Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252131 5.8 警告 Apache Software Foundation - Apache Tomcat におけるアクセス制限を回避される脆弱性 CWE-DesignError
CVE-2011-1183 2011-04-28 15:31 2011-04-1 Show GitHub Exploit DB Packet Storm
252132 5 警告 Apache Software Foundation - Apache Tomcat の HTTP BIO コネクタにおけるレスポンスを閲覧される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1475 2011-04-28 15:29 2011-03-28 Show GitHub Exploit DB Packet Storm
252133 2.1 注意 オラクル - Oracle Solaris 10 に認証情報漏えいの脆弱性 - CVE-2011-0412 2011-04-28 15:27 2011-04-6 Show GitHub Exploit DB Packet Storm
252134 - - デル - Dell Kace K2000 Systems Deployment Appliance に脆弱性 - - 2011-04-28 15:21 2011-04-6 Show GitHub Exploit DB Packet Storm
252135 - - ネットギア - Netgear Prosafe Wireless-N Access Point に複数の脆弱性 - - 2011-04-28 15:19 2011-04-6 Show GitHub Exploit DB Packet Storm
252136 7.2 危険 Prefix WhoIs Project - pWhois Layer Four Traceroute に権限昇格の脆弱性 CWE-noinfo
情報不足 		CVE-2011-0765 2011-04-28 15:18 2011-04-5 Show GitHub Exploit DB Packet Storm
252137 6.9 警告 レッドハット - policycoreutils パッケージの seunshare_mount 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1011 2011-04-28 15:11 2011-02-24 Show GitHub Exploit DB Packet Storm
252138 4.3 警告 マイクロソフト - Microsoft Windows にスクリプトインジェクションの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0096 2011-04-28 14:33 2011-01-31 Show GitHub Exploit DB Packet Storm
252139 9.3 危険 マイクロソフト - Microsoft WMI Administrative Tools の WBEMSingleView.ocx ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-3973 2011-04-28 14:29 2010-12-23 Show GitHub Exploit DB Packet Storm
252140 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0811 2011-04-28 14:25 2010-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257371 6.1 MEDIUM
Network 		xwiki cryptpad Cross-site scripting (XSS) vulnerability in pad export in XWiki labs CryptPad before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the pad content CWE-79
Cross-site Scripting 		CVE-2017-1000051 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257372 7.5 HIGH
Network 		jasper_project
fedoraproject
redhat
canonical 		jasper
fedora
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ubuntu_linux 		JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service. CWE-476
 NULL Pointer Dereference 		CVE-2017-1000050 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257373 7.5 HIGH
Network 		qs_project qs the web framework using ljharb's qs module older than v6.3.2, v6.2.3, v6.1.2, and v6.0.4 is vulnerable to a DoS. A malicious user can send a evil request to cause the web framework crash. CWE-20
 Improper Input Validation  		CVE-2017-1000048 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257374 9.8 CRITICAL
Network 		rbenv_project rbenv rbenv (all current versions) is vulnerable to Directory Traversal in the specification of Ruby version resulting in arbitrary code execution CWE-22
Path Traversal 		CVE-2017-1000047 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257375 7.5 HIGH
Network 		mautic mautic Mautic 2.6.1 and earlier fails to set flags on session cookies NVD-CWE-noinfo
CVE-2017-1000046 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257376 9.8 CRITICAL
Network 		gnome gtk-vnc gtk-vnc 0.4.2 and older doesn't check framebuffer boundaries correctly when updating framebuffer which may lead to memory corruption when rendering CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-1000044 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257377 6.1 MEDIUM
Network 		mapbox mapbox.js Mapbox.js versions 1.x prior to 1.6.6 and 2.x prior to 2.2.4 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON name and map share control CWE-79
Cross-site Scripting 		CVE-2017-1000043 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257378 6.1 MEDIUM
Network 		mapbox_project mapbox Mapbox.js versions 1.x prior to 1.6.5 and 2.x prior to 2.1.7 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON Name. CWE-79
Cross-site Scripting 		CVE-2017-1000042 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257379 9.8 CRITICAL
Network 		framasoft framadate Framadate version 1.0 is vulnerable to Formula Injection in the CSV Export resulting possible Information Disclosure and Code Execution CWE-20
 Improper Input Validation  		CVE-2017-1000039 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257380 6.1 MEDIUM
Network 		relevanssi relevanssi WordPress plugin Relevanssi version 3.5.7.1 is vulnerable to stored XSS resulting in attacker being able to execute JavaScript on the affected site CWE-79
Cross-site Scripting 		CVE-2017-1000038 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm