Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252281	9.3	危険	Investintech.com Inc.	-	Investintech.com の SlimPDF Reader におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4216	2011-11-10 16:30	2011-11-1	Show	GitHub Exploit DB Packet Storm

252282	7.5	危険	OneOrZero	-	OneOrZero Action & Information Management System における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4215	2011-11-10 16:30	2011-11-1	Show	GitHub Exploit DB Packet Storm

252283	10	危険	OneOrZero	-	OneOrZero Action & Information Management System における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-4214	2011-11-10 16:29	2011-11-1	Show	GitHub Exploit DB Packet Storm

252284	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin のセットアップインターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4064	2011-11-10 16:29	2011-10-17	Show	GitHub Exploit DB Packet Storm

252285	7.8	危険	シスコシステムズ	-	Cisco Unified Communications Manager および Cisco IOS におけるメモリリークの脆弱性	CWE-399 リソース管理の問題	CVE-2011-0941	2011-11-10 16:28	2011-09-28	Show	GitHub Exploit DB Packet Storm

252286	5	警告	Roundcube.net	-	Roundcube Webmail の include/iniset.php におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4078	2011-11-10 16:27	2011-11-3	Show	GitHub Exploit DB Packet Storm

252287	7.5	危険	The PHP Group	-	PHP の is_a 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3379	2011-11-10 16:27	2011-08-22	Show	GitHub Exploit DB Packet Storm

252288	7.5	危険	SIR	-	Gnuboard の bbs/tb.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4066	2011-11-10 16:26	2011-11-4	Show	GitHub Exploit DB Packet Storm

252289	6.3	警告	Conky	-	Conky における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2011-3616	2011-11-10 16:26	2011-11-4	Show	GitHub Exploit DB Packet Storm

252290	6.9	警告	GNOME Project レッドハット	-	GNOME NetworkManager における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2011-3364	2011-11-10 16:24	2011-11-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
302701	-	postfix	postfix	The STARTTLS implementation in Postfix 2.4.x before 2.4.16, 2.5.x before 2.5.12, 2.6.x before 2.6.9, and 2.7.x before 2.7.3 does not properly restrict I/O buffering, which allows man-in-the-middle at…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-0411	2024-11-21 10:23	2011-03-17	Show	GitHub Exploit DB Packet Storm

302702	-	rsa	access_manager_server	Unspecified vulnerability in EMC RSA Access Manager Server 5.5.x, 6.0.x, and 6.1.x allows remote attackers to access resources via unknown vectors.	NVD-CWE-noinfo	CVE-2011-0322	2024-11-21 10:23	2011-03-17	Show	GitHub Exploit DB Packet Storm

302703	-	arthurdejong	nss-pam-ldapd	nslcd/pam.c in the nss-pam-ldapd 0.8.0 PAM module returns a success code when a user is not found in LDAP, which allows remote attackers to bypass authentication.	CWE-287 Improper Authentication	CVE-2011-0438	2024-11-21 10:23	2011-03-16	Show	GitHub Exploit DB Packet Storm

302704	-	mj2	majordomo_2	The _list_file_get function in lib/Majordomo.pm in Majordomo 2 20110203 and earlier allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ./.../ sequence in th…	CWE-22 Path Traversal	CVE-2011-0063	2024-11-21 10:23	2011-03-16	Show	GitHub Exploit DB Packet Storm

302705	-	zaal	tgt	Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attac…	CWE-399 Resource Management Errors	CVE-2011-0001	2024-11-21 10:23	2011-03-16	Show	GitHub Exploit DB Packet Storm

302706	-	simon_pamies	pywebdav	Multiple SQL injection vulnerabilities in the get_userinfo method in the MySQLAuthHandler class in DAVServer/mysqlauth.py in PyWebDAV before 0.9.4.1 allow remote attackers to execute arbitrary SQL co…	CWE-89 SQL Injection	CVE-2011-0432	2024-11-21 10:23	2011-03-15	Show	GitHub Exploit DB Packet Storm

302707	-	hp	power_manager	Multiple cross-site scripting (XSS) vulnerabilities in HP Power Manager (HPPM) 4.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the logType parameter to Content…	CWE-79 Cross-site Scripting	CVE-2011-0280	2024-11-21 10:23	2011-03-15	Show	GitHub Exploit DB Packet Storm

302708	-	apple	safari webkit	WebKit in Apple Safari before 5.0.4, when the Web Inspector is used, does not properly handle the window.console._inspectorCommandLineAPI property, which allows user-assisted remote attackers to bypa…	CWE-79 Cross-site Scripting	CVE-2011-0169	2024-11-21 10:23	2011-03-12	Show	GitHub Exploit DB Packet Storm

302709	-	apple	safari webkit	The windows functionality in WebKit in Apple Safari before 5.0.4 allows remote attackers to bypass the Same Origin Policy, and force the upload of arbitrary local files from a client computer, via a …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-0167	2024-11-21 10:23	2011-03-12	Show	GitHub Exploit DB Packet Storm

302710	-	apple	safari webkit	The HTML5 drag and drop functionality in WebKit in Apple Safari before 5.0.4 allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information via vectors relate…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-0166	2024-11-21 10:23	2011-03-12	Show	GitHub Exploit DB Packet Storm