Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251811 7.5 危険 Deon George - phpLDAPadmin の lib/functions.php 内の masort 関数における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4075 2011-11-9 16:42 2011-11-2 Show GitHub Exploit DB Packet Storm
251812 4.3 警告 Deon George - phpLDAPadmin の cmd.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4074 2011-11-9 16:42 2011-11-2 Show GitHub Exploit DB Packet Storm
251813 6.4 警告 ヒューレット・パッカード - HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3167 2011-11-9 16:38 2011-11-1 Show GitHub Exploit DB Packet Storm
251814 6.4 警告 ヒューレット・パッカード - HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3166 2011-11-9 16:38 2011-11-1 Show GitHub Exploit DB Packet Storm
251815 6.4 警告 ヒューレット・パッカード - HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3165 2011-11-9 16:37 2011-11-1 Show GitHub Exploit DB Packet Storm
251816 4.3 警告 株式会社アークウェブ - A-Form PC および PC/Mobile におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4274 2011-11-9 16:34 2011-09-30 Show GitHub Exploit DB Packet Storm
251817 9.3 危険 シスコシステムズ - Cisco Small Business におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4005 2011-11-9 16:32 2011-11-2 Show GitHub Exploit DB Packet Storm
251818 7.8 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3300 2011-11-9 16:31 2011-10-5 Show GitHub Exploit DB Packet Storm
251819 7.8 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (デバイスリロード) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3299 2011-11-9 16:30 2011-10-5 Show GitHub Exploit DB Packet Storm
251820 7.9 危険 シスコシステムズ - 複数の Cisco 製品における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-3298 2011-11-9 16:30 2011-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257901 9.8 CRITICAL
Network 		medhost connex MEDHOST Connex contains hard-coded credentials that are used for customer database access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with the da… CWE-798
 Use of Hard-coded Credentials 		CVE-2017-11614 2024-11-21 12:08 2017-07-26 Show GitHub Exploit DB Packet Storm
257902 7.8 HIGH
Local 		appsec-labs appuse AppUse 4.0 allows shell command injection via a proxy field. CWE-78
OS Command  		CVE-2017-11566 2024-11-21 12:08 2017-07-26 Show GitHub Exploit DB Packet Storm
257903 6.5 MEDIUM
Network 		libsass libsass There is a heap-based buffer over-read in the Sass::Prelexer::re_linebreak function in lexer.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service attack. CWE-125
Out-of-bounds Read 		CVE-2017-11608 2024-11-21 12:08 2017-07-24 Show GitHub Exploit DB Packet Storm
257904 6.5 MEDIUM
Network 		libsass libsass There is a heap based buffer over-read in LibSass 3.4.5, related to address 0xb4803ea1. A crafted input will lead to a remote denial of service attack. CWE-125
Out-of-bounds Read 		CVE-2017-11605 2024-11-21 12:08 2017-07-24 Show GitHub Exploit DB Packet Storm
257905 7.0 HIGH
Local 		linux linux_kernel net/xfrm/xfrm_policy.c in the Linux kernel through 4.12.3, when CONFIG_XFRM_MIGRATE is enabled, does not ensure that the dir value of xfrm_userpolicy_id is XFRM_POLICY_MAX or less, which allows local… CWE-125
Out-of-bounds Read 		CVE-2017-11600 2024-11-21 12:08 2017-07-24 Show GitHub Exploit DB Packet Storm
257906 5.4 MEDIUM
Network 		loomio loomio Cross-site scripting (XSS) vulnerability in the Markdown parser in Loomio before 1.8.0 allows remote attackers to inject arbitrary web script or HTML via non-sanitized Markdown content in a new threa… CWE-79
Cross-site Scripting 		CVE-2017-11594 2024-11-21 12:08 2017-07-24 Show GitHub Exploit DB Packet Storm
257907 6.1 MEDIUM
Network 		ooso markdown_preview_plus Cross-site scripting (XSS) vulnerability in the Markdown Preview Plus extension before 0.5.7 for Chrome allows remote attackers to inject arbitrary web script or HTML into some web applications via t… CWE-79
Cross-site Scripting 		CVE-2017-11593 2024-11-21 12:08 2017-07-24 Show GitHub Exploit DB Packet Storm
257908 7.5 HIGH
Network 		exiv2 exiv2 There is a Mismatched Memory Management Routines vulnerability in the Exiv2::FileIo::seek function of Exiv2 0.26 that will lead to a remote denial of service attack (heap memory corruption) via craft… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11592 2024-11-21 12:08 2017-07-24 Show GitHub Exploit DB Packet Storm
257909 7.5 HIGH
Network 		exiv2
canonical
debian 		exiv2
ubuntu_linux
debian_linux 		There is a Floating point exception in the Exiv2::ValueType function in Exiv2 0.26 that will lead to a remote denial of service attack via crafted input. NVD-CWE-noinfo
CVE-2017-11591 2024-11-21 12:08 2017-07-24 Show GitHub Exploit DB Packet Storm
257910 7.5 HIGH
Network 		gnome libgxps There is a NULL pointer dereference in the caseless_hash function in gxps-archive.c in libgxps 0.2.5. A crafted input will lead to a remote denial of service attack. CWE-476
 NULL Pointer Dereference 		CVE-2017-11590 2024-11-21 12:08 2017-07-24 Show GitHub Exploit DB Packet Storm