Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252151 7.1 危険 マイクロソフト - 複数の Microsoft 製品の JScript および VBScript スクリプトエンジンにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-0031 2011-03-4 15:12 2011-02-8 Show GitHub Exploit DB Packet Storm
252152 9.3 危険 マイクロソフト - Microsoft Visio の ELEMENTS.DLL における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0093 2011-03-4 15:09 2011-02-8 Show GitHub Exploit DB Packet Storm
252153 9.3 危険 マイクロソフト - Microsoft Visio の LZW ストリーム圧縮機能における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0092 2011-03-4 15:06 2011-02-8 Show GitHub Exploit DB Packet Storm
252154 5 警告 マイクロソフト - Windows Server 2003 上で稼働する Microsoft Active Directory におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0040 2011-03-4 15:02 2011-02-8 Show GitHub Exploit DB Packet Storm
252155 9.3 危険 マイクロソフト - 複数の Microsoft 製品の Windows OpenType Compact Font Format ドライバにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0033 2011-03-4 15:00 2011-02-8 Show GitHub Exploit DB Packet Storm
252156 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-0038 2011-03-4 14:53 2011-02-8 Show GitHub Exploit DB Packet Storm
252157 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0036 2011-03-4 14:50 2011-02-8 Show GitHub Exploit DB Packet Storm
252158 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0035 2011-03-4 14:30 2011-02-8 Show GitHub Exploit DB Packet Storm
252159 5 警告 日立 - Hitachi Tuning Manager Software におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2011-03-4 14:24 2011-02-7 Show GitHub Exploit DB Packet Storm
252160 10 危険 IntelliCom Innovation AB - IntelliCom NetBiter NB100 および NB200 プラットフォームに複数の脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-4733 2011-03-4 14:21 2011-02-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257071 7.5 HIGH
Network 		oracle glassfish_server Oracle, GlassFish Server Open Source Edition 3.0.1 (build 22) is vulnerable to Local File Inclusion vulnerability, that makes it possible to include arbitrary files on the server, this vulnerability … CWE-200
Information Exposure 		CVE-2017-1000029 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257072 7.5 HIGH
Network 		oracle glassfish_server Oracle, GlassFish Server Open Source Edition 4.1 is vulnerable to both authenticated and unauthenticated Directory Traversal vulnerability, that can be exploited by issuing a specially crafted HTTP G… CWE-22
Path Traversal 		CVE-2017-1000028 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257073 6.1 MEDIUM
Network 		koozali sme_server Koozali Foundation SME Server versions 8.x, 9.x, 10.x are vulnerable to an open URL redirect vulnerability in the user web login function resulting in unauthorized account access. CWE-601
Open Redirect 		CVE-2017-1000027 2024-11-21 12:04 2017-07-17 Show GitHub Exploit DB Packet Storm
257074 7.5 HIGH
Network 		c-ares_project
c-ares
nodejs 		c-ares
node.js 		The c-ares function `ares_parse_naptr_reply()`, which is used for parsing NAPTR responses, could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was… CWE-200
Information Exposure 		CVE-2017-1000381 2024-11-21 12:04 2017-07-8 Show GitHub Exploit DB Packet Storm
257075 9.8 CRITICAL
Network 		systemd_project systemd systemd v233 and earlier fails to safely parse usernames starting with a numeric digit (e.g. "0day"), running the service in question with root privileges rather than the user intended. CWE-269
 Improper Privilege Management 		CVE-2017-1000082 2024-11-21 12:04 2017-07-8 Show GitHub Exploit DB Packet Storm
257076 7.8 HIGH
Local 		linux linux_kernel The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to more easily manipulate the stack. Lin… NVD-CWE-noinfo
CVE-2017-1000379 2024-11-21 12:04 2017-06-20 Show GitHub Exploit DB Packet Storm
257077 9.8 CRITICAL
Network 		netbsd netbsd The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort() to deterministically recurse N/4 times. This allow… CWE-400
 Uncontrolled Resource Consumption 		CVE-2017-1000378 2024-11-21 12:04 2017-06-20 Show GitHub Exploit DB Packet Storm
257078 5.9 MEDIUM
Local 		linux linux_kernel An issue was discovered in the size of the default stack guard page on PAX Linux (originally from GRSecurity but shipped by other Linux vendors), specifically the default stack guard page is not suff… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-1000377 2024-11-21 12:04 2017-06-20 Show GitHub Exploit DB Packet Storm
257079 9.8 CRITICAL
Network 		netbsd netbsd NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is enabled, this allows attackers to more easily manipulate memory leading to arbitrary code execution. This a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-1000375 2024-11-21 12:04 2017-06-20 Show GitHub Exploit DB Packet Storm
257080 7.0 HIGH
Local 		redhat
debian
libffi_project
oracle 		enterprise_virtualization_server
enterprise_linux
openshift
debian_linux
libffi
peopletools 		libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries. It was… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-1000376 2024-11-21 12:04 2017-06-20 Show GitHub Exploit DB Packet Storm