Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251741 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンの Ogg reader におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2992 2011-09-5 10:53 2011-08-16 Show GitHub Exploit DB Packet Storm
251742 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2991 2011-09-5 10:51 2011-08-16 Show GitHub Exploit DB Packet Storm
251743 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2989 2011-09-5 10:39 2011-08-16 Show GitHub Exploit DB Packet Storm
251744 6.9 警告 サイバートラスト株式会社
シトリックス・システムズ
レッドハット		 - Xen の tools/libxc/xc_dom_bzimageloader.c における複数の整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1583 2011-09-2 14:27 2011-05-9 Show GitHub Exploit DB Packet Storm
251745 7.8 危険 ISC, Inc.
レッドハット		 - ISC DHCP サーバにおけるサービス運用妨害 (dhcp デーモンの停止) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2749 2011-09-2 14:26 2011-07-27 Show GitHub Exploit DB Packet Storm
251746 6.8 警告 GTK+ - GTK+ における DLL 読み込みに関する脆弱性 CWE-Other
その他 		CVE-2010-4831 2011-09-2 12:04 2011-09-2 Show GitHub Exploit DB Packet Storm
251747 4.3 警告 ジュニパーネットワークス - Juniper Networks IDP ACM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-5086 2011-09-2 12:03 2011-09-2 Show GitHub Exploit DB Packet Storm
251748 5.8 警告 Sage - Sage において任意のスクリプトが実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4102 2011-09-2 12:03 2011-09-2 Show GitHub Exploit DB Packet Storm
251749 5.8 警告 Sage - Sage において任意のスクリプトが実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3384 2011-09-2 12:03 2011-09-2 Show GitHub Exploit DB Packet Storm
251750 2.6 注意 Phorum - Phorum における複数の脆弱性 CWE-352
CWE-79
CVE-2011-3381
CVE-2011-3382 		2011-09-2 12:00 2011-09-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305491 8.8 HIGH
Network 		microsoft sql_server_2016
sql_server_2017
sql_server_2019 		SQL Server Native Client Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2024-48994 2024-11-16 00:40 2024-11-13 Show GitHub Exploit DB Packet Storm
305492 - - - Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-9530. Reason: This candidate is a reservation duplicate of CVE-2024-9530. Notes: All CVE users should reference CV… - CVE-2024-10691 2024-11-16 00:15 2024-11-16 Show GitHub Exploit DB Packet Storm
305493 - - - Jenkins OpenId Connect Authentication Plugin 4.418.vccc7061f5b_6d and earlier does not invalidate the previous session on login. - CVE-2024-52553 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
305494 - - - Jenkins Authorize Project Plugin 1.7.2 and earlier evaluates a string containing the job name with JavaScript on the Authorization view, resulting in a stored cross-site scripting (XSS) vulnerability… - CVE-2024-52552 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
305495 - - - Jenkins Pipeline: Declarative Plugin 2.2214.vb_b_34b_2ea_9b_83 and earlier does not check whether the main (Jenkinsfile) script used to restart a build from a specific stage is approved, allowing att… - CVE-2024-52551 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
305496 - - - Jenkins Pipeline: Groovy Plugin 3990.vd281dd77a_388 and earlier, except 3975.3977.v478dd9e956c3 does not check whether the main (Jenkinsfile) script for a rebuilt build is approved, allowing attacker… - CVE-2024-52550 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
305497 - - - Jenkins Script Security Plugin 1367.vdf2fc45f229c and earlier, except 1365.1367.va_3b_b_89f8a_95b_ and 1362.1364.v4cf2dc5d8776, does not perform a permission check in a method implementing form valid… - CVE-2024-52549 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
305498 - - - baltic-it TOPqw Webportal v1.35.283.2 is vulnerable to Incorrect Access Control in the User Management function in /Apps/TOPqw/BenutzerManagement.aspx. This allows a low privileged user to access all… - CVE-2024-45877 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
305499 - - - Use after free in the UEFI firmware of some Intel(R) Server M20NTP BIOS may allow a privileged user to potentially enable escalation of privilege via local access. CWE-416
 Use After Free 		CVE-2024-40885 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm
305500 - - - Improper input validation in firmware for some Intel(R) Server M20NTP Family UEFI may allow a privileged user to potentially enable escalation of privilege via local access. CWE-20
 Improper Input Validation  		CVE-2024-39811 2024-11-15 23:00 2024-11-14 Show GitHub Exploit DB Packet Storm