Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251691	4.3	警告	MediaWiki	-	MediaWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0047	2012-03-27 18:42	2011-02-3	Show	GitHub Exploit DB Packet Storm

251692	6.8	警告	Mozilla Foundation	-	Bugzilla におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0046	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

251693	6.8	警告	レッドハット	-	IcedTea における信頼できるソースからコードを実行するように見せかけることが出来る脆弱性	CWE-20 不適切な入力確認	CVE-2011-0025	2012-03-27 18:42	2011-02-4	Show	GitHub Exploit DB Packet Storm

251694	4.7	警告	Fedora Project レッドハット	-	389 Directory Server の setup スクリプトにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0022	2012-03-27 18:42	2011-02-23	Show	GitHub Exploit DB Packet Storm

251695	9.3	危険	VideoLAN	-	VideoLAN VLC Media Player の cdg.c におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0021	2012-03-27 18:42	2011-01-25	Show	GitHub Exploit DB Packet Storm

251696	7.5	危険	Fedora Project レッドハット	-	389 Directory Server の slapd におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0019	2012-03-27 18:42	2011-02-22	Show	GitHub Exploit DB Packet Storm

251697	9	危険	OpenVAS	-	OpenVAS Manager の email 関数における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0018	2012-03-27 18:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

251698	2.1	注意	The Tor Project	-	Tor における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0016	2012-03-27 18:42	2011-01-17	Show	GitHub Exploit DB Packet Storm

251699	5	警告	The Tor Project	-	Tor におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0015	2012-03-27 18:42	2011-01-17	Show	GitHub Exploit DB Packet Storm

251700	4.3	警告	Best Practical Solutions	-	Best Practical Solutions RT における平分パスワードを判定される脆弱性	CWE-310 暗号の問題	CVE-2011-0009	2012-03-27 18:42	2011-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254031	9.1	CRITICAL Network	netiq	identity_manager	The NetIQ Identity Manager Plugins before 4.6.1 contained various XML External XML Entity (XXE) handling flaws that could be used by attackers to leak information or cause denial of service attacks.	CWE-611 XXE	CVE-2017-7426	2024-11-21 12:31	2018-03-2	Show	GitHub Exploit DB Packet Storm

254032	9.8	CRITICAL Network	xmlsoft google debian	libxml2 android debian_linux	Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7376	2024-11-21 12:31	2018-02-20	Show	GitHub Exploit DB Packet Storm

254033	9.8	CRITICAL Network	xmlsoft debian google	libxml2 debian_linux android	A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default DTD …	CWE-611 XXE	CVE-2017-7375	2024-11-21 12:31	2018-02-20	Show	GitHub Exploit DB Packet Storm

254034	8.8	HIGH Network	vanderbilt	redcap	A SQL injection issue exists in a file upload handler in REDCap 7.x before 7.0.11 via a trailing substring to SendITController:upload.	CWE-89 SQL Injection	CVE-2017-7351	2024-11-21 12:31	2018-02-9	Show	GitHub Exploit DB Packet Storm

254035	7.8	HIGH Local	yandex	yandex_browser	Yandex Browser installer for Desktop before 17.4.1 has a DLL Hijacking Vulnerability because an untrusted search path is used for dnsapi.dll, winmm.dll, ntmarta.dll, cryptbase.dll or profapi.dll.	CWE-426 Untrusted Search Path	CVE-2017-7327	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

254036	7.5	HIGH Network	yandex	yandex_browser	Race condition issue in Yandex Browser for Android before 17.4.0.16 allowed a remote attacker to potentially exploit memory corruption via a crafted HTML page	CWE-362 Race Condition	CVE-2017-7326	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

254037	7.5	HIGH Network	yandex	yandex_browser	Yandex Browser before 16.9.0 allows remote attackers to spoof the address bar via window.open.	CWE-20 Improper Input Validation	CVE-2017-7325	2024-11-21 12:31	2018-01-20	Show	GitHub Exploit DB Packet Storm

254038	7.8	HIGH Local	apple	mac_os_x	An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7163	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm

254039	7.8	HIGH Local	apple	iphone_os mac_os_x watchos tvos	An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7162	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm

254040	7.8	HIGH Local	apple	mac_os_x	An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "IOAcceleratorFamily" component. It allows attackers to execute arbitrary code in a privile…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-7159	2024-11-21 12:31	2017-12-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed