Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252481	7.5	危険	osCommerce	-	osCommerce における複数のディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4543	2011-12-6 16:33	2011-12-5	Show	GitHub Exploit DB Packet Storm

252482	7.5	危険	Zabbix	-	Zabbix の popup.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4674	2011-12-6 16:27	2011-11-24	Show	GitHub Exploit DB Packet Storm

252483	7.5	危険	Automattic Inc.	-	WordPress 用 Jetpack プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4673	2011-12-6 16:26	2011-12-2	Show	GitHub Exploit DB Packet Storm

252484	7.5	危険	Valid	-	Valid tiny-erp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4672	2011-12-6 16:25	2011-12-2	Show	GitHub Exploit DB Packet Storm

252485	7.5	危険	AdRotate Plugin	-	WordPress 用 AdRotate プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4671	2011-12-6 16:24	2011-12-2	Show	GitHub Exploit DB Packet Storm

252486	10	危険	Iron Mountain	-	Iron Mountain Connected Backup の Agent service における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-2397	2011-12-6 16:22	2011-12-5	Show	GitHub Exploit DB Packet Storm

252487	6.4	警告	Widelands	-	Widelands の io/filesystem/filesystem.cc におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1932	2011-12-6 16:22	2011-12-5	Show	GitHub Exploit DB Packet Storm

252488	4.3	警告	Etomite Project	-	Etomite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4264	2011-12-6 12:01	2011-12-6	Show	GitHub Exploit DB Packet Storm

252489	7.5	危険	jonkemp	-	WordPress 用 WordPress Users プラグインの wp-users.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-4669	2011-12-5 16:08	2011-12-2	Show	GitHub Exploit DB Packet Storm

252490	7.5	危険	IBM	-	IBM Tivoli Netcool/Reporter における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4668	2011-12-5 16:07	2011-12-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258871	4.3	MEDIUM Network	microsoft	edge	Microsoft Edge in Microsoft Windows 10 1703, 1709 and Windows Server, version 1709 allows an attacker to obtain information to further compromise the user's system, due to how Microsoft Edge handles …	CWE-200 Information Exposure	CVE-2017-11844	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258872	5.5	MEDIUM Local	microsoft	windows_7 windows_server_2008	Microsoft graphics in Windows 7 SP1 and Windows Server 2008 SP2 and R2 SP1 allows an attacker to potentially read data that was not intended to be disclosed due to the way that the Microsoft Windows …	CWE-200 Information Exposure	CVE-2017-11835	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258873	7.5	HIGH Network	microsoft	chakracore internet_explorer edge	ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Microsoft Edge and Internet Explorer in Wi…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11846	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258874	7.5	HIGH Network	microsoft	chakracore internet_explorer edge	ChakraCore and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Window…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11843	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258875	4.7	MEDIUM Local	microsoft	windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server	Windows kernel in Windows 8.1 and RT 8.1, Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows an attacker to log in and run a…	CWE-200 Information Exposure	CVE-2017-11842	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258876	7.5	HIGH Network	microsoft	chakracore edge	ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11841	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258877	7.5	HIGH Network	microsoft	chakracore edge	ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11840	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258878	3.1	LOW Network	microsoft	edge	Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to determine the origin of all webpages in the affected br…	CWE-200 Information Exposure	CVE-2017-11833	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258879	4.7	MEDIUM Local	microsoft	windows_7 windows_server_2008 windows_server_2012	The Microsoft Windows embedded OpenType (EOT) font engine in Windows 7 SP1, Windows Server 2008 SP2 and 2008 R2 SP1, and Windows Server 2012 allows an attacker to potentially read data that was not i…	CWE-200 Information Exposure	CVE-2017-11832	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm

258880	5.3	MEDIUM Local	microsoft	windows_10 windows_server_2016 windows_server	Device Guard in Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows an attacker to make an unsigned file appear to be signed, due to a security f…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2017-11830	2024-11-21 12:08	2017-11-15	Show	GitHub Exploit DB Packet Storm