Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251651 5 警告 The PHP Group - PHP で使用される crypt_blowfish におけるクリアテキストのパスワードを容易に推測される脆弱性 CWE-310
暗号の問題 		CVE-2011-2483 2011-09-13 10:43 2011-08-25 Show GitHub Exploit DB Packet Storm
251652 6.4 警告 The PHP Group - PHP の main/rfc1867.c 内にある rfc1867_post_handler 関数における任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2202 2011-09-13 10:42 2011-06-16 Show GitHub Exploit DB Packet Storm
251653 7.5 危険 The PHP Group - PHP の socket_connect 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1938 2011-09-13 10:41 2011-05-31 Show GitHub Exploit DB Packet Storm
251654 7.5 危険 The PHP Group - PHP の substr_replace 関数におけるサービス運用妨害 (メモリ破損) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1148 2011-09-13 10:39 2011-03-18 Show GitHub Exploit DB Packet Storm
251655 6.8 警告 GNU Project
オラクル		 - GNU Wget における任意のファイルを作成される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2252 2011-09-12 09:56 2010-07-6 Show GitHub Exploit DB Packet Storm
251656 9.3 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer Enterprise における任意のコードを実行されるの脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2955 2011-09-12 09:53 2011-08-16 Show GitHub Exploit DB Packet Storm
251657 9.3 危険 リアルネットワークス - RealNetworks RealPlayer の AutoUpdate 機能における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2954 2011-09-12 09:41 2011-08-16 Show GitHub Exploit DB Packet Storm
251658 10 危険 リアルネットワークス - RealNetworks RealPlayer および RealPlayer Enterprise における任意のコードを実行されるの脆弱性 CWE-119
バッファエラー 		CVE-2011-2953 2011-09-12 09:40 2011-08-16 Show GitHub Exploit DB Packet Storm
251659 4 警告 libvirt.org
レッドハット		 - libvirt における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-2511 2011-09-12 09:03 2011-07-21 Show GitHub Exploit DB Packet Storm
251660 6.4 警告 きゅー - Megalith における認証回避の脆弱性 CWE-287
不適切な認証 		CVE-2011-2671 2011-09-9 12:01 2011-09-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290641 7.1 HIGH
Local 		fedoraproject fedora The fedora-business-cards package before 1-0.1.beta1.fc17 on Fedora 17 and before 1-0.1.beta1.fc18 on Fedora 18 allows local users to cause a denial of service or write to arbitrary files via a symli… CWE-59
Link Following 		CVE-2013-0159 2024-11-21 10:46 2018-05-2 Show GitHub Exploit DB Packet Storm
290642 5.9 MEDIUM
Network 		elinks
twibright 		elinks
links 		ELinks 0.12 and Twibright Links 2.3 have Missing SSL Certificate Validation. CWE-295
Improper Certificate Validation  		CVE-2012-6709 2024-11-21 10:46 2018-02-24 Show GitHub Exploit DB Packet Storm
290643 6.1 MEDIUM
Network 		fortinet fortidb Multiple cross-site scripting (XSS) vulnerabilities in Java number format exception handling in FortiGate FortiDB before 4.4.2 allow remote attackers to inject arbitrary web script or HTML via the co… CWE-79
Cross-site Scripting 		CVE-2012-6347 2024-11-21 10:46 2018-02-10 Show GitHub Exploit DB Packet Storm
290644 6.1 MEDIUM
Network 		fortinet fortiweb Multiple cross-site scripting (XSS) vulnerabilities in FortiWeb before 4.4.4 allow remote attackers to inject arbitrary web script or HTML via the (1) redir or (2) mkey parameter to waf/pcre_expressi… CWE-79
Cross-site Scripting 		CVE-2012-6346 2024-11-21 10:46 2018-02-10 Show GitHub Exploit DB Packet Storm
290645 6.1 MEDIUM
Network 		jquery jquery jQuery before 1.9.0 is vulnerable to Cross-site Scripting (XSS) attacks. The jQuery(strInput) function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery… CWE-79
Cross-site Scripting 		CVE-2012-6708 2024-11-21 10:46 2018-01-19 Show GitHub Exploit DB Packet Storm
290646 6.1 MEDIUM
Network 		dragonbyte-tech vbdownloads_module Cross-site scripting (XSS) vulnerability in downloads/actions/editdownload.php in the DragonByte Technologies vBDownloads module 1.3.2 and earlier for vBulletin allows remote attackers to inject arbi… CWE-79
Cross-site Scripting 		CVE-2012-6682 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm
290647 6.1 MEDIUM
Network 		dragonbyte-tech forumon_rpg_module Multiple cross-site scripting (XSS) vulnerabilities in actions/main.php in the DragonByte Technologies Forumon RPG module before 1.0.8 for vBulletin when creating a new monster, allow remote attacker… CWE-79
Cross-site Scripting 		CVE-2012-6671 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm
290648 6.1 MEDIUM
Network 		dragonbyte-tech vbactivity_module Multiple cross-site scripting (XSS) vulnerabilities in the DragonByte Technologies vbActivity module before 3.0.1 for vBulletin allow remote attackers to inject arbitrary web script or HTML via the r… CWE-79
Cross-site Scripting 		CVE-2012-6670 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm
290649 6.1 MEDIUM
Network 		dragonbyte-tech vbshout_module Multiple cross-site scripting (XSS) vulnerabilities in the Shout Reports in the DragonByte Technologies vBShout module before 6.0.6 for vBulletin allow remote attackers to inject arbitrary web script… CWE-79
Cross-site Scripting 		CVE-2012-6668 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm
290650 6.1 MEDIUM
Network 		dragonbyte-tech vbshout Cross-site scripting (XSS) vulnerability in vbshout.php in DragonByte Technologies vBShout module for vBulletin allows remote attackers to inject arbitrary web script or HTML via the shout parameter … CWE-79
Cross-site Scripting 		CVE-2012-6667 2024-11-21 10:46 2018-01-12 Show GitHub Exploit DB Packet Storm