Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253101 6.8 警告 Django Software Foundation - Django の CSRF 保護メカニズムにおける認証されずに偽造されたリクエストを誘発される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-4140 2011-10-25 16:54 2011-09-9 Show GitHub Exploit DB Packet Storm
253102 5 警告 Django Software Foundation - Django におけるキャッシュポイズニング攻撃を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4139 2011-10-25 16:54 2011-09-9 Show GitHub Exploit DB Packet Storm
253103 5 警告 Django Software Foundation - Django の URLField 実装内にある verify_exists 機能における任意の GET リクエストを誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4138 2011-10-25 16:53 2011-09-9 Show GitHub Exploit DB Packet Storm
253104 5 警告 Django Software Foundation - Django の URLField 実装内にある verify_exists 機能におけるサービス運用妨害 (リソース消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-4137 2011-10-25 16:53 2011-09-9 Show GitHub Exploit DB Packet Storm
253105 5.8 警告 Django Software Foundation - Django の django.contrib.sessions におけるセッションを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4136 2011-10-25 16:52 2011-09-9 Show GitHub Exploit DB Packet Storm
253106 4.3 警告 シスコシステムズ - Cisco TelePresence Video Communication Servers の管理インターフェイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3294 2011-10-25 16:50 2011-10-12 Show GitHub Exploit DB Packet Storm
253107 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3162 2011-10-25 16:50 2011-10-18 Show GitHub Exploit DB Packet Storm
253108 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3161 2011-10-25 16:49 2011-10-18 Show GitHub Exploit DB Packet Storm
253109 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3160 2011-10-25 16:48 2011-10-18 Show GitHub Exploit DB Packet Storm
253110 10 危険 ヒューレット・パッカード - HP Data Protector における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-3159 2011-10-25 16:48 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
275651 - debian
wordpress 		debian_linux
wordpress 		Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored… CWE-79
Cross-site Scripting 		CVE-2015-3440 2024-11-21 11:29 2015-08-3 Show GitHub Exploit DB Packet Storm
275652 - nvidia gpu_driver The NVIDIA GPU driver for FreeBSD R352 before 352.09, 346 before 346.72, R349 before 349.16, R343 before 343.36, R340 before 340.76, R337 before 337.25, R334 before 334.21, R331 before 331.113, and R… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-3625 2024-11-21 11:29 2015-07-18 Show GitHub Exploit DB Packet Storm
275653 - sap enterprise_central_component Untrusted search path vulnerability in SAP Enterprise Central Component (ECC) allows local users to gain privileges via a Trojan horse program. CWE-20
 Improper Input Validation  		CVE-2015-3621 2024-11-21 11:29 2015-07-16 Show GitHub Exploit DB Packet Storm
275654 - sap afaria The Windows client in SAP Afaria 7.0.6398.0 uses weak permissions (Everyone: read and Everyone: write) for the install folder, which allows local users to gain privileges via a Trojan horse XeService… CWE-254
 7PK - Security Features 		CVE-2015-3449 2024-11-21 11:29 2015-07-16 Show GitHub Exploit DB Packet Storm
275655 - xen xen Stack-based buffer overflow in the xl command line utility in Xen 4.1.x through 4.5.x allows local guest administrators to gain privileges via a long configuration argument. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-3259 2024-11-21 11:29 2015-07-16 Show GitHub Exploit DB Packet Storm
275656 - linuxfoundation
debian
canonical 		cups-filters
debian_linux
ubuntu_linux 		Integer overflow in filter/texttopdf.c in texttopdf in cups-filters before 1.0.71 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted line si… CWE-189
Numeric Errors 		CVE-2015-3279 2024-11-21 11:29 2015-07-15 Show GitHub Exploit DB Packet Storm
275657 - debian
canonical
linuxfoundation 		debian_linux
ubuntu_linux
cups-filters 		Heap-based buffer overflow in the WriteProlog function in filter/texttopdf.c in texttopdf in cups-filters before 1.0.70 allows remote attackers to cause a denial of service (crash) or possibly execut… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-3258 2024-11-21 11:29 2015-07-15 Show GitHub Exploit DB Packet Storm
275658 - vmware player
workstation
horizon_view_client 		vmware-vmx.exe in VMware Workstation 7.x through 10.x before 10.0.7 and 11.x before 11.1.1, VMware Player 5.x and 6.x before 6.0.7 and 7.x before 7.1.1, and VMware Horizon Client 5.x local-mode befor… CWE-284
Improper Access Control 		CVE-2015-3650 2024-11-21 11:29 2015-07-11 Show GitHub Exploit DB Packet Storm
275659 - debian
haproxy
canonical
opensuse
suse
redhat 		debian_linux
haproxy
ubuntu_linux
opensuse
openstack_cloud
linux_enterprise_high_availability_extension
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_… 		The buffer_slow_realign function in HAProxy 1.5.x before 1.5.14 and 1.6-dev does not properly realign a buffer that is used for pending outgoing data, which allows remote attackers to obtain sensitiv… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-3281 2024-11-21 11:29 2015-07-7 Show GitHub Exploit DB Packet Storm
275660 - apple iphone_os The WiFi Connectivity feature in Apple iOS before 8.4 allows remote Wi-Fi access points to trigger an automatic association, with an arbitrary security type, by operating with a recognized ESSID with… CWE-254
 7PK - Security Features 		CVE-2015-3728 2024-11-21 11:29 2015-07-3 Show GitHub Exploit DB Packet Storm