Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252291	3.6	注意	pureftpd	-	pure-FTPd のディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-3171	2011-11-10 16:24	2011-11-4	Show	GitHub Exploit DB Packet Storm

252292	6.8	警告	ヒューレット・パッカード	-	HP-UX Containers における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-3164	2011-11-10 16:23	2011-10-26	Show	GitHub Exploit DB Packet Storm

252293	7.5	危険	e107.org	-	e107 CMS の install_.php における任意の PHP コードを挿入される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-1513	2011-11-10 16:23	2011-11-4	Show	GitHub Exploit DB Packet Storm

252294	7.5	危険	Deon George	-	phpLDAPadmin の lib/functions.php 内の masort 関数における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4075	2011-11-9 16:42	2011-11-2	Show	GitHub Exploit DB Packet Storm

252295	4.3	警告	Deon George	-	phpLDAPadmin の cmd.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4074	2011-11-9 16:42	2011-11-2	Show	GitHub Exploit DB Packet Storm

252296	6.4	警告	ヒューレット・パッカード	-	HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-3167	2011-11-9 16:38	2011-11-1	Show	GitHub Exploit DB Packet Storm

252297	6.4	警告	ヒューレット・パッカード	-	HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-3166	2011-11-9 16:38	2011-11-1	Show	GitHub Exploit DB Packet Storm

252298	6.4	警告	ヒューレット・パッカード	-	HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-3165	2011-11-9 16:37	2011-11-1	Show	GitHub Exploit DB Packet Storm

252299	4.3	警告	株式会社アークウェブ	-	A-Form PC および PC/Mobile におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4274	2011-11-9 16:34	2011-09-30	Show	GitHub Exploit DB Packet Storm

252300	9.3	危険	シスコシステムズ	-	Cisco Small Business におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4005	2011-11-9 16:32	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247231	7.3	HIGH Network	ceragon	fiberair_ip-10_firmware	Ceragon FibeAir IP-10 wireless radios through 7.2.0 have a default password of mateidu for the mateidu account (a hidden user account established by the vendor). This account can be accessed via both…	CWE-1188 Insecure Default Initialization of Resource	CVE-2017-9137	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247232	7.5	HIGH Network	mimosa	backhaul_radios client_radios	An issue was discovered on Mimosa Client Radios before 2.2.3. In the device's web interface, there is a page that allows an attacker to use an unsanitized GET parameter to download files from the dev…	CWE-327 CWE-522 CWE-732 Use of a Broken or Risky Cryptographic Algorithm Insufficiently Protected Credentials Incorrect Permission Assignment for Critical Resource	CVE-2017-9136	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247233	7.5	HIGH Network	mimosa	backhaul_radios client_radios	A hard-coded credentials issue was discovered on Mimosa Client Radios before 2.2.3, Mimosa Backhaul Radios before 2.2.3, and Mimosa Access Points before 2.2.3. These devices run Mosquitto, a lightwei…	CWE-798 Use of Hard-coded Credentials	CVE-2017-9132	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247234	6.5	MEDIUM Network	openexr	openexr	In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash.	NVD-CWE-noinfo	CVE-2017-9114	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247235	8.8	HIGH Network	openexr	openexr	In OpenEXR 2.2.0, an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp could cause the application to crash or execute arbitrary code.	NVD-CWE-noinfo	CVE-2017-9113	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247236	6.5	MEDIUM Network	openexr	openexr	In OpenEXR 2.2.0, an invalid read of size 1 in the getBits function in ImfHuf.cpp could cause the application to crash.	NVD-CWE-noinfo	CVE-2017-9112	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247237	8.8	HIGH Network	openexr	openexr	In OpenEXR 2.2.0, an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h could cause the application to crash or execute arbitrary code.	NVD-CWE-noinfo	CVE-2017-9111	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247238	6.5	MEDIUM Network	openexr	openexr	In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash.	NVD-CWE-noinfo	CVE-2017-9110	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247239	9.8	CRITICAL Network	playsms	playsms	import.php (aka the Phonebook import feature) in PlaySMS 1.4 allows remote code execution via vectors involving the User-Agent HTTP header and PHP code in the name of a file.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-9101	2024-11-21 12:35	2017-05-22	Show	GitHub Exploit DB Packet Storm

247240	7.3	HIGH Local	pmail	pegasus	winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbi…	CWE-20 Improper Input Validation	CVE-2017-9046	2024-11-21 12:35	2017-05-21	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed