Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252331	4.3	警告	The Tor Project	-	Tor における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-4896	2011-12-27 11:13	2011-12-23	Show	GitHub Exploit DB Packet Storm

252332	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-4895	2011-12-27 11:10	2011-12-23	Show	GitHub Exploit DB Packet Storm

252333	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-4894	2011-12-27 11:06	2011-12-23	Show	GitHub Exploit DB Packet Storm

252334	7.6	危険	The Tor Project	-	Tor におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2778	2011-12-27 11:04	2011-12-16	Show	GitHub Exploit DB Packet Storm

252335	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-2769	2011-12-27 11:01	2011-10-27	Show	GitHub Exploit DB Packet Storm

252336	5.8	警告	The Tor Project	-	Tor における匿名化のためのプロパティを無効にされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2768	2011-12-27 10:54	2011-10-27	Show	GitHub Exploit DB Packet Storm

252337	7.5	危険	PmWiki	-	PmWiki の PageListSort 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4453	2011-12-27 10:46	2011-11-11	Show	GitHub Exploit DB Packet Storm

252338	-	-	The Support Incident Tracker Project	-	Support Incident Tracker に複数の脆弱性	-	CVE-2011-3831 CVE-2011-3833 CVE-2011-5067 CVE-2011-5068 CVE-2011-5069 CVE-2011-5070	2011-12-27 09:42	2011-12-5	Show	GitHub Exploit DB Packet Storm

252339	9.3	危険	Sielco Sistemi	-	Sielco Sistemi Winlog PRO および Winlog Lite におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4037	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

252340	5	警告	Moodle	-	Moodle の calendar/set.php における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4203	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
274851	7.5	HIGH Network	canonical gnu	ubuntu_linux glibc	res_query in libresolv in glibc before 2.25 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash).	CWE-476 NULL Pointer Dereference	CVE-2015-5180	2024-11-21 11:32	2017-06-28	Show	GitHub Exploit DB Packet Storm

274852	8.1	HIGH Network	cornelisnetworks	opa-ff opa-fm	Race conditions in opa-fm before 10.4.0.0.196 and opa-ff before 10.4.0.0.197.	CWE-362 Race Condition	CVE-2015-5232	2024-11-21 11:32	2017-06-8	Show	GitHub Exploit DB Packet Storm

274853	7.5	HIGH Network	apache	cxf_fediz	Application plugins in Apache CXF Fediz before 1.1.3 and 1.2.x before 1.2.1 allow remote attackers to cause a denial of service.	CWE-20 Improper Input Validation	CVE-2015-5175	2024-11-21 11:32	2017-06-8	Show	GitHub Exploit DB Packet Storm

274854	9.6	CRITICAL Network	vmware debian	spring_framework debian_linux	Under some situations, the Spring Framework 4.2.0 to 4.2.1, 4.0.0 to 4.1.7, 3.2.0 to 3.2.14 and older unsupported versions is vulnerable to a Reflected File Download (RFD) attack. The attack involves…	CWE-552 Files or Directories Accessible to External Parties	CVE-2015-5211	2024-11-21 11:32	2017-05-26	Show	GitHub Exploit DB Packet Storm

274855	7.5	HIGH Network	teradata	teradata_express teradata_gateway	Teradata Gateway before 15.00.03.02-1 and 15.10.x before 15.10.00.01-1 and TD Express before 15.00.02.08_Sles10 and 15.00.02.08_Sles11 allow remote attackers to cause a denial of service (database cr…	CWE-20 Improper Input Validation	CVE-2015-5401	2024-11-21 11:32	2017-05-23	Show	GitHub Exploit DB Packet Storm

274856	7.5	HIGH Network	roundcube	roundcube_webmail webmail	Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.	CWE-200 Information Exposure	CVE-2015-5383	2024-11-21 11:32	2017-05-23	Show	GitHub Exploit DB Packet Storm

274857	6.5	MEDIUM Network	roundcube	roundcube_webmail webmail	program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via the _alt parameter when uploading a vCard.	CWE-200 Information Exposure	CVE-2015-5382	2024-11-21 11:32	2017-05-23	Show	GitHub Exploit DB Packet Storm

274858	6.1	MEDIUM Network	roundcube	roundcube_webmail webmail	Cross-site scripting (XSS) vulnerability in program/include/rcmail.php in Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the _mbox parameter t…	CWE-79 Cross-site Scripting	CVE-2015-5381	2024-11-21 11:32	2017-05-23	Show	GitHub Exploit DB Packet Storm

274859	6.1	MEDIUM Network	apache	juddi	After logging into the portal, the logout jsp page redirects the browser back to the login page after. It is feasible for malicious users to redirect the browser to an unintended web page in Apache j…	CWE-601 Open Redirect	CVE-2015-5241	2024-11-21 11:32	2017-05-20	Show	GitHub Exploit DB Packet Storm

274860	5.5	MEDIUM Local	ibm	security_access_manager_for_web_8.0_firmware security_access_manager_for_mobile security_access_manager_9.0_firmware	The IBM Security Access Manager appliance includes configuration files that contain obfuscated plaintext-passwords which authenticated users can access.	CWE-522 Insufficiently Protected Credentials	CVE-2015-5013	2024-11-21 11:32	2017-02-9	Show	GitHub Exploit DB Packet Storm