Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251611	6.8	警告	MantisBT Group	-	MantisBT の bug_actiongroup_ext_page.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-3357	2011-09-27 11:17	2011-08-31	Show	GitHub Exploit DB Packet Storm

251612	4.3	警告	MantisBT Group	-	MantisBT の filter_api.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2938	2011-09-27 11:15	2011-08-18	Show	GitHub Exploit DB Packet Storm

251613	4.3	警告	MantisBT Group	-	MantisBT の config_defaults_inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3356	2011-09-27 11:12	2011-07-31	Show	GitHub Exploit DB Packet Storm

251614	10	危険	シスコシステムズ	-	Cisco Identity Services Engine における設定を変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-3290	2011-09-27 11:07	2011-09-20	Show	GitHub Exploit DB Packet Storm

251615	4.3	警告	Roundcube.net	-	Roundcube Webmail の UI メッセージ機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2937	2011-09-27 11:05	2011-08-9	Show	GitHub Exploit DB Packet Storm

251616	6.8	警告	AmmSoft	-	AmmSoft ScriptFTP にバッファオーバーフローの脆弱性	-	CVE-2011-3976	2011-09-27 10:58	2011-09-21	Show	GitHub Exploit DB Packet Storm

251617	10	危険	Measuresoft Development Ltd.	-	Measuresoft ScadaPro の service.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3490	2011-09-26 15:59	2011-09-16	Show	GitHub Exploit DB Packet Storm

251618	4.6	警告	レッドハット	-	Red Hat Enterprise MRG の Cumin における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-2925	2011-09-26 15:43	2011-09-7	Show	GitHub Exploit DB Packet Storm

251619	5	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus の encryptPassword 関数における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2011-1509	2011-09-26 15:42	2011-09-20	Show	GitHub Exploit DB Packet Storm

251620	4.3	警告	Zoho Corporation	-	ManageEngine ServiceDesk Plus の SolutionSearch.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1510	2011-09-26 15:41	2011-09-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3441	-		-	-	In the Linux kernel, the following vulnerability has been resolved: wireguard: device: use exit_rtnl callback instead of manual rtnl_lock in pre_exit wg_netns_pre_exit() manually acquires rtnl_lock…	-	CVE-2026-31579	2026-04-27 21:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

3442	-		-	-	In the Linux kernel, the following vulnerability has been resolved: clockevents: Add missing resets of the next_event_forced flag The prevention mechanism against timer interrupt starvation missed …	-	CVE-2026-31574	2026-04-27 21:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

3443	5.3	MEDIUM Network	oracle	jdk graalvm graalvm_for_jdk jre	Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 8…	CWE-693 Protection Mechanism Failure	CVE-2026-22013	2026-04-27 21:15	2026-04-22	Show	GitHub Exploit DB Packet Storm

3444	2.9	LOW Local	oracle	graalvm graalvm_for_jdk jre jdk	Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java S…	CWE-200 Information Exposure	CVE-2026-22007	2026-04-27 21:14	2026-04-22	Show	GitHub Exploit DB Packet Storm

3445	5.4	MEDIUM Network	-	-	A client-side authorization flaw in Lightspeed Classroom v5.1.2.1763770643 allows unauthenticated attackers to impersonate users by bypassing integrity checks and abusing client-generated authorizati…	CWE-863 Incorrect Authorization	CVE-2026-30368	2026-04-27 20:16	2026-04-25	Show	GitHub Exploit DB Packet Storm

3446	5.3	MEDIUM Network	-	-	A security vulnerability has been detected in CodeAstro Online Job Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /users/user-cvs/. The manipulation leads to file …	CWE-200 CWE-538 Information Exposure File and Directory Information Exposure	CVE-2026-7071	2026-04-27 10:16	2026-04-27	Show	GitHub Exploit DB Packet Storm

3447	9.3	CRITICAL Network	-	-	An insufficient encryption vulnerability exists in the Device Authentication functionality of GeoVision GV-IP Device Utility 9.0.5. Listening to broadcast packets can lead to credentials leak. An att…	CWE-656 Reliance on Security Through Obscurity	CVE-2026-42363	2026-04-27 09:16	2026-04-27	Show	GitHub Exploit DB Packet Storm

3448	7.5	HIGH Network	libexpat_project	libexpat	libexpat before 2.7.6 uses insufficient entropy, and thus hash flooding can occur via a crafted XML document.	CWE-331 Insufficient Entropy	CVE-2026-41080	2026-04-27 07:17	2026-04-17	Show	GitHub Exploit DB Packet Storm

3449	7.1	HIGH Network	elog_project	elog	ELOG allows an authenticated user to modify or overwrite the configuration file, resulting in denial of service. If the execute facility is specifically enabled with the "-x" command line flag, attac…	CWE-862 Missing Authorization	CVE-2025-64348	2026-04-27 04:26	2025-11-1	Show	GitHub Exploit DB Packet Storm

3450	7.1	HIGH Network	elog_project	elog	ELOG permite a un usuario autenticado modificar o sobrescribir el archivo de configuración, resultando en denegación de servicio. Si la función de ejecución está específicamente habilitada con el ind…	CWE-862 Missing Authorization	CVE-2025-64348	2026-04-27 04:26	2025-11-1	Show	GitHub Exploit DB Packet Storm