Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252111	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0978	2011-05-2 14:16	2011-02-10	Show	GitHub Exploit DB Packet Storm

252112	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0097	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

252113	9.3	危険	マイクロソフト	-	Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0034	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

252114	9.3	危険	マイクロソフト	-	Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0663	2011-05-2 14:13	2011-04-12	Show	GitHub Exploit DB Packet Storm

252115	7.5	危険	マイクロソフト	-	Microsoft Windows の DNS クライアント内にある DNSAPI.dll における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0657	2011-05-2 14:12	2011-04-12	Show	GitHub Exploit DB Packet Storm

252116	9.3	危険	マイクロソフト	-	Microsoft Windows および Office XP の GDI+ 内にある gdiplus.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0041	2011-05-2 14:11	2011-04-12	Show	GitHub Exploit DB Packet Storm

252117	9.3	危険	マイクロソフト	-	Microsoft .NET Framework の x86 JIT コンパイラにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3958	2011-05-2 14:09	2011-04-12	Show	GitHub Exploit DB Packet Storm

252118	9.3	危険	マイクロソフト	-	Microsoft Windows XP の Windows Messenger ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1243	2011-05-2 14:08	2011-04-12	Show	GitHub Exploit DB Packet Storm

252119	10	危険	マイクロソフト	-	Microsoft Windows の SMB サーバサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0661	2011-05-2 14:06	2011-04-12	Show	GitHub Exploit DB Packet Storm

252120	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の SMB クライアントにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0660	2011-05-2 14:05	2011-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
282911	-	google	chrome	Cross-site scripting (XSS) vulnerability in the DocumentLoader::maybeCreateArchive function in core/loader/DocumentLoader.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote at…	CWE-79 Cross-site Scripting	CVE-2014-1747	2024-11-21 11:04	2014-05-21	Show	GitHub Exploit DB Packet Storm

282912	-	google	chrome	The InMemoryUrlProtocol::Read function in media/filters/in_memory_url_protocol.cc in Google Chrome before 35.0.1916.114 relies on an insufficiently large integer data type, which allows remote attack…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-1746	2024-11-21 11:04	2014-05-21	Show	GitHub Exploit DB Packet Storm

282913	-	google	chrome	Use-after-free vulnerability in the SVG implementation in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a denial of service or possibly have unspecified other…	CWE-399 Resource Management Errors	CVE-2014-1745	2024-11-21 11:04	2014-05-21	Show	GitHub Exploit DB Packet Storm

282914	-	google	chrome	Integer overflow in the AudioInputRendererHost::OnCreateStream function in content/browser/renderer_host/media/audio_input_renderer_host.cc in Google Chrome before 35.0.1916.114 allows remote attacke…	CWE-189 Numeric Errors	CVE-2014-1744	2024-11-21 11:04	2014-05-21	Show	GitHub Exploit DB Packet Storm

282915	-	google	chrome	Use-after-free vulnerability in the StyleElement::removedFromDocument function in core/dom/StyleElement.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to cause a…	CWE-399 Resource Management Errors	CVE-2014-1743	2024-11-21 11:04	2014-05-21	Show	GitHub Exploit DB Packet Storm

282916	-	pocoo	jinja2	The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does not properly create temporary files, which allows local users to gain privileges via a crafted .cache file wi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1402	2024-11-21 11:04	2014-05-19	Show	GitHub Exploit DB Packet Storm

282917	-	apple	itunes	Apple iTunes before 11.2.1 on OS X sets world-writable permissions for /Users and /Users/Shared during reboots, which allows local users to modify files, and consequently obtain access to arbitrary u…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1347	2024-11-21 11:04	2014-05-18	Show	GitHub Exploit DB Packet Storm

282918	-	dotclear	dotclear	Dotclear before 2.6.2 allows remote attackers to execute arbitrary PHP code via a serialized object in the dc_passwd cookie to a password-protected page, which is not properly handled by (1) inc/publ…	CWE-94 Code Injection	CVE-2014-1613	2024-11-21 11:04	2014-05-17	Show	GitHub Exploit DB Packet Storm

282919	-	djangoproject canonical	django ubuntu_linux	Django 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does not properly include the (1) Vary: Cookie or (2) Cache-Control header in responses, which allows remote attacke…	NVD-CWE-noinfo	CVE-2014-1418	2024-11-21 11:04	2014-05-17	Show	GitHub Exploit DB Packet Storm

282920	-	symantec	workspace_streaming	The server in Symantec Workspace Streaming (SWS) before 7.5.0.749 allows remote attackers to access files and functionality by sending a crafted XMLRPC request over HTTPS.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-1649	2024-11-21 11:04	2014-05-16	Show	GitHub Exploit DB Packet Storm