Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252931	4.3	警告	VMware	-	複数の VMware 製品の WebAccess におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2277	2010-07-14 17:27	2010-03-29	Show	GitHub Exploit DB Packet Storm

252932	6.9	警告	VMware	-	複数の VMware 製品の USB サービスにおける権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1140	2010-07-14 17:27	2010-04-9	Show	GitHub Exploit DB Packet Storm

252933	9.3	危険	シマンテック	-	Symantec Workspace Streaming (旧 Symantec AppStream) に脆弱性	CWE-287 不適切な認証	CVE-2008-4389	2010-07-14 17:26	2010-06-22	Show	GitHub Exploit DB Packet Storm

252934	5.8	警告	アップル	-	Apple iOS の設定アプリケーションにおけるユーザを追跡可能な脆弱性	CWE-DesignError	CVE-2010-1756	2010-07-14 17:26	2010-06-22	Show	GitHub Exploit DB Packet Storm

252935	4.3	警告	アップル	-	Apple iOS の Safari におけるリモートの Web サーバがユーザを追跡可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1755	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

252936	1.9	注意	アップル	-	Apple iOS のパスコードロックにおける任意のデータにアクセスされる脆弱性	CWE-362 競合状態	CVE-2010-1775	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

252937	6.9	警告	アップル	-	Apple iOS のパスコードロックにおけるパスコード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1754	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

252938	6.8	警告	アップル	-	Apple iOS の ImageIO における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1753	2010-07-14 17:25	2010-06-22	Show	GitHub Exploit DB Packet Storm

252939	5	警告	アップル	-	Apple iOS の Application Sandbox におけるロケーション情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1751	2010-07-14 17:24	2010-06-22	Show	GitHub Exploit DB Packet Storm

252940	9.3	危険	アップル	-	Apple Safari の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1774	2010-07-14 16:44	2010-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294341	9.8	CRITICAL Network	polarssl	polarssl	PolarSSL versions prior to v1.1 use the HAVEGE random number generation algorithm. At its heart, this uses timing information based on the processor's high resolution timer (the RDTSC instruction). T…	-	CVE-2011-4574	2024-11-21 10:32	2021-10-27	Show	GitHub Exploit DB Packet Storm

294342	5.3	MEDIUM Network	lexmark	x860_firmware x862_firmware x864_firmware x734_firmware x736_firmware x738_firmware x651_firmware x652_firmware x654_firmware x656_firmware x658_firmware x543_firmwar…	Lexmark X, W, T, E, and C devices before 2012-02-09 allow attackers to obtain sensitive information by reading passwords within exported settings.	CWE-200 Information Exposure	CVE-2011-4538	2024-11-21 10:32	2020-03-10	Show	GitHub Exploit DB Packet Storm

294343	7.8	HIGH Local	shaman_project	shaman	Shaman 1.0.9: Users can add the line askforpwd=false to his shaman.conf file, without entering the root password in shaman. The next time shaman is run, root privileges are granted despite the fact t…	CWE-287 Improper Authentication	CVE-2011-4338	2024-11-21 10:32	2020-02-13	Show	GitHub Exploit DB Packet Storm

294344	7.5	HIGH Network	cisco	ios	A memory leak vulnerability exists in Cisco IOS before 15.2(1)T due to a memory leak in the HTTP PROXY Server process (aka CSCtu52820), when configured with Cisco ISR Web Security with Cisco ScanSafe…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2011-4661	2024-11-21 10:32	2020-02-13	Show	GitHub Exploit DB Packet Storm

294345	7.2	HIGH Network	tiki	tiki	Tiki 8.2 and earlier allows remote administrators to execute arbitrary PHP code via crafted input to the regexres and regex parameters.	CWE-74 Injection	CVE-2011-4558	2024-11-21 10:32	2020-01-28	Show	GitHub Exploit DB Packet Storm

294346	7.5	HIGH Network	websitebaker	websitebaker	websitebaker prior to and including 2.8.1 has an authentication error in backup module.	CWE-306 Missing Authentication for Critical Function	CVE-2011-4322	2024-11-21 10:32	2020-01-22	Show	GitHub Exploit DB Packet Storm

294347	6.1	MEDIUM Network	tiki	tikiwiki_cms\/groupware	Tiki Wiki CMS Groupware 7.0 has XSS via the GET "ajax" parameter to snarf_ajax.php.	CWE-79 Cross-site Scripting	CVE-2011-4336	2024-11-21 10:32	2020-01-15	Show	GitHub Exploit DB Packet Storm

294348	6.1	MEDIUM Network	caseproof	pretty_link	Pretty-Link WordPress plugin 1.5.2 has XSS	CWE-79 Cross-site Scripting	CVE-2011-4595	2024-11-21 10:32	2020-01-10	Show	GitHub Exploit DB Packet Storm

294349	7.5	HIGH Network	cmsmadesimple	cms_made_simple	The news module in CMSMS before 1.9.4.3 allows remote attackers to corrupt new articles.	CWE-20 Improper Input Validation	CVE-2011-4310	2024-11-21 10:32	2019-11-27	Show	GitHub Exploit DB Packet Storm

294350	6.5	MEDIUM Network	yaws debian	yaws debian_linux	Yaws 1.91 has a directory traversal vulnerability in the way certain URLs are processed. A remote authenticated user could use this flaw to obtain content of arbitrary local files via specially-craft…	CWE-22 Path Traversal	CVE-2011-4350	2024-11-21 10:32	2019-11-26	Show	GitHub Exploit DB Packet Storm