Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252061	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1232	2011-05-9 12:09	2011-04-12	Show	GitHub Exploit DB Packet Storm

252062	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1231	2011-05-9 12:08	2011-04-12	Show	GitHub Exploit DB Packet Storm

252063	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1230	2011-05-9 12:07	2011-04-12	Show	GitHub Exploit DB Packet Storm

252064	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1229	2011-05-9 12:06	2011-04-12	Show	GitHub Exploit DB Packet Storm

252065	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1228	2011-05-9 12:04	2011-04-12	Show	GitHub Exploit DB Packet Storm

252066	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1227	2011-05-9 12:03	2011-04-12	Show	GitHub Exploit DB Packet Storm

252067	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1226	2011-05-9 12:02	2011-04-12	Show	GitHub Exploit DB Packet Storm

252068	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-1225	2011-05-9 12:01	2011-04-12	Show	GitHub Exploit DB Packet Storm

252069	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0677	2011-05-9 11:59	2011-04-12	Show	GitHub Exploit DB Packet Storm

252070	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0676	2011-05-9 11:57	2011-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
277031	-	wordpress	wordpress	wp-includes/class-phpass.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote attackers to cause a denial of service (CPU consumption) via a long …	CWE-19 Data Processing Errors	CVE-2014-9034	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

277032	-	wordpress	wordpress	Cross-site request forgery (CSRF) vulnerability in wp-login.php in WordPress 3.7.4, 3.8.4, 3.9.2, and 4.0 allows remote attackers to hijack the authentication of arbitrary users for requests that res…	CWE-352 Origin Validation Error	CVE-2014-9033	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

277033	-	wordpress	wordpress	Cross-site scripting (XSS) vulnerability in the media-playlists feature in WordPress before 3.9.x before 3.9.3 and 4.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via …	CWE-79 Cross-site Scripting	CVE-2014-9032	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

277034	-	wordpress	wordpress	Cross-site scripting (XSS) vulnerability in the wptexturize function in WordPress before 3.7.5, 3.8.x before 3.8.5, and 3.9.x before 3.9.3 allows remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2014-9031	2024-11-21 11:20	2014-11-26	Show	GitHub Exploit DB Packet Storm

277035	-	xen debian opensuse	xen debian_linux opensuse	The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x does not properly manage page references, which allows remote domains to cause a denial of service by leveraging control over an…	CWE-20 Improper Input Validation	CVE-2014-9030	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

277036	-	drupal secure_password_hashes_project debian	drupal secure_passwords_hashes debian_linux	The password hashing API in Drupal 7.x before 7.34 and the Secure Password Hashes (aka phpass) module 6.x-2.x before 6.x-2.1 for Drupal allows remote attackers to cause a denial of service (CPU and m…	NVD-CWE-noinfo	CVE-2014-9016	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

277037	-	drupal debian	drupal debian_linux	Drupal 6.x before 6.34 and 7.x before 7.34 allows remote attackers to hijack sessions via a crafted request, as demonstrated by a crafted request to a server that supports both HTTP and HTTPS session…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9015	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

277038	-	pypa oracle	pip solaris	pip 1.3 through 1.5.6 allows local users to cause a denial of service (prevention of package installation) by creating a /tmp/pip-build-* file for another user.	NVD-CWE-noinfo	CVE-2014-8991	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

277039	-	mantisbt	mantisbt	MantisBT before 1.2.18 allows remote authenticated users to bypass the $g_download_attachments_threshold and $g_view_attachments_threshold restrictions and read attachments for private projects by le…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-8988	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm

277040	-	mantisbt	mantisbt	Cross-site scripting (XSS) vulnerability in the selection list in the filters in the Configuration Report page (adm_config_report.php) in MantisBT 1.2.13 through 1.2.17 allows remote administrators t…	CWE-79 Cross-site Scripting	CVE-2014-8986	2024-11-21 11:20	2014-11-25	Show	GitHub Exploit DB Packet Storm