Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252171	9.3	危険	シスコシステムズ	-	Cisco WebEx WRF Player の atas32.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2878	2011-06-17 11:23	2009-12-16	Show	GitHub Exploit DB Packet Storm

252172	9.3	危険	シスコシステムズ	-	Cisco WebEx WRF Player の ataudio.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2877	2011-06-17 11:18	2009-12-16	Show	GitHub Exploit DB Packet Storm

252173	6.3	警告	VMware	-	複数の VMware 製品の HGFS におけるゲスト OS 上の任意のファイルを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2145	2011-06-17 10:59	2011-06-2	Show	GitHub Exploit DB Packet Storm

252174	6.9	警告	VMware	-	複数の VMware 製品の HGFS におけるゲスト OS 上の権限を取得される脆弱性	CWE-362 競合状態	CVE-2011-1787	2011-06-17 10:58	2011-06-2	Show	GitHub Exploit DB Packet Storm

252175	2.1	注意	VMware	-	複数の Vmware 製品の HGFS におけるホスト OS 上のファイルなどの存在有無を特定される脆弱性	CWE-200 情報漏えい	CVE-2011-2146	2011-06-17 10:56	2011-06-2	Show	GitHub Exploit DB Packet Storm

252176	4.3	警告	アドビシステムズレッドハット	-	Adobe Flash Player におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2107	2011-06-17 10:54	2011-06-5	Show	GitHub Exploit DB Packet Storm

252177	-	-	Rockwell Automation	-	RSLinx Classic EDS Hardware Installation Tool にバッファオーバーフローの脆弱性	-	-	2011-06-17 10:51	2011-05-31	Show	GitHub Exploit DB Packet Storm

252178	9.3	危険	ジャストシステム	-	一太郎シリーズにおける任意のコードが実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-1331	2011-06-16 12:03	2011-06-16	Show	GitHub Exploit DB Packet Storm

252179	6.5	警告	IBM	-	IBM DB2 における non-DDL ステートメントを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1846	2011-06-16 11:21	2011-04-26	Show	GitHub Exploit DB Packet Storm

252180	9.3	危険	シスコシステムズ	-	Cisco WebEx WRF Player の atas32.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2875	2011-06-16 10:38	2009-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
286951	-	xymon	xymon	Directory traversal vulnerability in the trend-data daemon (xymond_rrd) in Xymon 4.x before 4.3.12 allows remote attackers to delete arbitrary files via a .. (dot dot) in the host name in a "drophost…	CWE-22 Path Traversal	CVE-2013-4173	2024-11-21 10:55	2013-10-12	Show	GitHub Exploit DB Packet Storm

286952	-	cmsmadesimple	cms_made_simple	Cross-site scripting (XSS) vulnerability in CMS Made Simple (CMSMS) before 1.11.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-4167	2024-11-21 10:55	2013-10-12	Show	GitHub Exploit DB Packet Storm

286953	-	mediawiki	mediawiki	Cross-site request forgery (CSRF) vulnerability in api/ApiQueryCheckUser.php in the CheckUser extension for MediaWiki, possibly Checkuser before 2.3, allows remote attackers to hijack the authenticat…	CWE-352 Origin Validation Error	CVE-2013-4306	2024-11-21 10:55	2013-10-12	Show	GitHub Exploit DB Packet Storm

286954	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in contrib/example.php in the SyntaxHighlight GeSHi extension for MediaWiki, possibly as downloaded before September 2013, allows remote attackers to inject a…	CWE-79 Cross-site Scripting	CVE-2013-4305	2024-11-21 10:55	2013-10-12	Show	GitHub Exploit DB Packet Storm

286955	-	x	x.org_x11	Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon …	CWE-399 Resource Management Errors	CVE-2013-4396	2024-11-21 10:55	2013-10-10	Show	GitHub Exploit DB Packet Storm

286956	-	linux	linux_kernel	net/ipv6/ip6_output.c in the Linux kernel through 3.11.4 does not properly determine the need for UDP Fragmentation Offload (UFO) processing of small packets after the UFO queueing of a large packet,…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4387	2024-11-21 10:55	2013-10-10	Show	GitHub Exploit DB Packet Storm

286957	-	linux fedoraproject redhat	linux_kernel fedora enterprise_linux enterprise_mrg	Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms…	CWE-189 Numeric Errors	CVE-2013-4345	2024-11-21 10:55	2013-10-10	Show	GitHub Exploit DB Packet Storm

286958	-	gnupg	gnupg	GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass int…	CWE-310 Cryptographic Issues	CVE-2013-4351	2024-11-21 10:55	2013-10-10	Show	GitHub Exploit DB Packet Storm

286959	-	xinetd redhat	xinetd enterprise_linux	xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by l…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4342	2024-11-21 10:55	2013-10-10	Show	GitHub Exploit DB Packet Storm

286960	-	restlet	restlet	The default configuration of the ObjectRepresentation class in Restlet before 2.1.4 deserializes objects from untrusted sources, which allows remote attackers to execute arbitrary Java code via a ser…	CWE-502 Deserialization of Untrusted Data	CVE-2013-4271	2024-11-21 10:55	2013-10-10	Show	GitHub Exploit DB Packet Storm