Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251741	10	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0777	2011-11-16 10:05	2011-02-3	Show	GitHub Exploit DB Packet Storm

251742	5	警告	Google	-	Mac OS X 上で稼働する Google Chrome のサンドボックス実装における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-0776	2011-11-16 10:04	2011-02-3	Show	GitHub Exploit DB Packet Storm

251743	10	危険	Google	-	Google Chrome および Chrome OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0484	2011-11-16 09:51	2011-01-12	Show	GitHub Exploit DB Packet Storm

251744	10	危険	Google	-	Google Chrome および Chrome OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0483	2011-11-16 09:49	2011-01-12	Show	GitHub Exploit DB Packet Storm

251745	9.3	危険	Google	-	Google Chrome および Chrome OS におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2011-0482	2011-11-16 09:49	2011-01-12	Show	GitHub Exploit DB Packet Storm

251746	4.6	警告	マイクロソフト	-	Microsoft Windows Server 2008 および Windows 7 におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4434	2011-11-15 16:10	2011-11-11	Show	GitHub Exploit DB Packet Storm

251747	7.2	危険	アップル	-	Apple iOS のカーネルにおける任意の符号なしコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-3442	2011-11-15 16:09	2011-11-11	Show	GitHub Exploit DB Packet Storm

251748	9.3	危険	アップル	-	Apple iOS の libinfo における重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3441	2011-11-15 16:08	2011-11-11	Show	GitHub Exploit DB Packet Storm

251749	1.2	注意	アップル	-	Apple iOS の Passcode Lock 機能におけるデータにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3440	2011-11-15 16:06	2011-11-11	Show	GitHub Exploit DB Packet Storm

251750	4.4	警告	Apache Software Foundation	-	Apache Tomcat における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3376	2011-11-15 15:54	2011-11-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257801	5.4	MEDIUM Network	cacti	cacti	Cross-site scripting (XSS) vulnerability in aggregate_graphs.php in Cacti before 1.1.16 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer hea…	CWE-79 Cross-site Scripting	CVE-2017-12066	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257802	9.8	CRITICAL Network	cacti	cacti	spikekill.php in Cacti before 1.1.16 might allow remote attackers to execute arbitrary code via the avgnan, outlier-start, or outlier-end parameter.	NVD-CWE-noinfo	CVE-2017-12065	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257803	7.5	HIGH Network	open-emr	openemr	The csv_log_html function in library/edihistory/edih_csv_inc.php in OpenEMR 5.0.0 and prior allows attackers to bypass intended access restrictions via a crafted name.	CWE-116 Improper Encoding or Escaping of Output	CVE-2017-12064	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257804	6.1	MEDIUM Network	connectwise	manage	services/system_io/actionprocessor/Contact.rails in ConnectWise Manage 2017.5 allows arbitrary client-side JavaScript code execution (involving a ContactCommon field) on victims who click on a crafte…	CWE-79 Cross-site Scripting	CVE-2017-11727	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257805	8.8	HIGH Network	connectwise	manage	services/system_io/actionprocessor/System.rails in ConnectWise Manage 2017.5 is vulnerable to Cross-Site Request Forgery (CSRF), as demonstrated by changing an e-mail address setting.	CWE-352 Origin Validation Error	CVE-2017-11726	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257806	8.8	HIGH Network	techroutes	tr_1803-3g_firmware	Techroutes TR 1803-3G Wireless Cellular Router/Modem 2.4.25 devices do not possess any protection against a CSRF vulnerability, as demonstrated by a goform/BasicSettings request to disable port filte…	CWE-352 Origin Validation Error	CVE-2017-11648	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257807	8.8	HIGH Network	projeqtor	projeqtor	uploadImage.php in ProjeQtOr before 6.3.2 allows remote authenticated users to execute arbitrary PHP code by uploading a .php file composed of concatenated image data and script data, as demonstrated…	CWE-94 Code Injection	CVE-2017-11760	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257808	7.5	HIGH Network	eapmd5pass_project	eapmd5pass	A length validation (leading to out-of-bounds read and write) flaw was found in the way eapmd5pass 1.4 handled network traffic in the extract_eapusername function. A remote attacker could potentially…	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2017-11670	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257809	7.5	HIGH Network	eapmd5pass_project	eapmd5pass	An out-of-bounds read flaw related to the assess_packet function in eapmd5pass.c:211 was found in the way eapmd5pass 1.4 handled processing of network packets. A remote attacker could potentially use…	CWE-125 Out-of-bounds Read	CVE-2017-11669	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm

257810	7.5	HIGH Network	eapmd5pass_project	eapmd5pass	An out-of-bounds read flaw related to the assess_packet function in eapmd5pass.c:134 was found in the way eapmd5pass 1.4 handled processing of network packets. A remote attacker could potentially use…	CWE-125 Out-of-bounds Read	CVE-2017-11668	2024-11-21 12:08	2017-08-1	Show	GitHub Exploit DB Packet Storm