to assign arbitrary issues via the handler_id parameter. CWE-284
Improper Access Control 		CVE-2014-9388 2024-11-21 11:20 2014-12-18 Show GitHub Exploit DB Packet Storm
277638 - sap businessobjects SAP BusinessObjects Edge 4.1 allows remote attackers to obtain the SI_PLATFORM_SEARCH_SERVER_LOGON_TOKEN token and gain privileges via a crafted CORBA call, aka SAP Note 2039905. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-9387 2024-11-21 11:20 2014-12-18 Show GitHub Exploit DB Packet Storm
277639 - dokuwiki
mageia 		dokuwiki
mageia 		The default file type whitelist configuration in conf/mime.conf in the Media Manager in DokuWiki before 2014-09-29b allows remote attackers to execute arbitrary web script or HTML by uploading an SWF… CWE-79
Cross-site Scripting 		CVE-2014-9253 2024-11-21 11:20 2014-12-18 Show GitHub Exploit DB Packet Storm
277640 7.8 HIGH
Local 		linux
redhat
canonical
opensuse
suse
google 		linux_kernel
enterprise_linux_eus
ubuntu_linux
evergreen
suse_linux_enterprise_server
android 		arch/x86/kernel/entry_64.S in the Linux kernel before 3.17.5 does not properly handle faults associated with the Stack Segment (SS) segment register, which allows local users to gain privileges by tr… CWE-269
 Improper Privilege Management 		CVE-2014-9322 2024-11-21 11:20 2014-12-17 Show GitHub Exploit DB Packet Storm