Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 2:21 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253631	7.5	危険	シトリックス・システムズ	-	Citrix XenCenterWeb の XenServer Resource Kit における PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3760	2010-09-14 15:54	2009-10-22	Show	GitHub Exploit DB Packet Storm

253632	6	警告	シトリックス・システムズ	-	Citrix XenCenterWeb の XenServer Resource Kit におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2009-3759	2010-09-14 15:54	2009-10-22	Show	GitHub Exploit DB Packet Storm

253633	7.5	危険	シトリックス・システムズ	-	Citrix XenCenterWeb の XenServer Resource Kit における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3758	2010-09-14 15:53	2009-10-22	Show	GitHub Exploit DB Packet Storm

253634	4.3	警告	シトリックス・システムズ	-	Citrix XenCenterWeb の XenServer Resource Kit におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3757	2010-09-14 15:53	2009-10-22	Show	GitHub Exploit DB Packet Storm

253635	7.2	危険	シトリックス・システムズ	-	Xen の xend におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5716	2010-09-14 15:53	2008-12-24	Show	GitHub Exploit DB Packet Storm

253636	6	警告	VMware	-	VMware Studio の Virtual Appliance Management Infrastructure における任意のコマンドを実行される脆弱性	CWE-noinfo 情報不足	CVE-2010-2667	2010-09-13 16:05	2010-07-13	Show	GitHub Exploit DB Packet Storm

253637	4.4	警告	VMware	-	VMware Studio における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2427	2010-09-13 16:05	2010-07-13	Show	GitHub Exploit DB Packet Storm

253638	6.8	警告	VMware	-	VMware SpringSource tc Server Runtime における JMX インターフェイスへのアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2010-1454	2010-09-13 16:05	2010-05-13	Show	GitHub Exploit DB Packet Storm

253639	4.3	警告	VMware	-	VMware View におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1143	2010-09-13 16:04	2010-05-5	Show	GitHub Exploit DB Packet Storm

253640	4.9	警告	VMware	-	複数の VMware 製品の hcmon.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3761	2010-09-13 16:04	2008-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
296531	-	hp	managed_printing_administration	Directory traversal vulnerability in the MPAUploader.Uploader.1.UploadFiles method in HP Managed Printing Administration before 2.6.4 allows remote attackers to create arbitrary files via crafted for…	CWE-22 Path Traversal	CVE-2011-4166	2024-11-21 10:31	2011-12-27	Show	GitHub Exploit DB Packet Storm

296532	-	7t	igss	Buffer overflow in 7-Technologies (7T) Interactive Graphical SCADA System (IGSS) 9.0.0.11200 allows remote attackers to cause a denial of service via a crafted packet to TCP port 12401.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4050	2024-11-21 10:31	2011-12-27	Show	GitHub Exploit DB Packet Storm

296533	-	wuzly	wuzly	The administration functionality in Wuzly 2.0 allows remote attackers to bypass authentication by setting the dXNlcm5hbWU cookie.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2011-3839	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

296534	-	wuzly	wuzly	Multiple SQL injection vulnerabilities in Wuzly 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) u parameter to fp.php, (2) epage parameter to newpage.php, (3) epost parameter…	CWE-89 SQL Injection	CVE-2011-3838	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

296535	-	wuzly	wuzly	Directory traversal vulnerability in blog_system/data_functions.php in Wuzly 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the preview parameter to index.php.	CWE-22 Path Traversal	CVE-2011-3837	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

296536	-	wuzly	wuzly	Multiple cross-site request forgery (CSRF) vulnerabilities in Wuzly 2.0 allow remote attackers to hijack the authentication of administrators for requests that (1) add an administrator, (2) perform c…	CWE-352 Origin Validation Error	CVE-2011-3836	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

296537	-	wuzly	wuzly	Multiple cross-site scripting (XSS) vulnerabilities in Wuzly 2.0 allow remote attackers to inject arbitrary web script or HTML via the Referer header to (1) admin/login.php and (2) admin/404.php; the…	CWE-79 Cross-site Scripting	CVE-2011-3835	2024-11-21 10:31	2011-12-25	Show	GitHub Exploit DB Packet Storm

296538	-	pukiwiki	pukiwiki_plus\!	Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in PukiWiki Plus! 1.4.7plus-u2-i18n and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vecto…	CWE-79 Cross-site Scripting	CVE-2011-3990	2024-11-21 10:31	2011-12-23	Show	GitHub Exploit DB Packet Storm

296539	-	sielcosistemi	winlog_lite winlog_pro	Buffer overflow in Sielco Sistemi Winlog PRO before 2.07.09 and Winlog Lite before 2.07.09 allows user-assisted remote attackers to execute arbitrary code via invalid data in unspecified fields of a …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4037	2024-11-21 10:31	2011-12-23	Show	GitHub Exploit DB Packet Storm

296540	-	rsa	securid	Untrusted search path vulnerability in EMC RSA SecurID Software Token 4.1 before 4.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated b…	NVD-CWE-Other	CVE-2011-4141	2024-11-21 10:31	2011-12-17	Show	GitHub Exploit DB Packet Storm