Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252401	7.5	危険	RADVISION	-	RADVISION iVIEW Suite における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-1328	2011-05-19 12:01	2011-05-19	Show	GitHub Exploit DB Packet Storm

252402	10	危険	シスコシステムズ	-	Cisco IOS の PKI 機能における認証を回避される脆弱性	CWE-310 暗号の問題	CVE-2011-0935	2011-05-19 11:10	2011-04-14	Show	GitHub Exploit DB Packet Storm

252403	7.2	危険	IBM	-	IBM Lotus Domino のサーバコンソールにおける重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2011-1520	2011-05-19 11:08	2011-03-25	Show	GitHub Exploit DB Packet Storm

252404	10	危険	IBM	-	IBM Lotus Domino のリモートコンソールにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-1519	2011-05-19 11:06	2011-03-25	Show	GitHub Exploit DB Packet Storm

252405	4.3	警告	Apache Software Foundation Steinar H. Gunderson	-	Steinar H. Gunderson mpm-itk Multi-Processing Module における権限を取得される脆弱性	CWE-16 環境設定	CVE-2011-1176	2011-05-19 11:04	2011-03-29	Show	GitHub Exploit DB Packet Storm

252406	4.9	警告	IBM Apache Software Foundation アップルサイバートラスト株式会社ヒューレット・パッカードターボリナックスオラクルレッドハット	-	Apache HTTP Server における AllowOverride ディレクティブの処理に関する権限昇格の脆弱性	CWE-16 環境設定	CVE-2009-1195	2011-05-19 09:46	2009-05-28	Show	GitHub Exploit DB Packet Storm

252407	4.3	警告	KDE project レッドハット	-	KDE SC の Konqueror 内にある KHTMLPart::htmlError 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1168	2011-05-18 18:30	2011-04-21	Show	GitHub Exploit DB Packet Storm

252408	4.3	警告	KDE project レッドハット	-	kdelibs の kio/kio/tcpslavebase.cpp における任意の SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2011-1094	2011-05-18 18:26	2011-04-21	Show	GitHub Exploit DB Packet Storm

252409	5.8	警告	KDE project レッドハット	-	KDE SC の KGet 内にある KGetMetalink::File::isValidNameAttr 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1586	2011-05-18 18:25	2011-04-21	Show	GitHub Exploit DB Packet Storm

252410	9.3	危険	アドビシステムズ	-	複数の Adobe 製品の CoolType ライブラリにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0610	2011-05-18 18:24	2011-04-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258231	6.1	MEDIUM Network	mapbox	mapbox.js	Mapbox.js versions 1.x prior to 1.6.6 and 2.x prior to 2.2.4 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON name and map share control	CWE-79 Cross-site Scripting	CVE-2017-1000043	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258232	6.1	MEDIUM Network	mapbox_project	mapbox	Mapbox.js versions 1.x prior to 1.6.5 and 2.x prior to 2.1.7 are vulnerable to a cross-site-scripting attack in certain uncommon usage scenarios via TileJSON Name.	CWE-79 Cross-site Scripting	CVE-2017-1000042	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258233	9.8	CRITICAL Network	framasoft	framadate	Framadate version 1.0 is vulnerable to Formula Injection in the CSV Export resulting possible Information Disclosure and Code Execution	CWE-20 Improper Input Validation	CVE-2017-1000039	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258234	6.1	MEDIUM Network	relevanssi	relevanssi	WordPress plugin Relevanssi version 3.5.7.1 is vulnerable to stored XSS resulting in attacker being able to execute JavaScript on the affected site	CWE-79 Cross-site Scripting	CVE-2017-1000038	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258235	9.8	CRITICAL Network	rvm_project	rvm	RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD…	NVD-CWE-noinfo	CVE-2017-1000037	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258236	6.1	MEDIUM Network	tt-rss	tiny_tiny_rss	Tiny Tiny RSS before 829d478f is vulnerable to XSS window.opener attack	CWE-79 Cross-site Scripting	CVE-2017-1000035	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258237	8.1	HIGH Network	akka	akka	Akka versions <=2.4.16 and 2.5-M1 are vulnerable to a java deserialization attack in its Remoting component resulting in remote code execution in the context of the ActorSystem.	CWE-502 Deserialization of Untrusted Data	CVE-2017-1000034	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258238	6.1	MEDIUM Network	vospari_forms_project	vospari_forms	Wordpress Plugin Vospari Forms version < 1.4 is vulnerable to a reflected cross site scripting in the form submission resulting in javascript code execution in the context on the current user.	CWE-79 Cross-site Scripting	CVE-2017-1000033	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258239	6.1	MEDIUM Network	cacti	cacti	Cross-Site scripting (XSS) vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parent_id parameter to tree.php and drp_action parameter to data_sourc…	CWE-79 Cross-site Scripting	CVE-2017-1000032	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

258240	8.8	HIGH Network	cacti	cacti	SQL injection vulnerability in graph_templates_inputs.php in Cacti 0.8.8b allows remote attackers to execute arbitrary SQL commands via the graph_template_input_id and graph_template_id parameters.	CWE-89 SQL Injection	CVE-2017-1000031	2024-11-21 12:04	2017-07-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed