Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252781	4.3	警告	IBM	-	IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0779	2010-09-29 16:00	2010-06-18	Show	GitHub Exploit DB Packet Storm

252782	4.3	警告	IBM	-	IBM HTTP Server の mod_ibm_ssl におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2327	2010-09-29 15:59	2010-03-18	Show	GitHub Exploit DB Packet Storm

252783	6.9	警告	アップル	-	Windows 上で稼働する Apple Safari における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1805	2010-09-28 14:46	2010-09-7	Show	GitHub Exploit DB Packet Storm

252784	4.3	警告	Zope Foundation	-	Zope の ZServer におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-3198	2010-09-28 14:46	2010-09-1	Show	GitHub Exploit DB Packet Storm

252785	-	-	Blackboard, Inc.	-	Blackboard Transact データベースに情報漏えいの脆弱性	-	-	2010-09-28 14:46	2010-09-2	Show	GitHub Exploit DB Packet Storm

252786	6.8	警告	w3m project ターボリナックスサイバートラスト株式会社レッドハット	-	w3m のistream.c における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性	CWE-20 不適切な入力確認	CVE-2010-2074	2010-09-27 16:24	2010-06-16	Show	GitHub Exploit DB Packet Storm

252787	6.8	警告	レッドハットサイバートラスト株式会社ターボリナックス OpenLDAP Foundation	-	OpenLDAP における任意の SSL サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-3767	2010-09-27 16:23	2009-10-23	Show	GitHub Exploit DB Packet Storm

252788	4.3	警告	Opera Software ASA	-	Opera におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3021	2010-09-27 16:21	2010-08-12	Show	GitHub Exploit DB Packet Storm

252789	5	警告	Opera Software ASA	-	Opera の news-feed プレビュー機能における任意のフィードの購読を強制される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3020	2010-09-27 16:21	2010-08-12	Show	GitHub Exploit DB Packet Storm

252790	9.3	危険	Opera Software ASA	-	Opera におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3019	2010-09-27 16:21	2010-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
297511	6.1	MEDIUM Network	s9y	serendipity	Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code via plugins/ExtendedFileManager/backend.php.	CWE-79 Cross-site Scripting	CVE-2011-1133	2024-11-21 10:25	2019-11-6	Show	GitHub Exploit DB Packet Storm

297512	-		novell	suse_lifecycle_management_server	SUSE Lifecycle Management Server before 1.1 uses world readable postgres credentials, which allows local users to obtain sensitive information via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-0993	2024-11-21 10:25	2014-04-17	Show	GitHub Exploit DB Packet Storm

297513	-		xen	xen	Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a denial of service (host crash) by specifying user mode execution without user-mode pagetables.	CWE-20 Improper Input Validation	CVE-2011-1166	2024-11-21 10:25	2014-01-8	Show	GitHub Exploit DB Packet Storm

297514	9.8	CRITICAL Network	linux	linux_kernel	Multiple stack-based buffer overflows in the iriap_getvaluebyclass_indication function in net/irda/iriap.c in the Linux kernel before 2.6.39 allow remote attackers to cause a denial of service (memor…	CWE-787 Out-of-bounds Write	CVE-2011-1180	2024-11-21 10:25	2013-06-8	Show	GitHub Exploit DB Packet Storm

297515	-		david_king	vino	Vino, possibly before 3.2, does not properly document that it opens ports in UPnP routers when the "Configure network to automatically accept connections" setting is enabled, which might make it easi…	NVD-CWE-Other	CVE-2011-1165	2024-11-21 10:25	2013-03-13	Show	GitHub Exploit DB Packet Storm

297516	-		david_king	vino	Vino before 2.99.4 can connect external networks contrary to the statement in the vino-preferences dialog box, which might make it easier for remote attackers to perform attacks.	CWE-16 Configuration	CVE-2011-1164	2024-11-21 10:25	2013-03-13	Show	GitHub Exploit DB Packet Storm

297517	-		linux redhat	linux_kernel enterprise_linux_server enterprise_linux_workstation enterprise_linux enterprise_linux_desktop enterprise_linux_eus enterprise_linux_aus	kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a sigqueueinfo system call.	NVD-CWE-noinfo	CVE-2011-1182	2024-11-21 10:25	2013-03-1	Show	GitHub Exploit DB Packet Storm

297518	-		linux	linux_kernel	The dev_load function in net/core/dev.c in the Linux kernel before 2.6.38 allows local users to bypass an intended CAP_SYS_MODULE capability requirement and load arbitrary modules by leveraging the C…	NVD-CWE-noinfo	CVE-2011-1019	2024-11-21 10:25	2013-03-1	Show	GitHub Exploit DB Packet Storm

297519	-		redhat	jboss_enterprise_portal_platform	The W3C XML Encryption Standard, as used in the JBoss Web Services (JBossWS) component in JBoss Enterprise Portal Platform before 5.2.2 and other products, when using block ciphers in cipher-block ch…	CWE-310 Cryptographic Issues	CVE-2011-1096	2024-11-21 10:25	2012-11-24	Show	GitHub Exploit DB Packet Storm

297520	-		linux	linux_kernel	The tpm_open function in drivers/char/tpm/tpm.c in the Linux kernel before 2.6.39 does not initialize a certain buffer, which allows local users to obtain potentially sensitive information from kerne…	CWE-200 Information Exposure	CVE-2011-1160	2024-11-21 10:25	2012-06-22	Show	GitHub Exploit DB Packet Storm