Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251931	5	警告	The Perl Foundation レッドハット	-	Perl の lc、lcfirst、uc および ucfirst 関数における汚染 (Taint) 保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1487	2011-05-26 09:55	2011-03-1	Show	GitHub Exploit DB Packet Storm

251932	7.5	危険	IBM サイバートラスト株式会社サン・マイクロシステムズ Sendmail Consortium ターボリナックスヒューレット・パッカードレッドハット	-	sendmail における X.509 証明書の処理に関する任意の SSL-based SMTP サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-4565	2011-05-26 09:52	2010-01-4	Show	GitHub Exploit DB Packet Storm

251933	5	警告	シックス・アパート株式会社	-	Movable Type におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5845	2011-05-25 14:03	2011-05-25	Show	GitHub Exploit DB Packet Storm

251934	9.3	危険	マイクロソフト	-	Microsoft PowerPoint におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1270	2011-05-25 12:24	2011-05-10	Show	GitHub Exploit DB Packet Storm

251935	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1269	2011-05-25 12:22	2011-05-10	Show	GitHub Exploit DB Packet Storm

251936	9.3	危険	マイクロソフト	-	Microsoft Windows の WINS における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1248	2011-05-25 12:15	2011-05-10	Show	GitHub Exploit DB Packet Storm

251937	7.5	危険	サムスン	-	Samsung Integrated Management System DMS に SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4284	2011-05-25 12:12	2011-05-9	Show	GitHub Exploit DB Packet Storm

251938	5	警告	VMware	-	複数の VMware 製品の self-extracting インストーラにおけるソフトウェアの配布を偽造される脆弱性	CWE-310 暗号の問題	CVE-2011-1789	2011-05-25 12:09	2011-05-5	Show	GitHub Exploit DB Packet Storm

251939	-	-	Proofpoint, Inc.	-	Proofpoint Protection Server に複数の脆弱性	-	-	2011-05-25 12:07	2011-05-6	Show	GitHub Exploit DB Packet Storm

251940	5.1	警告	Aleksey レッドハット	-	WebKit などで利用される xslt.c における任意のファイルを作成される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1425	2011-05-24 10:03	2011-03-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256291	7.5	HIGH Network	metinfo_project	metinfo	MetInfo through 5.3.17 accepts the same CAPTCHA response for 120 seconds, which makes it easier for remote attackers to bypass intended challenge requirements by modifying the client-server data stre…	CWE-290 Authentication Bypass by Spoofing	CVE-2017-11717	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256292	6.1	MEDIUM Network	metinfo_project	metinfo	MetInfo through 5.3.17 allows stored XSS via HTML Edit Mode.	CWE-79 Cross-site Scripting	CVE-2017-11716	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256293	9.8	CRITICAL Network	metinfo_project	metinfo	job/uploadfile_save.php in MetInfo through 5.3.17 blocks the .php extension but not related extensions, which might allow remote authenticated admins to execute arbitrary PHP code by uploading a .pht…	CWE-94 Code Injection	CVE-2017-11715	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256294	7.8	HIGH Local	artifex debian	ghostscript debian_linux	psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the scanner state structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecif…	CWE-125 Out-of-bounds Read	CVE-2017-11714	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256295	7.5	HIGH Network	boozt	boozt	The Boozt Fashion application before 2.3.4 for Android allows remote attackers to read login credentials by sniffing the network and leveraging the lack of SSL. NOTE: the vendor response, before the …	CWE-200 Information Exposure	CVE-2017-11706	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256296	6.5	MEDIUM Network	libming	ming	A memory leak was found in the function parseSWF_SHAPEWITHSTYLE in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-11705	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256297	6.5	MEDIUM Network	libming	ming	A heap-based buffer over-read was found in the function decompileIF in util/decompile.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.	CWE-125 Out-of-bounds Read	CVE-2017-11704	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256298	6.5	MEDIUM Network	libming	ming	A memory leak vulnerability was found in the function parseSWF_DOACTION in util/parser.c in Ming 0.4.8, which allows attackers to cause a denial of service via a crafted file.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-11703	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256299	5.4	MEDIUM Network	netcomm	4gt101w_software 4gt101w_bootloader	NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to stored cross-site scripting attacks. Creating an SSID with an XSS payload results in su…	CWE-79 Cross-site Scripting	CVE-2017-11647	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

256300	8.8	HIGH Network	netcomm	4gt101w_software 4gt101w_bootloader	NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1.1.3 are vulnerable to CSRF attacks, as demonstrated by using administration.html to disable the firewall. The…	CWE-352 Origin Validation Error	CVE-2017-11646	2024-11-21 12:08	2017-07-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed