Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252421	6.8	警告	Redback Apache Software Foundation	-	Apache Archiva および Apache Continuum におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3449	2011-06-10 09:53	2010-11-24	Show	GitHub Exploit DB Packet Storm

252422	5	警告	JSecurity Apache Software Foundation	-	Apache Shiro および JSecurity におけるアクセス制限を回避される脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3863	2011-06-10 09:52	2010-11-5	Show	GitHub Exploit DB Packet Storm

252423	4.3	警告	Apache Software Foundation	-	Apache CouchDB の Web 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3854	2011-06-10 09:52	2011-01-28	Show	GitHub Exploit DB Packet Storm

252424	4.3	警告	The Dojo Foundation Apache Software Foundation	-	Apache Struts などで利用される Dojo におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6726	2011-06-10 09:51	2009-04-9	Show	GitHub Exploit DB Packet Storm

252425	4.3	警告	Apache Software Foundation	-	Apache Struts の LookupDispatchAction、DispatchAction および ActionDispatcher におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-1548	2011-06-10 09:50	2006-03-30	Show	GitHub Exploit DB Packet Storm

252426	7.8	危険	Apache Software Foundation	-	Apache Struts (with BeanUtils) の ActionForm におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-1547	2011-06-10 09:50	2006-03-30	Show	GitHub Exploit DB Packet Storm

252427	4.3	警告	Apache Software Foundation レッドハット	-	Apache Struts におけるクロスサイトスクリプティングの脆弱性	-	CVE-2005-3745	2011-06-10 09:49	2005-11-22	Show	GitHub Exploit DB Packet Storm

252428	4.6	警告	Linux レッドハット	-	Linux kernel の bond_select_queue 関数におけるサービス運用妨害 (DoS）の脆弱性	CWE-20 不適切な入力確認	CVE-2011-1581	2011-06-9 10:31	2011-05-18	Show	GitHub Exploit DB Packet Storm

252429	10	危険	Google レッドハット	-	Google Chrome におけるアドレスバーを偽装される脆弱性	CWE-DesignError	CVE-2010-3115	2011-06-9 10:30	2010-08-19	Show	GitHub Exploit DB Packet Storm

252430	10	危険	Google レッドハット	-	Google Chrome の text-editing 実装における脆弱性	CWE-399 リソース管理の問題	CVE-2010-3114	2011-06-9 10:30	2010-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253341	8.1	HIGH Network	gnu	glibc	The malloc function in the GNU C Library (aka glibc or libc6) 2.26 could return a memory block that is too small if an attempt is made to allocate an object whose size is close to SIZE_MAX, potential…	CWE-190 Integer Overflow or Wraparound	CVE-2017-17426	2024-11-21 12:17	2017-12-6	Show	GitHub Exploit DB Packet Storm

253342	8.5	HIGH Network	atlassian	bitbucket_auto_unapprove_plugin	It is possible to bypass the bitbucket auto-unapprove plugin via minimal brute-force because it is relying on asynchronous events on the back-end. This allows an attacker to merge any code into unsus…	CWE-362 Race Condition	CVE-2017-16857	2024-11-21 12:17	2017-12-6	Show	GitHub Exploit DB Packet Storm

253343	6.1	MEDIUM Network	atlassian	confluence	The RSS Feed macro in Atlassian Confluence before version 6.5.2 allows remote attackers to inject arbitrary HTML or JavaScript via cross site scripting (XSS) vulnerabilities in various rss properties…	CWE-79 Cross-site Scripting	CVE-2017-16856	2024-11-21 12:17	2017-12-6	Show	GitHub Exploit DB Packet Storm

253344	7.5	HIGH Network	i2pd getkovri	i2pd kovri	The (1) i2pd before 2.17 and (2) kovri pre-alpha implementations of the I2P routing protocol do not properly handle Garlic DeliveryTypeTunnel packets, which allows remote attackers to obtain sensitiv…	CWE-125 Out-of-bounds Read	CVE-2017-17066	2024-11-21 12:17	2017-12-5	Show	GitHub Exploit DB Packet Storm

253345	9.8	CRITICAL Network	claymore_dual_miner_project	claymore_dual_miner	The remote management interface on the Claymore Dual GPU miner 10.1 allows an unauthenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the request handler. Th…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-16930	2024-11-21 12:17	2017-12-5	Show	GitHub Exploit DB Packet Storm

253346	8.1	HIGH Network	claymore_dual_miner_project	claymore_dual_miner	The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticated directory traversal vulnerability exploited by issuing a specially crafted request, allowing a re…	CWE-119 CWE-22 Incorrect Access of Indexable Resource ('Range Error') Path Traversal	CVE-2017-16929	2024-11-21 12:17	2017-12-5	Show	GitHub Exploit DB Packet Storm

253347	6.1	MEDIUM Network	zkteco	zktime_web	There is a reflected XSS vulnerability in ZKTime Web 2.0.1.12280. The vulnerability exists due to insufficient filtration of user-supplied data in the 'Range' field of the 'Department' module in a Pe…	CWE-79 Cross-site Scripting	CVE-2017-17057	2024-11-21 12:17	2017-12-4	Show	GitHub Exploit DB Packet Storm

253348	8.8	HIGH Network	libav	libav	The ff_free_picture_tables function in libavcodec/mpegpicture.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-17130	2024-11-21 12:17	2017-12-4	Show	GitHub Exploit DB Packet Storm

253349	8.8	HIGH Network	libav	libav	The ff_vc1_mc_4mv_chroma4 function in libavcodec/vc1_mc.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) or possibly have unspecified ot…	CWE-476 NULL Pointer Dereference	CVE-2017-17129	2024-11-21 12:17	2017-12-4	Show	GitHub Exploit DB Packet Storm

253350	6.5	MEDIUM Network	libav	libav	The h264_slice_init function in libavcodec/h264_slice.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-17128	2024-11-21 12:17	2017-12-4	Show	GitHub Exploit DB Packet Storm