Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253451	4.3	警告	アップル GNU Project ターボリナックスサイバートラスト株式会社レッドハット	-	Mailman における複数のクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0564	2011-06-3 08:55	2008-02-5	Show	GitHub Exploit DB Packet Storm

253452	10	危険	7-Technologies	-	7-Technologies Interactive Graphical SCADA System の IGSSdataServer.exe におけるスタックベースのオーバーフロー脆弱性	CWE-119 バッファエラー	CVE-2011-1567	2011-06-2 09:51	2011-04-5	Show	GitHub Exploit DB Packet Storm

253453	10	危険	7-Technologies	-	7-Technologies Interactive Graphical SCADA System の dc.exe におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1566	2011-06-2 09:50	2011-04-5	Show	GitHub Exploit DB Packet Storm

253454	10	危険	7-Technologies	-	7-Technologies Interactive Graphical SCADA System の IGSSdataServer.exe におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-1565	2011-06-2 09:48	2011-04-5	Show	GitHub Exploit DB Packet Storm

253455	10	危険	RealFlex Technologies	-	DATAC RealFlex RealWin の HMI アプリケーションにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1564	2011-06-2 09:47	2011-04-5	Show	GitHub Exploit DB Packet Storm

253456	10	危険	RealFlex Technologies	-	DATAC RealFlex RealWin の HMI アプリケーションにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1563	2011-06-2 09:46	2011-04-5	Show	GitHub Exploit DB Packet Storm

253457	4.7	警告	レッドハット Richard W.M. Jones	-	virt-v2v および virt-inspector などの製品に使用される libguestfs におけるホスト OS 上のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2010-3851	2011-06-1 10:25	2010-11-4	Show	GitHub Exploit DB Packet Storm

253458	4.4	警告	Todd C. Miller レッドハット	-	sudo の check.c における認証要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0010	2011-05-31 11:41	2011-01-18	Show	GitHub Exploit DB Packet Storm

253459	-	-	SmarterTools Inc.	-	SmarterTools 製ウェブサーバに複数の脆弱性	-	-	2011-05-31 11:40	2011-05-19	Show	GitHub Exploit DB Packet Storm

253460	-	-	OpenSSL Project	-	OpenSSL における ECDSA 秘密鍵が漏えいしてしまう問題	-	-	2011-05-31 11:23	2011-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
275931	-	microsoft	vbscript	vbscript.dll in Microsoft VBScript 5.6 through 5.8, as used with Internet Explorer 6 through 11 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (mem…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2372	2024-11-21 11:27	2015-07-15	Show	GitHub Exploit DB Packet Storm

275932	-	microsoft	windows_server_2008 windows_7 windows_vista windows_2003_server	Untrusted search path vulnerability in Windows Media Device Manager in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users t…	NVD-CWE-Other	CVE-2015-2369	2024-11-21 11:27	2015-07-15	Show	GitHub Exploit DB Packet Storm

275933	-	microsoft	windows_8.1 windows_server_2008 windows_7 windows_rt_8.1 windows_server_2012	Untrusted search path vulnerability in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1 allows local users to gain privileges via a Trojan …	NVD-CWE-Other	CVE-2015-2368	2024-11-21 11:27	2015-07-15	Show	GitHub Exploit DB Packet Storm

275934	-	microsoft	windows_8 windows_8.1 windows_server_2008 windows_server_2012	Hyper-V in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 does not properly initialize guest OS system data structures, which allows guest O…	CWE-254 7PK - Security Features	CVE-2015-2362	2024-11-21 11:27	2015-07-15	Show	GitHub Exploit DB Packet Storm

275935	-	microsoft	windows_8.1 windows_server_2012	Hyper-V in Microsoft Windows 8.1 and Windows Server 2012 R2 does not properly initialize guest OS system data structures, which allows guest OS users to execute arbitrary code on the host OS or cause…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2361	2024-11-21 11:27	2015-07-15	Show	GitHub Exploit DB Packet Storm

275936	-	mozilla oracle novell	firefox_esr firefox solaris suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit	PDF.js in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 enables excessive privileges for internal Workers, which might allow remote attackers to execute arbitrary …	CWE-17 Code	CVE-2015-2743	2024-11-21 11:27	2015-07-6	Show	GitHub Exploit DB Packet Storm

275937	-	oracle mozilla	solaris firefox	Mozilla Firefox before 39.0 on OS X includes native key press information during the logging of crashes, which allows remote attackers to obtain sensitive information by leveraging access to a crash-…	CWE-200 Information Exposure	CVE-2015-2742	2024-11-21 11:27	2015-07-6	Show	GitHub Exploit DB Packet Storm

275938	-	mozilla oracle	firefox solaris firefox_esr	Mozilla Firefox before 39.0, Firefox ESR 38.x before 38.1, and Thunderbird before 38.1 do not enforce key pinning upon encountering an X.509 certificate problem that generates a user dialog, which al…	CWE-310 Cryptographic Issues	CVE-2015-2741	2024-11-21 11:27	2015-07-6	Show	GitHub Exploit DB Packet Storm

275939	-	mozilla canonical novell debian oracle	thunderbird firefox_esr firefox ubuntu_linux suse_linux_enterprise_server debian_linux suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit solaris	Buffer overflow in the nsXMLHttpRequest::AppendToResponseText function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 might allow remot…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2740	2024-11-21 11:27	2015-07-6	Show	GitHub Exploit DB Packet Storm

275940	-	mozilla canonical novell debian oracle	firefox ubuntu_linux suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit debian_linux firefox_esr solaris thunderbird	The ArrayBufferBuilder::append function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which has …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-2739	2024-11-21 11:27	2015-07-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed