Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251741 2.6 注意 HTC Corporation - 複数の Android 用 HTC 製品における電話番号およびその他の重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-3975 2011-10-7 11:46 2011-10-3 Show GitHub Exploit DB Packet Storm
251742 5 警告 FFmpeg - FFmpeg の decode_residual_inter 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3974 2011-10-7 11:33 2011-10-2 Show GitHub Exploit DB Packet Storm
251743 4.3 警告 PunBB - PunBB の include/functions.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3371 2011-10-7 11:29 2011-10-2 Show GitHub Exploit DB Packet Storm
251744 9 危険 ヒューレット・パッカード - HP NonStop Servers における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-2411 2011-10-7 11:26 2011-09-19 Show GitHub Exploit DB Packet Storm
251745 4.3 警告 TWiki - TWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3010 2011-10-7 11:20 2011-09-22 Show GitHub Exploit DB Packet Storm
251746 4.3 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey におけるキー操作を読み取られる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3866 2011-10-7 11:10 2011-09-27 Show GitHub Exploit DB Packet Storm
251747 5 警告 FFmpeg - FFmpeg の libavcodec 内にある cavsdec.c における サービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3973 2011-10-7 10:59 2011-10-2 Show GitHub Exploit DB Packet Storm
251748 6.8 警告 FFmpeg
Libav		 - FFmpeg および libav の decode_residual_block 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-3362 2011-10-7 10:58 2011-10-2 Show GitHub Exploit DB Packet Storm
251749 - - Investintech.com Inc. - SlimPDF Reader に複数の脆弱性 - - 2011-10-7 10:56 2011-10-4 Show GitHub Exploit DB Packet Storm
251750 10 危険 Mozilla Foundation - Mozilla Firefox のプラグイン API におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2996 2011-10-5 16:27 2011-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297371 - bravenewcode wptouch SQL injection vulnerability in wptouch/ajax.php in the WPTouch plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2011-4803 2024-11-21 10:33 2011-12-14 Show GitHub Exploit DB Packet Storm
297372 - dolibarr dolibarr_erp\/crm Multiple SQL injection vulnerabilities in Dolibarr 3.1.0 RC and probably earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) sortfield, (2) sortorder, and (3) sall … CWE-89
SQL Injection 		CVE-2011-4802 2024-11-21 10:33 2011-12-14 Show GitHub Exploit DB Packet Storm
297373 - authenex authenex_strong_authentication_system_server SQL injection vulnerability in akeyActivationLogin.do in Authenex Web Management Control in Authenex Strong Authentication System (ASAS) Server 3.1.0.2 and 3.1.0.3 allows remote attackers to execute … CWE-89
SQL Injection 		CVE-2011-4801 2024-11-21 10:33 2011-12-14 Show GitHub Exploit DB Packet Storm
297374 - solarwinds serv-u_file_server Directory traversal vulnerability in Serv-U FTP Server before 11.1.0.5 allows remote authenticated users to read and write arbitrary files, and list and create arbitrary directories, via a "..:/" (do… CWE-22
Path Traversal 		CVE-2011-4800 2024-11-21 10:33 2011-12-14 Show GitHub Exploit DB Packet Storm
297375 9.8 CRITICAL
Network 		polarssl polarssl PolarSSL versions prior to v1.1 use the HAVEGE random number generation algorithm. At its heart, this uses timing information based on the processor's high resolution timer (the RDTSC instruction). T… - CVE-2011-4574 2024-11-21 10:32 2021-10-27 Show GitHub Exploit DB Packet Storm
297376 5.3 MEDIUM
Network 		lexmark x860_firmware
x862_firmware
x864_firmware
x734_firmware
x736_firmware
x738_firmware
x651_firmware
x652_firmware
x654_firmware
x656_firmware
x658_firmware
x543_firmwar… 		Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings. CWE-200
Information Exposure 		CVE-2011-4538 2024-11-21 10:32 2020-03-10 Show GitHub Exploit DB Packet Storm
297377 7.8 HIGH
Local 		shaman_project shaman Shaman 1.0.9: Users can add the line askforpwd=false to his shaman.conf file, without entering the root password in shaman. The next time shaman is run, root privileges are granted despite the fact t… CWE-287
Improper Authentication 		CVE-2011-4338 2024-11-21 10:32 2020-02-13 Show GitHub Exploit DB Packet Storm
297378 7.5 HIGH
Network 		cisco ios A memory leak vulnerability exists in Cisco IOS before 15.2(1)T due to a memory leak in the HTTP PROXY Server process (aka CSCtu52820), when configured with Cisco ISR Web Security with Cisco ScanSafe… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2011-4661 2024-11-21 10:32 2020-02-13 Show GitHub Exploit DB Packet Storm
297379 7.2 HIGH
Network 		tiki tiki Tiki 8.2 and earlier allows remote administrators to execute arbitrary PHP code via crafted input to the regexres and regex parameters. CWE-74
Injection 		CVE-2011-4558 2024-11-21 10:32 2020-01-28 Show GitHub Exploit DB Packet Storm
297380 7.5 HIGH
Network 		websitebaker websitebaker websitebaker prior to and including 2.8.1 has an authentication error in backup module. CWE-306
Missing Authentication for Critical Function 		CVE-2011-4322 2024-11-21 10:32 2020-01-22 Show GitHub Exploit DB Packet Storm