Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252141	5	警告	ProFTPD Project	-	ProFTPD の mod_sftp モジュールにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1137	2011-04-27 11:59	2011-01-24	Show	GitHub Exploit DB Packet Storm

252142	6.8	警告	IBM	-	IBM AIX の LDAP ログイン機能における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-1561	2011-04-27 11:57	2011-03-31	Show	GitHub Exploit DB Packet Storm

252143	4.4	警告	ヒューレット・パッカード	-	HP HP-UX の OS-Core.CORE2-KRN ファイルセットにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-0891	2011-04-27 11:56	2011-03-23	Show	GitHub Exploit DB Packet Storm

252144	1.9	注意	Gentoo Linux レッドハット	-	logrotate の logrotate.c 内にある writeState 関数におけるサービス運用妨害 (ローテーションの停止) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1155	2011-04-27 11:41	2011-03-30	Show	GitHub Exploit DB Packet Storm

252145	6.9	警告	Gentoo Linux レッドハット	-	logrotate の shred_file 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1154	2011-04-27 11:40	2011-03-30	Show	GitHub Exploit DB Packet Storm

252146	1.9	注意	Gentoo Linux レッドハット	-	logrotate の createOutputFile 関数におけるログデータを閲覧される脆弱性	CWE-362 競合状態	CVE-2011-1098	2011-04-27 11:39	2011-03-30	Show	GitHub Exploit DB Packet Storm

252147	6.9	警告	サイバートラスト株式会社 libvirt.org レッドハット	-	複数のレッドハット製品などで利用される libvirt の libvirt.c における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1146	2011-04-27 11:34	2011-02-17	Show	GitHub Exploit DB Packet Storm

252148	5.1	警告	rsync.samba.org レッドハット	-	rsync における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1097	2011-04-27 11:32	2011-03-26	Show	GitHub Exploit DB Packet Storm

252149	6.9	警告	GNOME Project レッドハット	-	GNOME Display Manager におけるファイルの所有権を変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-0727	2011-04-27 11:31	2011-03-28	Show	GitHub Exploit DB Packet Storm

252150	7.5	危険	レッドハット	-	Plone における管理者のアクセス権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-0720	2011-04-27 11:30	2011-02-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257671	7.5	HIGH Network	samlify_project	samlify	An XML Signature Wrapping vulnerability exists in Samlify 2.2.0 and earlier, and in predecessor Express-saml2 which could allow attackers to impersonate arbitrary users.	CWE-91 Blind XPath Injection	CVE-2017-1000452	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

257672	7.8	HIGH Local	fs-git_project	fs-git	fs-git is a file system like api for git repository. The fs-git version 1.0.1 module relies on child_process.exec, however, the buildCommand method used to construct exec strings does not properly sa…	NVD-CWE-noinfo	CVE-2017-1000451	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

257673	8.8	HIGH Network	opencv debian	opencv debian_linux	In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote co…	CWE-190 Integer Overflow or Wraparound	CVE-2017-1000450	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

257674	7.5	HIGH Network	structured-data	structured_data_linter	Structured Data Linter versions 2.4.1 and older are vulnerable to a directory traversal attack in the URL input field resulting in the possibility of disclosing information about the remote host.	CWE-22 Path Traversal	CVE-2017-1000448	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

257675	5.9	MEDIUM Network	linaro	op-tee	Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable a timing attack in the Montgomery parts of libMPA in OP-TEE resulting in a compromised private RSA key.	CWE-200 Information Exposure	CVE-2017-1000413	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

257676	7.5	HIGH Network	linaro	op-tee	Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key.	CWE-200 Information Exposure	CVE-2017-1000412	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

257677	6.5	MEDIUM Network	imagemagick debian canonical	imagemagick debian_linux ubuntu_linux	ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service	CWE-476 NULL Pointer Dereference	CVE-2017-1000445	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

257678	9.8	CRITICAL Network	openhacker_project	openhacker	Eleix Openhacker version 0.1.47 is vulnerable to an SQL injection in the account registration and login component resulting in information disclosure and remote code execution	CWE-89 SQL Injection	CVE-2017-1000444	2024-11-21 12:04	2018-01-3	Show	GitHub Exploit DB Packet Storm

257679	6.1	MEDIUM Network	openhacker_project	openhacker	Eleix Openhacker version 0.1.47 is vulnerable to a XSS vulnerability in the bank transactions component resulting in arbitrary code execution in the browser.	CWE-79 Cross-site Scripting	CVE-2017-1000443	2024-11-21 12:04	2018-01-2	Show	GitHub Exploit DB Packet Storm

257680	5.4	MEDIUM Network	passbolt	passbolt_api	Passbolt API version 1.6.4 and older are vulnerable to a XSS in the url field on the password workspace	CWE-79 Cross-site Scripting	CVE-2017-1000442	2024-11-21 12:04	2018-01-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed