Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252111	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0978	2011-05-2 14:16	2011-02-10	Show	GitHub Exploit DB Packet Storm

252112	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0097	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

252113	9.3	危険	マイクロソフト	-	Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0034	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

252114	9.3	危険	マイクロソフト	-	Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0663	2011-05-2 14:13	2011-04-12	Show	GitHub Exploit DB Packet Storm

252115	7.5	危険	マイクロソフト	-	Microsoft Windows の DNS クライアント内にある DNSAPI.dll における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0657	2011-05-2 14:12	2011-04-12	Show	GitHub Exploit DB Packet Storm

252116	9.3	危険	マイクロソフト	-	Microsoft Windows および Office XP の GDI+ 内にある gdiplus.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0041	2011-05-2 14:11	2011-04-12	Show	GitHub Exploit DB Packet Storm

252117	9.3	危険	マイクロソフト	-	Microsoft .NET Framework の x86 JIT コンパイラにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3958	2011-05-2 14:09	2011-04-12	Show	GitHub Exploit DB Packet Storm

252118	9.3	危険	マイクロソフト	-	Microsoft Windows XP の Windows Messenger ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1243	2011-05-2 14:08	2011-04-12	Show	GitHub Exploit DB Packet Storm

252119	10	危険	マイクロソフト	-	Microsoft Windows の SMB サーバサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0661	2011-05-2 14:06	2011-04-12	Show	GitHub Exploit DB Packet Storm

252120	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の SMB クライアントにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0660	2011-05-2 14:05	2011-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
305401	8.1	HIGH Network	parseplatform	parse_server	Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. If the Parse Server option allowCustomObjectId: true is set, an attacker that is allowed to cre…	CWE-863 Incorrect Authorization	CVE-2024-47183	2024-11-14 06:15	2024-10-5	Show	GitHub Exploit DB Packet Storm

305402	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds write in trie_get_next_key() trie_get_next_key() allocates a node stack with size trie->max_prefixlen, whi…	CWE-787 Out-of-bounds Write	CVE-2024-50262	2024-11-14 06:10	2024-11-9	Show	GitHub Exploit DB Packet Storm

305403	9.8	CRITICAL Network	dlink	di-8003_firmware	A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been classified as critical. Affected is the function upgrade_filter_asp of the file /upgrade_filter.asp. The manipulation of the argume…	CWE-78 CWE-77 OS Command Command Injection	CVE-2024-11046	2024-11-14 06:01	2024-11-10	Show	GitHub Exploit DB Packet Storm

305404	9.8	CRITICAL Network	dlink	di-8003_firmware	A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been declared as critical. Affected by this vulnerability is the function upgrade_filter_asp of the file /upgrade_filter.asp. The manipu…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2024-11047	2024-11-14 05:56	2024-11-10	Show	GitHub Exploit DB Packet Storm

305405	9.8	CRITICAL Network	dlink	di-8003_firmware	A vulnerability was found in D-Link DI-8003 16.07.16A1. It has been rated as critical. Affected by this issue is the function dbsrv_asp of the file /dbsrv.asp. The manipulation of the argument str le…	CWE-119 CWE-121 Incorrect Access of Indexable Resource ('Range Error') Stack-based Buffer Overflow	CVE-2024-11048	2024-11-14 05:53	2024-11-10	Show	GitHub Exploit DB Packet Storm

305406	7.2	HIGH Network	salesagility	suitecrm	SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. SuiteCRM relies on the blacklist of functions/methods to prevent installation of malicious ML…	NVD-CWE-noinfo	CVE-2024-49774	2024-11-14 05:40	2024-11-6	Show	GitHub Exploit DB Packet Storm

305407	8.8	HIGH Network	zohocorp	manageengine_admanager_plus	Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option.	NVD-CWE-noinfo	CVE-2024-24409	2024-11-14 05:35	2024-11-8	Show	GitHub Exploit DB Packet Storm

305408	5.4	MEDIUM Network	mycred	mycred	The myCred – Loyalty Points and Rewards plugin for WordPress and WooCommerce – Give Points, Ranks, Badges, Cashback, WooCommerce rewards, and WooCommerce credits for Gamification plugin for WordPress…	CWE-79 Cross-site Scripting	CVE-2024-10187	2024-11-14 05:31	2024-11-8	Show	GitHub Exploit DB Packet Storm

305409	6.5	MEDIUM Network	salesagility	suitecrm	SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Poor input validation in export allows authenticated user do a SQL injection attack. User-con…	CWE-89 SQL Injection	CVE-2024-49773	2024-11-14 05:29	2024-11-6	Show	GitHub Exploit DB Packet Storm

305410	8.1	HIGH Network	zohocorp	manageengine_sharepoint_manager_plus	Zohocorp ManageEngine SharePoint Manager Plus versions 4503 and prior are vulnerable to authenticated XML External Entity (XXE) in the Management option.	CWE-611 XXE	CVE-2024-10839	2024-11-14 05:19	2024-11-8	Show	GitHub Exploit DB Packet Storm