Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252051 7.5 危険 Almnzm - Almnzm の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5055 2011-11-25 11:46 2011-11-23 Show GitHub Exploit DB Packet Storm
252052 4.3 警告 JAMWiki - JAMWiki の Special:Login におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5054 2011-11-25 11:46 2010-04-1 Show GitHub Exploit DB Packet Storm
252053 4.3 警告 The GetSimple Team - GetSimple CMS の admin/components.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5052 2011-11-25 11:45 2011-11-23 Show GitHub Exploit DB Packet Storm
252054 4.3 警告 razorCMS - razorCMS の admin/core/admin_func.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5051 2011-11-25 11:44 2011-11-23 Show GitHub Exploit DB Packet Storm
252055 4.3 警告 Zoho Corporation - ManageEngine ADManager Plus におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5050 2011-11-25 11:43 2011-11-23 Show GitHub Exploit DB Packet Storm
252056 7.5 危険 Zabbix - Zabbix の events.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5049 2011-11-25 11:42 2011-11-23 Show GitHub Exploit DB Packet Storm
252057 4.3 警告 JoomlaTune
Joomla!		 - JoomlaTune JComments におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5048 2011-11-25 11:42 2011-11-23 Show GitHub Exploit DB Packet Storm
252058 7.5 危険 V-EVA - V-EVA Press Release Script における任意の SQL コマンドを実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5047 2011-11-25 11:41 2011-11-23 Show GitHub Exploit DB Packet Storm
252059 4.3 警告 ecoCMS - ecoCMS の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5046 2011-11-25 11:40 2011-11-23 Show GitHub Exploit DB Packet Storm
252060 7.5 危険 Alephsystem - CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5058 2011-11-25 10:14 2011-11-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258411 7.8 HIGH
Local 		google android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is an obsolete set/reset ssid hotlist API. NVD-CWE-noinfo
CVE-2017-11074 2024-11-21 12:07 2018-03-17 Show GitHub Exploit DB Packet Storm
258412 8.8 HIGH
Network 		trendmicro smart_protection_server A session hijacking via log disclosure vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an unauthenticated attacker to hijack active user sessions … CWE-534
 DEPRECATED: Information Exposure Through Debug Log Files 		CVE-2017-11398 2024-11-21 12:07 2018-01-20 Show GitHub Exploit DB Packet Storm
258413 7.8 HIGH
Local 		google android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while calculating CRC for GPT header fields with partition entries greater than 16384 b… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11072 2024-11-21 12:07 2018-01-17 Show GitHub Exploit DB Packet Storm
258414 7.8 HIGH
Local 		google android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, there is a potential buffer overflow vulnerability in hdd_parse_setrmcenable_command an… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11081 2024-11-21 12:07 2018-01-11 Show GitHub Exploit DB Packet Storm
258415 7.8 HIGH
Local 		google android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing a user supplied sparse image, a buffer overflow vulnerability could oc… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11080 2024-11-21 12:07 2018-01-11 Show GitHub Exploit DB Packet Storm
258416 9.8 CRITICAL
Network 		google android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while processing sparse image, uninitialized heap memory can potentially be flashed due… CWE-200
Information Exposure 		CVE-2017-11079 2024-11-21 12:07 2018-01-11 Show GitHub Exploit DB Packet Storm
258417 7.5 HIGH
Network 		google android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while flashing ubi image an uninitialized memory could be accessed. CWE-200
Information Exposure 		CVE-2017-11066 2024-11-21 12:07 2018-01-11 Show GitHub Exploit DB Packet Storm
258418 7.8 HIGH
Local 		google android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, manipulation of SafeSwitch Image data can result in Heap overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11069 2024-11-21 12:07 2018-01-11 Show GitHub Exploit DB Packet Storm
258419 7.8 HIGH
Local 		trendmicro encryption_for_email A service DLL preloading vulnerability in Trend Micro Encryption for Email versions 5.6 and below could allow an unauthenticated remote attacker to execute arbitrary code on a vulnerable system. CWE-426
 Untrusted Search Path 		CVE-2017-11397 2024-11-21 12:07 2017-12-16 Show GitHub Exploit DB Packet Storm
258420 6.5 MEDIUM
Network 		adobe
redhat 		flash_player
flash_player_desktop_runtime
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation 		A regression affecting Adobe Flash Player version 27.0.0.187 (and earlier versions) causes the unintended reset of the global settings preference file when a user clears browser data. NVD-CWE-noinfo
CVE-2017-11305 2024-11-21 12:07 2017-12-14 Show GitHub Exploit DB Packet Storm