Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 2:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253641	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0667	2011-05-6 11:10	2011-04-12	Show	GitHub Exploit DB Packet Storm

253642	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0666	2011-05-6 11:09	2011-04-12	Show	GitHub Exploit DB Packet Storm

253643	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0665	2011-05-6 11:07	2011-04-12	Show	GitHub Exploit DB Packet Storm

253644	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0662	2011-05-6 11:06	2011-04-12	Show	GitHub Exploit DB Packet Storm

253645	9.3	危険	マイクロソフト	-	Microsoft Windows のワードパッドにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0028	2011-05-6 11:03	2011-04-12	Show	GitHub Exploit DB Packet Storm

253646	7.6	危険	マイクロソフト	-	Microsoft Windows の FAX 送付状エディター内にある fxscover.exe における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3974	2011-05-6 11:01	2011-04-12	Show	GitHub Exploit DB Packet Storm

253647	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-0977	2011-05-6 11:00	2011-02-10	Show	GitHub Exploit DB Packet Storm

253648	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0107	2011-05-6 10:59	2011-04-12	Show	GitHub Exploit DB Packet Storm

253649	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0976	2011-05-6 10:58	2011-02-10	Show	GitHub Exploit DB Packet Storm

253650	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0656	2011-05-6 10:57	2011-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
317461	-	apache	http_server	Apache for Win32 before 1.3.24, and 2.0.x before 2.0.34-beta, allows remote attackers to execute arbitrary commands via shell metacharacters (a \| pipe character) provided as arguments to batch (.bat)…	CWE-78 OS Command	CVE-2002-0061	2024-01-27 05:01	2002-03-21	Show	GitHub Exploit DB Packet Storm

317462	-	hypermail_development	hypermail	Hypermail allows remote attackers to execute arbitrary commands on a server supporting SSI via an attachment with a .shtml extension, which is archived on the server and can then be executed by reque…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2001-0901	2024-01-27 05:01	2001-11-19	Show	GitHub Exploit DB Packet Storm

317463	-	apache ncsa	http_server ncsa_httpd	phf CGI program allows remote command execution through shell metacharacters.	CWE-78 OS Command	CVE-1999-0067	2024-01-27 05:00	1996-03-20	Show	GitHub Exploit DB Packet Storm

317464	-	e107	e107	ImageManager in e107 before 0.617 does not properly check the types of uploaded files, which allows remote attackers to execute arbitrary code by uploading a PHP file via the upload parameter to imag…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2004-2262	2024-01-27 04:10	2004-12-31	Show	GitHub Exploit DB Packet Storm

317465	-	yvesglodt	i-man	I-Man 0.9, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by uploading a file attachment with a .php extension.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2005-1868	2024-01-27 04:07	2005-06-9	Show	GitHub Exploit DB Packet Storm

317466	-	yapig	yapig	upload.php in YaPiG 0.92b, 0.93u and 0.94u does not properly restrict the file extension for uploaded image files, which allows remote attackers to upload arbitrary files and execute arbitrary PHP co…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2005-1881	2024-01-27 04:07	2005-06-6	Show	GitHub Exploit DB Packet Storm

317467	-	deluxebb	deluxebb	DeluxeBB 1.06 and earlier, when run on the Apache HTTP Server with the mod_mime module, allows remote attackers to execute arbitrary PHP code by uploading files with double extensions via the fileupl…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2006-4558	2024-01-27 04:02	2006-09-6	Show	GitHub Exploit DB Packet Storm

317468	-	duware_dubanner_project	duware_dubanner	add.asp in DUware DUbanner 3.1 allows remote attackers to execute arbitrary code by uploading files with arbitrary extensions, such as ASP files, probably due to client-side enforcement that can be b…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2006-2428	2024-01-27 04:01	2006-05-17	Show	GitHub Exploit DB Packet Storm

317469	-	rockliffe	mailsite_express	Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the ca…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2005-3288	2024-01-27 04:01	2005-10-23	Show	GitHub Exploit DB Packet Storm

317470	-	linux canonical debian mandriva	linux_kernel ubuntu_linux debian_linux linux	The audit system in Linux kernel 2.6.6, and other versions before 2.6.13.4, when CONFIG_AUDITSYSCALL is enabled, uses an incorrect function to free names_cache memory, which prevents the memory from …	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2005-3181	2024-01-27 03:56	2005-10-12	Show	GitHub Exploit DB Packet Storm