Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251641 5.8 警告 Tencent - Android 用 Tencent QQPhoto における連絡先情報およびパスワードハッシュを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4867 2012-01-27 15:18 2012-01-25 Show GitHub Exploit DB Packet Storm
251642 6.4 警告 Kaixin001 - Android 用 Kaixin001 における連絡先情報および平文パスワードを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-4866 2012-01-27 15:18 2012-01-25 Show GitHub Exploit DB Packet Storm
251643 5.8 警告 Tencent - Android 用 Tencent WBlog および MicroBlogPad におけるドラフトメッセージおよび検索キーワードを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4865 2012-01-27 15:12 2012-01-25 Show GitHub Exploit DB Packet Storm
251644 5.8 警告 Tencent - Android 用 Tencent MobileQQ におけるメッセージおよびフレンドリストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4864 2012-01-27 15:10 2012-01-25 Show GitHub Exploit DB Packet Storm
251645 5.8 警告 Tencent - Android 用 Tencent QQPimSecure における SMS/MMS メッセージおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4863 2012-01-27 15:08 2012-01-25 Show GitHub Exploit DB Packet Storm
251646 5.8 警告 AnGuanJia - Android 用 AnGuanJia における SMS/MMS メッセージおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4773 2012-01-27 15:07 2012-01-25 Show GitHub Exploit DB Packet Storm
251647 5.8 警告 Qihoo 360 Technology - Android 用 360 KouXin における SMS メッセージおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4772 2012-01-27 15:06 2012-01-25 Show GitHub Exploit DB Packet Storm
251648 5.8 警告 Lucion Technologies - Android 用 Scan to PDF Free におけるスキャンされたファイルおよび Google アカウントを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4771 2012-01-27 15:05 2012-01-25 Show GitHub Exploit DB Packet Storm
251649 5.8 警告 QIWI Wallet - Android 用 QIWI Wallet における金銭に関する情報を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4770 2012-01-27 15:03 2012-01-25 Show GitHub Exploit DB Packet Storm
251650 5.8 警告 Qihoo 360 Technology - Android 用 360 MobileSafe における SMS メッセージおよび連絡先リストを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4769 2012-01-27 14:56 2012-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253071 7.1 HIGH
Network 		ibm financial_transaction_manager
transformation_extender_advanced
control_center 		IBM Financial Transaction Manager for ACH Services for Multi-Platform (IBM Control Center 6.0 and 6.1, IBM Financial Transaction Manager 3.0.2, 3.0.3, 3.0.4, and 3.1.0, IBM Transformation Extender Ad… CWE-611
XXE 		CVE-2017-1758 2024-11-21 12:22 2018-02-22 Show GitHub Exploit DB Packet Storm
253072 5.4 MEDIUM
Network 		ibm connections IBM Connections 4.0, 4.5, 5.0, 5.5, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended function… CWE-79
Cross-site Scripting 		CVE-2017-1682 2024-11-21 12:22 2018-02-15 Show GitHub Exploit DB Packet Storm
253073 5.3 MEDIUM
Local 		ibm notes
client_application_access 		IBM Notes 8.5 and 9.0 could allow a local attacker to execute arbitrary commands by carefully crafting a command line sent via the shared memory IPC. IBM X-Force ID: 134807. CWE-77
Command Injection 		CVE-2017-1720 2024-11-21 12:22 2018-02-14 Show GitHub Exploit DB Packet Storm
253074 7.8 HIGH
Local 		ibm notes
client_application_access 		IBM Notes and Domino NSD 8.5 and 9.0 could allow an authenticated local user without administrative privileges to gain System privilege. IBM X-Force ID: 134633. NVD-CWE-noinfo
CVE-2017-1714 2024-11-21 12:22 2018-02-14 Show GitHub Exploit DB Packet Storm
253075 7.8 HIGH
Local 		ibm notes
client_application_access 		IBM iNotes 8.5 and 9.0 SUService can be misguided into running malicious code from a DLL masquerading as a windows DLL in the temp directory. IBM X-Force ID: 134532. CWE-426
 Untrusted Search Path 		CVE-2017-1711 2024-11-21 12:22 2018-02-14 Show GitHub Exploit DB Packet Storm
253076 6.1 MEDIUM
Network 		ibm websphere_portal IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended function… CWE-79
Cross-site Scripting 		CVE-2017-1761 2024-11-21 12:22 2018-02-10 Show GitHub Exploit DB Packet Storm
253077 4.3 MEDIUM
Network 		ibm api_connect IBM API Connect 5.0.7 and 5.0.8 could allow an authenticated remote user to modify query parameters to obtain sensitive information. IBM X-Force ID: 136859. CWE-200
Information Exposure 		CVE-2017-1785 2024-11-21 12:22 2018-02-8 Show GitHub Exploit DB Packet Storm
253078 7.8 HIGH
Local 		ibm aix IBM AIX 5.3, 6.1, 7.1, and 7.2 contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges. IBM X-Force ID: 134067. NVD-CWE-noinfo
CVE-2017-1692 2024-11-21 12:22 2018-02-8 Show GitHub Exploit DB Packet Storm
253079 4.0 MEDIUM
Network 		ibm datapower_gateway IBM DataPower Gateways 7.1, 7,2, 7.5, and 7.6 could allow an attacker using man-in-the-middle techniques to spoof DNS responses to perform DNS cache poisoning and redirect Internet traffic. IBM X-For… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2017-1773 2024-11-21 12:22 2018-02-1 Show GitHub Exploit DB Packet Storm
253080 8.8 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could provide weaker than expected security when using the Administrative Console. An authenticated remote attacker could exploit this vulnerab… NVD-CWE-noinfo
CVE-2017-1731 2024-11-21 12:22 2018-01-31 Show GitHub Exploit DB Packet Storm