Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 19, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253751 | 4.3 | 警告 | The PHP Group | - | 64-bit プラットフォーム上で稼働している PHP の exif.c におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-119
バッファエラー |
CVE-2011-0708 | 2011-04-21 12:24 | 2011-03-17 | Show | GitHub Exploit DB Packet Storm |
| 253752 | 7.5 | 危険 | The PHP Group | - | PHP の ext/shmop/shmop.c における整数オーバーフローの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2011-1092 | 2011-04-21 12:22 | 2011-03-17 | Show | GitHub Exploit DB Packet Storm |
| 253753 | 7.5 | 危険 | The PHP Group | - | PHP の phar_object.c における重要な情報を取得される脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2011-1153 | 2011-04-21 12:21 | 2011-03-17 | Show | GitHub Exploit DB Packet Storm |
| 253754 | 4.3 | 警告 | アップル | - | Apple iOS の MobileSafari の URL ハンドラにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-0158 | 2011-04-8 16:22 | 2011-03-11 | Show | GitHub Exploit DB Packet Storm |
| 253755 | 6.9 | 警告 | Linux レッドハット |
- | Linux kernel の ACPI サブシステムにおける権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-4347 | 2011-04-8 13:35 | 2010-12-9 | Show | GitHub Exploit DB Packet Storm |
| 253756 | 5 | 警告 | レッドハット OpenLDAP Foundation |
- | OpenLDAP の modrdn.c におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-1081 | 2011-04-8 13:34 | 2011-02-10 | Show | GitHub Exploit DB Packet Storm |
| 253757 | 6.8 | 警告 | レッドハット OpenLDAP Foundation |
- | OpenLDAP の bind.cpp におけるアクセス制限を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2011-1025 | 2011-04-8 13:34 | 2011-02-10 | Show | GitHub Exploit DB Packet Storm |
| 253758 | 4.6 | 警告 | サイバートラスト株式会社 レッドハット OpenLDAP Foundation |
- | OpenLDAP の chain.c における内部プログラムの認証を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-1024 | 2011-04-8 13:33 | 2011-02-10 | Show | GitHub Exploit DB Packet Storm |
| 253759 | 6.8 | 警告 | IBM | - | IBM WebSphere Application Server の Security コンポーネントにおけるサーバへアクセスされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-1320 | 2011-04-8 13:33 | 2010-08-30 | Show | GitHub Exploit DB Packet Storm |
| 253760 | 4 | 警告 | IBM | - | IBM WebSphere Application Server の Security コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-1319 | 2011-04-8 13:32 | 2010-07-16 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 19, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253881 | 5.5 |
MEDIUM
Local |
ksosoft | wps_office | pptreader.dll in Kingsoft WPS Office 10.1.0.6930 allows remote attackers to cause a denial of service via a crafted PPT file, aka CNVD-2017-35482. |
CWE-20
Improper Input Validation |
CVE-2017-17967 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253882 | 8.8 |
HIGH
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has CSRF via admin/sellerupd.php. |
CWE-352
Origin Validation Error |
CVE-2017-17960 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253883 | 9.8 |
CRITICAL
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the seller-view.php usid parameter. |
CWE-89
SQL Injection |
CVE-2017-17959 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253884 | 6.1 |
MEDIUM
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the my_wishlist.php fid parameter. |
CWE-79
Cross-site Scripting |
CVE-2017-17958 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253885 | 9.8 |
CRITICAL
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the my_wishlist.php fid parameter. |
CWE-89
SQL Injection |
CVE-2017-17957 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253886 | 6.1 |
MEDIUM
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the admin/sellerupd.php companyname parameter. |
CWE-79
Cross-site Scripting |
CVE-2017-17956 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253887 | 6.1 |
MEDIUM
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the shopping-cart.php cusid parameter. |
CWE-79
Cross-site Scripting |
CVE-2017-17955 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253888 | 6.1 |
MEDIUM
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the seller-view.php usid parameter. |
CWE-79
Cross-site Scripting |
CVE-2017-17954 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253889 | 6.1 |
MEDIUM
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the category.php chid1 parameter. |
CWE-79
Cross-site Scripting |
CVE-2017-17953 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 253890 | 8.6 |
HIGH
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has a predicable registration URL, which makes it easier for remote attackers to register with an invalid or spoofed e-mail address. |
CWE-20
Improper Input Validation |
CVE-2017-17952 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |