Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252491	5	警告	Schneider Electric	-	Schneider Electric の複数の製品におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4036	2011-12-5 16:06	2011-10-24	Show	GitHub Exploit DB Packet Storm

252492	4.3	警告	Schneider Electric	-	Schneider Electric の複数の製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4035	2011-12-5 16:05	2011-10-24	Show	GitHub Exploit DB Packet Storm

252493	9.3	危険	Schneider Electric	-	Steema TeeChart ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4034	2011-12-5 16:05	2011-10-24	Show	GitHub Exploit DB Packet Storm

252494	4.3	警告	Schneider Electric	-	Steema TeeChart ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4033	2011-12-5 16:03	2011-10-24	Show	GitHub Exploit DB Packet Storm

252495	5	警告	PrestaShop	-	Prestashop の admin/displayImage.php における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4545	2011-12-5 16:01	2011-12-2	Show	GitHub Exploit DB Packet Storm

252496	4.3	警告	PrestaShop	-	Prestashop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4544	2011-12-5 16:00	2011-12-1	Show	GitHub Exploit DB Packet Storm

252497	4.3	警告	atmail pty ltd	-	AtMail Open におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4540	2011-12-5 15:58	2011-12-1	Show	GitHub Exploit DB Packet Storm

252498	2.6	注意	CloudBees	-	CloudBees Jenkins の Jenkins Core におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4344	2011-12-2 15:50	2011-11-8	Show	GitHub Exploit DB Packet Storm

252499	4.3	警告	シュナイダーエレクトリック株式会社 (旧社名株式会社エーピーシー・ジャパン)	-	PowerChute Business Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4263	2011-12-2 12:01	2011-12-2	Show	GitHub Exploit DB Packet Storm

252500	4.3	警告	Geeklog	-	Geeklog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4647	2011-12-1 16:48	2011-06-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275971	-	namshi	namshi\/jose	NAMSHI \| JOSE 5.0.0 and earlier allows remote attackers to bypass signature verification via crafted tokens in a JSON Web Tokens (JWT) header.	CWE-20 Improper Input Validation	CVE-2015-2964	2024-11-21 11:28	2015-07-5	Show	GitHub Exploit DB Packet Storm

275972	-	debian fuse_project	debian_linux fuse	fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3202	2024-11-21 11:28	2015-07-3	Show	GitHub Exploit DB Packet Storm

275973	-	libreswan	libreswan	libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value …	CWE-20 Improper Input Validation	CVE-2015-3204	2024-11-21 11:28	2015-07-1	Show	GitHub Exploit DB Packet Storm

275974	-	opensuse x.org	opensuse xorg-server	The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients v…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-3164	2024-11-21 11:28	2015-07-1	Show	GitHub Exploit DB Packet Storm

275975	-	droidwareuk	explorer\+_file_manager	Directory traversal vulnerability in the Droidware UK Explorer+ File Manager application before 2.3.3 for Android allows remote attackers to write to arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2015-2966	2024-11-21 11:28	2015-07-1	Show	GitHub Exploit DB Packet Storm

275976	-	oscommerce	oscommerce	Directory traversal vulnerability in osCommerce Japanese 2.2ms1j-R8 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2015-2965	2024-11-21 11:28	2015-06-29	Show	GitHub Exploit DB Packet Storm

275977	-	adobe	bridge photoshop_cc	Adobe Photoshop CC before 16.0 (aka 2015.0.0) and Adobe Bridge CC before 6.11 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-3112	2024-11-21 11:28	2015-06-24	Show	GitHub Exploit DB Packet Storm

275978	-	adobe	bridge photoshop_cc	Heap-based buffer overflow in Adobe Photoshop CC before 16.0 (aka 2015.0.0) and Adobe Bridge CC before 6.11 allows attackers to execute arbitrary code via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-3111	2024-11-21 11:28	2015-06-24	Show	GitHub Exploit DB Packet Storm

275979	-	adobe	photoshop_cc bridge	Integer overflow in Adobe Photoshop CC before 16.0 (aka 2015.0.0) and Adobe Bridge CC before 6.11 allows attackers to execute arbitrary code via unspecified vectors.	CWE-189 Numeric Errors	CVE-2015-3110	2024-11-21 11:28	2015-06-24	Show	GitHub Exploit DB Packet Storm

275980	-	adobe	photoshop_cc	Adobe Photoshop CC before 16.0 (aka 2015.0.0) allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-3109	2024-11-21 11:28	2015-06-24	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed