Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252211 6.4 警告 Opera Software ASA - Opera の JavaScript エンジンにおける同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4682 2011-12-9 16:03 2011-12-7 Show GitHub Exploit DB Packet Storm
252212 5 警告 Opera Software ASA - Opera における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4681 2011-12-9 16:03 2011-12-7 Show GitHub Exploit DB Packet Storm
252213 7.5 危険 Webmaster-Tips - Joomla! 用 webmaster-tips.net Flash Gallery コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4968 2011-12-9 14:45 2011-11-1 Show GitHub Exploit DB Packet Storm
252214 7.5 危険 BrotherScripts - BrotherScripts Business Directory の articlesdetails.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4969 2011-12-9 14:44 2011-11-1 Show GitHub Exploit DB Packet Storm
252215 7.5 危険 wikiwebhelp - Wiki Web Help の handlers/getpage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4970 2011-12-9 14:44 2011-11-1 Show GitHub Exploit DB Packet Storm
252216 7.5 危険 YPNinc - YPNinc JokeScript の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4972 2011-12-9 14:43 2011-11-1 Show GitHub Exploit DB Packet Storm
252217 4.3 警告 Sourcefabric - Campsite の検索機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4973 2011-12-9 14:43 2011-11-1 Show GitHub Exploit DB Packet Storm
252218 7.5 危険 BrotherScripts - Auto Dealer の info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4974 2011-12-9 14:42 2011-11-1 Show GitHub Exploit DB Packet Storm
252219 7.5 危険 Techjoomla - Joomla! 用の Techjoomla SocialAds における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4975 2011-12-9 14:41 2011-11-1 Show GitHub Exploit DB Packet Storm
252220 4.3 警告 MetInfo - MetInfo の search/search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4976 2011-12-9 14:40 2011-11-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
258671 7.1 HIGH
Local 		linux linux_kernel The prepare_vmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the "CR8-load exiting" and "CR8-store exiting" L0 vmcs02 controls exist in cases where L1 omi… NVD-CWE-noinfo
CVE-2017-12154 2024-11-21 12:08 2017-09-26 Show GitHub Exploit DB Packet Storm
258672 9.8 CRITICAL
Network 		pureftpd
fedoraproject 		pure-ftpd
fedora 		Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was vulnerable to packaging error due to which the original configuration was ignored after update and service started running with defau… NVD-CWE-noinfo
CVE-2017-12170 2024-11-21 12:08 2017-09-22 Show GitHub Exploit DB Packet Storm
258673 4.4 MEDIUM
Local 		linux
debian
canonical 		linux_kernel
debian_linux
ubuntu_linux 		A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are … CWE-476
 NULL Pointer Dereference 		CVE-2017-12153 2024-11-21 12:08 2017-09-22 Show GitHub Exploit DB Packet Storm
258674 6.0 MEDIUM
Local 		linux linux_kernel The access_pmu_evcntr function in arch/arm64/kvm/sys_regs.c in the Linux kernel before 4.8.11 allows privileged KVM guest OS users to cause a denial of service (assertion failure and host OS crash) b… - CVE-2017-12168 2024-11-21 12:08 2017-09-20 Show GitHub Exploit DB Packet Storm
258675 4.3 MEDIUM
Network 		moodle moodle In Moodle 3.x, various course reports allow teachers to view details about users in the groups they can't access. CWE-200
Information Exposure 		CVE-2017-12157 2024-11-21 12:08 2017-09-18 Show GitHub Exploit DB Packet Storm
258676 6.1 MEDIUM
Network 		moodle moodle Moodle 3.x has XSS in the contact form on the "non-respondents" page in non-anonymous feedback. CWE-79
Cross-site Scripting 		CVE-2017-12156 2024-11-21 12:08 2017-09-18 Show GitHub Exploit DB Packet Storm
258677 7.5 HIGH
Network 		microsoft edge Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Microsoft E… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11766 2024-11-21 12:08 2017-09-13 Show GitHub Exploit DB Packet Storm
258678 7.5 HIGH
Network 		microsoft edge Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that the Microsoft Edge scri… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11764 2024-11-21 12:08 2017-09-13 Show GitHub Exploit DB Packet Storm
258679 5.3 MEDIUM
Network 		microsoft exchange_server Microsoft Exchange Server 2013 and Microsoft Exchange Server 2016 allow an input sanitization issue with Microsoft Exchange that could potentially result in unintended Information Disclosure, aka "Mi… CWE-200
Information Exposure 		CVE-2017-11761 2024-11-21 12:08 2017-09-13 Show GitHub Exploit DB Packet Storm
258680 7.0 HIGH
Local 		linux linux_kernel The driver_override implementation in drivers/base/platform.c in the Linux kernel before 4.12.1 allows local users to gain privileges by leveraging a race condition between a read operation and a sto… CWE-362
Race Condition 		CVE-2017-12146 2024-11-21 12:08 2017-09-9 Show GitHub Exploit DB Packet Storm