Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253641 4.3 警告 マイクロソフト - Microsoft Windows Server 2008 R2 の RD Web Access におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1263 2011-08-24 10:16 2011-08-9 Show GitHub Exploit DB Packet Storm
253642 6.2 警告 サイバートラスト株式会社
Linux		 - Linux kernel の kernel/exit.c 内にある do_exit 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4258 2011-08-24 10:11 2010-12-9 Show GitHub Exploit DB Packet Storm
253643 9.3 危険 マイクロソフト - Microsoft Visio における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1979 2011-08-23 10:06 2011-08-9 Show GitHub Exploit DB Packet Storm
253644 9.3 危険 マイクロソフト - Microsoft Visio における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1972 2011-08-23 10:05 2011-08-9 Show GitHub Exploit DB Packet Storm
253645 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1964 2011-08-23 10:04 2011-08-9 Show GitHub Exploit DB Packet Storm
253646 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6 から 9 における異なるドメインまたはゾーンからアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2011-1960 2011-08-23 10:04 2011-08-9 Show GitHub Exploit DB Packet Storm
253647 7.6 危険 マイクロソフト - Microsoft Internet Explorer 6 から 8 における任意のコードを実行される脆弱性 CWE-362
競合状態 		CVE-2011-1257 2011-08-23 10:02 2011-08-9 Show GitHub Exploit DB Packet Storm
253648 2.1 注意 IBM - IBM WebSphere Application Server の installer におけるログファイルへのアクセス権を保持される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1307 2011-08-23 09:50 2011-02-28 Show GitHub Exploit DB Packet Storm
253649 6.2 警告 Linux
レッドハット		 - Linux kernel の drivers/usb/misc/iowarrior.c 内にある iowarrior_write 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-4656 2011-08-22 11:06 2011-03-10 Show GitHub Exploit DB Packet Storm
253650 5 警告 日立 - JP1/IT Resouce Management - Manager における認証情報を出力される脆弱性 CWE-noinfo
情報不足 		- 2011-08-22 10:45 2011-07-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
317921 - symantec norton_antivirus NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus (NAV) 2002 allows remote attackers to bypass e-mail scanning via a filename in the Content-Type field with an excluded exte… NVD-CWE-Other
CVE-2002-1777 2024-08-8 13:16 2002-12-31 Show GitHub Exploit DB Packet Storm
317922 9.8 CRITICAL
Network 		- - The Appointment Booking Calendar Plugin and Online Scheduling Plugin – BookingPress plugin for WordPress is vulnerable to authentication bypass in versions 1.1.6 to 1.1.7. This is due to the plugin n… - CVE-2024-7350 2024-08-8 12:15 2024-08-8 Show GitHub Exploit DB Packet Storm
317923 - apache http_server The mod_php module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the server's process group and use the server's file descriptors, as demonstrated … NVD-CWE-Other
CVE-2003-1307 2024-08-8 12:15 2003-12-31 Show GitHub Exploit DB Packet Storm
317924 8.8 HIGH
Network 		- - The The Next theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.1.0 via deserialization of untrusted input from the wpeden_post_meta post meta value. Th… - CVE-2024-7561 2024-08-8 11:15 2024-08-8 Show GitHub Exploit DB Packet Storm
317925 7.2 HIGH
Network 		- - The News Flash theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.1.0 via deserialization of untrusted input from the newsflash_post_meta meta value. Th… - CVE-2024-7560 2024-08-8 11:15 2024-08-8 Show GitHub Exploit DB Packet Storm
317926 8.8 HIGH
Network 		- - The MultiPurpose theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.2.0 via deserialization of untrusted input through the 'wpeden_post_meta' post meta.… - CVE-2024-7486 2024-08-8 11:15 2024-08-8 Show GitHub Exploit DB Packet Storm
317927 8.5 HIGH
Network 		- - An authenticated attacker can bypass Server-Side Request Forgery (SSRF) protection in Microsoft Copilot Studio to leak sensitive information over a network. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2024-38206 2024-08-8 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
317928 8.2 HIGH
Network 		- - An unauthenticated attacker can exploit improper neutralization of input during web page generation in Microsoft Dynamics 365 to spoof over a network by tricking a user to click on a link. CWE-79
Cross-site Scripting 		CVE-2024-38166 2024-08-8 11:15 2024-08-7 Show GitHub Exploit DB Packet Storm
317929 - - - Format string vulnerability in vsybase.c in vpopmail 5.4.2 and earlier has unknown impact and attack vectors. NOTE: in a followup post, it was observed that the source code used constants that, when… NVD-CWE-Other
CVE-2004-2238 2024-08-8 11:15 2004-12-31 Show GitHub Exploit DB Packet Storm
317930 - gnu less Format string bug in the open_altfile function in filename.c for GNU less 382, 381, and 358 might allow local users to cause a denial of service or possibly execute arbitrary code via format strings … NVD-CWE-Other
CVE-2004-2264 2024-08-8 11:15 2004-12-31 Show GitHub Exploit DB Packet Storm