Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251871 4.3 警告 The PHP Group - 64-bit プラットフォーム上で稼働している PHP の exif.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-0708 2011-04-21 12:24 2011-03-17 Show GitHub Exploit DB Packet Storm
251872 7.5 危険 The PHP Group - PHP の ext/shmop/shmop.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1092 2011-04-21 12:22 2011-03-17 Show GitHub Exploit DB Packet Storm
251873 7.5 危険 The PHP Group - PHP の phar_object.c における重要な情報を取得される脆弱性 CWE-134
書式文字列の問題 		CVE-2011-1153 2011-04-21 12:21 2011-03-17 Show GitHub Exploit DB Packet Storm
251874 4.3 警告 アップル - Apple iOS の MobileSafari の URL ハンドラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0158 2011-04-8 16:22 2011-03-11 Show GitHub Exploit DB Packet Storm
251875 6.9 警告 Linux
レッドハット		 - Linux kernel の ACPI サブシステムにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4347 2011-04-8 13:35 2010-12-9 Show GitHub Exploit DB Packet Storm
251876 5 警告 レッドハット
OpenLDAP Foundation		 - OpenLDAP の modrdn.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1081 2011-04-8 13:34 2011-02-10 Show GitHub Exploit DB Packet Storm
251877 6.8 警告 レッドハット
OpenLDAP Foundation		 - OpenLDAP の bind.cpp におけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-1025 2011-04-8 13:34 2011-02-10 Show GitHub Exploit DB Packet Storm
251878 4.6 警告 サイバートラスト株式会社
レッドハット
OpenLDAP Foundation		 - OpenLDAP の chain.c における内部プログラムの認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1024 2011-04-8 13:33 2011-02-10 Show GitHub Exploit DB Packet Storm
251879 6.8 警告 IBM - IBM WebSphere Application Server の Security コンポーネントにおけるサーバへアクセスされる脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1320 2011-04-8 13:33 2010-08-30 Show GitHub Exploit DB Packet Storm
251880 4 警告 IBM - IBM WebSphere Application Server の Security コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1319 2011-04-8 13:32 2010-07-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290711 - emorym android_pusher The Android_Pusher library for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows … CWE-20
 Improper Input Validation  		CVE-2012-5813 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290712 - acra acra_library The ACRA library for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the… CWE-20
 Improper Input Validation  		CVE-2012-5812 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290713 - breezy breezy The Breezy application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-… CWE-310
Cryptographic Issues 		CVE-2012-5811 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290714 5.9 MEDIUM
Network 		jpmorganchase chase_mobile The Chase mobile banking application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, whi… CWE-295
Improper Certificate Validation  		CVE-2012-5810 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290715 - groupon groupon_merchants The Groupon Redemptions application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, whic… CWE-310
Cryptographic Issues 		CVE-2012-5809 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290716 - zen-cart
firstdata 		zen_cart
linkpoint 		The LinkPoint module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in… CWE-20
 Improper Input Validation  		CVE-2012-5808 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290717 - lincolnloop
zen-cart 		authorize.net_echeck_module
zen_cart 		The Authorize.Net eCheck module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which al… CWE-20
 Improper Input Validation  		CVE-2012-5807 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290718 - paypal
zen-cart 		payments_pro
zen_cart 		The PayPal Payments Pro module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which all… CWE-20
 Improper Input Validation  		CVE-2012-5806 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290719 - paypal
zen-cart 		instant_payment_notification
zen_cart 		The PayPal IPN functionality in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allow… CWE-20
 Improper Input Validation  		CVE-2012-5805 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm
290720 - ubercart
cybersource_module_project 		ubercart
cybersource 		The CyberSource module in Ubercart does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-… CWE-20
 Improper Input Validation  		CVE-2012-5804 2024-11-21 10:45 2012-11-5 Show GitHub Exploit DB Packet Storm