Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252031	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox および SeaMonkey の JavaScript エンジンにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0054	2011-03-25 15:42	2011-03-1	Show	GitHub Exploit DB Packet Storm

252032	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox および SeaMonkey の JSON.stringify メソッドにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0055	2011-03-25 15:40	2011-03-1	Show	GitHub Exploit DB Packet Storm

252033	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox および SeaMonkey におけるダイアログの質問に対し応答を強制される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0051	2011-03-25 15:38	2011-03-1	Show	GitHub Exploit DB Packet Storm

252034	10	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-0062	2011-03-25 15:35	2011-03-1	Show	GitHub Exploit DB Packet Storm

252035	-	-	Mutare Software	-	Mutare Software Enabled VoiceMail (EVM) のウェブインターフェースに複数の脆弱性	-	-	2011-03-25 15:22	2011-02-24	Show	GitHub Exploit DB Packet Storm

252036	-	-	IBM	-	IBM WebSphere Portal Server の入力値検証に脆弱性	-	-	2011-03-25 15:16	2011-02-24	Show	GitHub Exploit DB Packet Storm

252037	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0457	2011-03-25 12:02	2011-03-14	Show	GitHub Exploit DB Packet Storm

252038	5.1	警告	Google	-	Picasa における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2011-0458	2011-03-25 12:01	2011-03-25	Show	GitHub Exploit DB Packet Storm

252039	7.2	危険	マイクロソフト	-	Microsoft Malware Protection Engine における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0037	2011-03-24 15:40	2011-02-23	Show	GitHub Exploit DB Packet Storm

252040	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスにおける任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0396	2011-03-24 15:37	2011-02-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285281	-	adam_zaninovich	sounder	lib/sounder/sound.rb in the sounder gem 1.0.1 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a filename.	CWE-94 Code Injection	CVE-2013-5647	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

285282	-	roundcube	webmail	Cross-site scripting (XSS) vulnerability in Roundcube webmail 1.0-git allows remote authenticated users to inject arbitrary web script or HTML via the Name field of an addressbook group.	CWE-79 Cross-site Scripting	CVE-2013-5646	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

285283	-	roundcube	webmail	Multiple cross-site scripting (XSS) vulnerabilities in Roundcube webmail before 0.9.3 allow user-assisted remote attackers to inject arbitrary web script or HTML via the body of a message visited in …	CWE-79 Cross-site Scripting	CVE-2013-5645	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

285284	-	debian cacti opensuse	debian_linux cacti opensuse	SQL injection vulnerability in cacti/host.php in Cacti 0.8.8b and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2013-5589	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

285285	-	cacti opensuse	cacti opensuse	Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.8b and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the step parameter to install/index.php or (2) th…	CWE-79 Cross-site Scripting	CVE-2013-5588	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

285286	-	freebsd	freebsd	The sctp_send_initiate_ack function in sys/netinet/sctp_output.c in the SCTP implementation in the kernel in FreeBSD 8.3 through 9.2-PRERELEASE does not properly initialize the state-cookie data stru…	CWE-200 Information Exposure	CVE-2013-5209	2024-11-21 10:57	2013-08-29	Show	GitHub Exploit DB Packet Storm

285287	-	staruml	staruml	Buffer overflow in the ToDot method in the WINGRAPHVIZLib.NEATO ActiveX control in WinGraphviz.dll in StarUML allows remote attackers to execute arbitrary code via a long argument.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5578	2024-11-21 10:57	2013-08-25	Show	GitHub Exploit DB Packet Storm

285288	-	bestpractical	rt	Cross-site scripting (XSS) vulnerability in Request Tracker (RT) 4.x before 4.0.13, when MakeClicky is configured, allows remote attackers to inject arbitrary web script or HTML via a URL in a ticket…	CWE-79 Cross-site Scripting	CVE-2013-5587	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm

285289	-	axel_jung	js_css_optimizer	Cross-site scripting (XSS) vulnerability in the Javascript and CSS Optimizer extension before 1.1.14 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-5570	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm

285290	-	heiko_sudar	slideshare	SQL injection vulnerability in the Slideshare extension 0.1.0 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.	CWE-89 SQL Injection	CVE-2013-5569	2024-11-21 10:57	2013-08-24	Show	GitHub Exploit DB Packet Storm