Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 2:21 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252481	7.2	危険	マイクロソフト	-	Microsoft Windows XP の Trace Events 機能における権限昇格の脆弱性	CWE-119 バッファエラー	CVE-2011-0045	2011-03-7 14:49	2011-02-8	Show	GitHub Exploit DB Packet Storm

252482	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の Local Security Authority Subsystem Service における権限昇格の脆弱性	CWE-287 不適切な認証	CVE-2011-0039	2011-03-7 14:47	2011-02-8	Show	GitHub Exploit DB Packet Storm

252483	6.8	警告	OTRS プロジェクト	-	OTRS における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2011-0456	2011-03-7 12:02	2011-03-7	Show	GitHub Exploit DB Packet Storm

252484	7.1	危険	マイクロソフト	-	複数の Microsoft 製品の JScript および VBScript スクリプトエンジンにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-0031	2011-03-4 15:12	2011-02-8	Show	GitHub Exploit DB Packet Storm

252485	9.3	危険	マイクロソフト	-	Microsoft Visio の ELEMENTS.DLL における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0093	2011-03-4 15:09	2011-02-8	Show	GitHub Exploit DB Packet Storm

252486	9.3	危険	マイクロソフト	-	Microsoft Visio の LZW ストリーム圧縮機能における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0092	2011-03-4 15:06	2011-02-8	Show	GitHub Exploit DB Packet Storm

252487	5	警告	マイクロソフト	-	Windows Server 2003 上で稼働する Microsoft Active Directory におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0040	2011-03-4 15:02	2011-02-8	Show	GitHub Exploit DB Packet Storm

252488	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の Windows OpenType Compact Font Format ドライバにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0033	2011-03-4 15:00	2011-02-8	Show	GitHub Exploit DB Packet Storm

252489	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 8 における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0038	2011-03-4 14:53	2011-02-8	Show	GitHub Exploit DB Packet Storm

252490	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0036	2011-03-4 14:50	2011-02-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
273861	-	magmi_project	magmi	Multiple cross-site scripting (XSS) vulnerabilities in the MAGMI (aka Magento Mass Importer) plugin for Magento Server allow remote attackers to inject arbitrary web script or HTML via the (1) profil…	CWE-79 Cross-site Scripting	CVE-2015-2068	2024-11-21 11:26	2015-02-25	Show	GitHub Exploit DB Packet Storm

273862	-	magmi_project	magmi	Directory traversal vulnerability in web/ajax_pluginconf.php in the MAGMI (aka Magento Mass Importer) plugin for Magento Server allows remote attackers to read arbitrary files via a .. (dot dot) in t…	CWE-22 Path Traversal	CVE-2015-2067	2024-11-21 11:26	2015-02-25	Show	GitHub Exploit DB Packet Storm

273863	-	dlguard	dlguard	SQL injection vulnerability in DLGuard 4.5 allows remote attackers to execute arbitrary SQL commands via the c parameter to index.php.	CWE-89 SQL Injection	CVE-2015-2066	2024-11-21 11:26	2015-02-25	Show	GitHub Exploit DB Packet Storm

273864	-	apptha	wordpress_video_gallery	SQL injection vulnerability in videogalleryrss.php in the Apptha WordPress Video Gallery (contus-video-gallery) plugin before 2.8 for WordPress allows remote attackers to execute arbitrary SQL comman…	CWE-89 SQL Injection	CVE-2015-2065	2024-11-21 11:26	2015-02-25	Show	GitHub Exploit DB Packet Storm

273865	-	dlguard	dlguard	Multiple cross-site scripting (XSS) vulnerabilities in DLGuard 5, 4.6, and 4.5 allow remote attackers to inject arbitrary web script or HTML via the (1) page, (2) c, or (3) redirect parameter to inde…	CWE-79 Cross-site Scripting	CVE-2015-2064	2024-11-21 11:26	2015-02-25	Show	GitHub Exploit DB Packet Storm

273866	-	openstack	image_registry_and_delivery_service_\(glance\)	OpenStack Image Registry and Delivery Service (Glance) 2014.2 through 2014.2.2 does not properly remove images, which allows remote authenticated users to cause a denial of service (disk consumption)…	CWE-399 Resource Management Errors	CVE-2015-1881	2024-11-21 11:26	2015-02-25	Show	GitHub Exploit DB Packet Storm

273867	-	zhone_technologies	gpon_2520_firmware	Zhone GPON 2520 with firmware R4.0.2.566b allows remote attackers to cause a denial of service via a long string in the oldpassword parameter.	CWE-20 Improper Input Validation	CVE-2015-2055	2024-11-21 11:26	2015-02-24	Show	GitHub Exploit DB Packet Storm

273868	-	sierra_wireless	sierra_wireless_aircard_763s sierra_wireless_aircard_760s sierra_wireless_aircard_762s	CRLF injection vulnerability in export.cfg in the web-based administrative console for Sierra Wireless AirCard 760S, 762S, and 763S allows remote attackers to inject arbitrary headers via CRLF sequen…	NVD-CWE-Other	CVE-2015-2054	2024-11-21 11:26	2015-02-24	Show	GitHub Exploit DB Packet Storm

273869	-	mcafee	mcafee_agent	The log viewer in McAfee Agent (MA) before 4.8.0 Patch 3 and 5.0.0, when the "Accept connections only from the ePO server" option is disabled, allows remote attackers to conduct clickjacking attacks …	CWE-20 Improper Input Validation	CVE-2015-2053	2024-11-21 11:26	2015-02-24	Show	GitHub Exploit DB Packet Storm

273870	-	dlink	dir-645_firmware	Stack-based buffer overflow in the DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary code via a long string in a GetDeviceSettings a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2052	2024-11-21 11:26	2015-02-24	Show	GitHub Exploit DB Packet Storm