Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252141 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Kerberos 実装における権限昇格の脆弱性 CWE-310
暗号の問題 		CVE-2011-0043 2011-03-7 15:05 2011-02-8 Show GitHub Exploit DB Packet Storm
252142 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0090 2011-03-7 15:03 2011-02-8 Show GitHub Exploit DB Packet Storm
252143 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0089 2011-03-7 15:00 2011-02-8 Show GitHub Exploit DB Packet Storm
252144 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0088 2011-03-7 14:57 2011-02-8 Show GitHub Exploit DB Packet Storm
252145 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0087 2011-03-7 14:54 2011-02-8 Show GitHub Exploit DB Packet Storm
252146 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0086 2011-03-7 14:52 2011-02-8 Show GitHub Exploit DB Packet Storm
252147 7.2 危険 マイクロソフト - Microsoft Windows XP の Trace Events 機能における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2011-0045 2011-03-7 14:49 2011-02-8 Show GitHub Exploit DB Packet Storm
252148 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Local Security Authority Subsystem Service における権限昇格の脆弱性 CWE-287
不適切な認証 		CVE-2011-0039 2011-03-7 14:47 2011-02-8 Show GitHub Exploit DB Packet Storm
252149 6.8 警告 OTRS プロジェクト - OTRS における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0456 2011-03-7 12:02 2011-03-7 Show GitHub Exploit DB Packet Storm
252150 7.1 危険 マイクロソフト - 複数の Microsoft 製品の JScript および VBScript スクリプトエンジンにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-0031 2011-03-4 15:12 2011-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257051 6.1 MEDIUM
Network 		rocketchat rocket.chat Rocket.Chat version 0.8.0 and newer is vulnerable to XSS in the markdown link parsing code for messages. CWE-79
Cross-site Scripting 		CVE-2017-1000054 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257052 8.1 HIGH
Network 		plug_project plug Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to arbitrary code execution in the deserialization functions of Plug.Session. CWE-502
 Deserialization of Untrusted Data 		CVE-2017-1000053 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257053 7.8 HIGH
Local 		plug_project plug Elixir Plug before v1.0.4, v1.1.7, v1.2.3 and v1.3.2 is vulnerable to null byte injection in the Plug.Static component, which may allow users to bypass filetype restrictions. CWE-74
Injection 		CVE-2017-1000052 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257054 6.1 MEDIUM
Network 		xwiki cryptpad Cross-site scripting (XSS) vulnerability in pad export in XWiki labs CryptPad before 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the pad content CWE-79
Cross-site Scripting 		CVE-2017-1000051 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257055 7.5 HIGH
Network 		jasper_project
fedoraproject
redhat
canonical 		jasper
fedora
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ubuntu_linux 		JasPer 2.0.12 is vulnerable to a NULL pointer exception in the function jp2_encode which failed to check to see if the image contained at least one component resulting in a denial-of-service. CWE-476
 NULL Pointer Dereference 		CVE-2017-1000050 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257056 7.5 HIGH
Network 		qs_project qs the web framework using ljharb's qs module older than v6.3.2, v6.2.3, v6.1.2, and v6.0.4 is vulnerable to a DoS. A malicious user can send a evil request to cause the web framework crash. CWE-20
 Improper Input Validation  		CVE-2017-1000048 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257057 9.8 CRITICAL
Network 		rbenv_project rbenv rbenv (all current versions) is vulnerable to Directory Traversal in the specification of Ruby version resulting in arbitrary code execution CWE-22
Path Traversal 		CVE-2017-1000047 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257058 7.5 HIGH
Network 		mautic mautic Mautic 2.6.1 and earlier fails to set flags on session cookies NVD-CWE-noinfo
CVE-2017-1000046 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257059 9.8 CRITICAL
Network 		gnome gtk-vnc gtk-vnc 0.4.2 and older doesn't check framebuffer boundaries correctly when updating framebuffer which may lead to memory corruption when rendering CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-1000044 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257060 6.1 MEDIUM
Network 		mapbox mapbox.js Mapbox.js versions 1.x prior to 1.6.6 and 2.x prior to 2.2.4 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON name and map share control CWE-79
Cross-site Scripting 		CVE-2017-1000043 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm