Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
253851 5 警告 simpletest - SimpleTest における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3801 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253852 5 警告 s9y - Serendipity における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3800 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253853 5 警告 php link directory - phpLD における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3782 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253854 5 警告 PHPIDS - PHPIDS における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3781 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253855 5 警告 phpicalendar - PHP iCalendar における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3780 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253856 5 警告 idevSpot - PhpHostBot における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3779 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253857 5 警告 phpgedview - PhpGedView における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3778 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253858 5 警告 PhpFreeChat - phpFreeChat における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3777 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253859 5 警告 musawir ali - phpFormGenerator における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3776 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
253860 5 警告 litoweb - PHPfileNavigator における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3775 2012-03-27 18:43 2011-09-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264171 9.8 CRITICAL
Network
xmlsoft libxml2 parser.c in libxml2 before 2.9.5 mishandles parameter-entity references because the NEXTL macro calls the xmlParserHandlePEReference function in the case of a '%' character in a DTD name. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-16931 2024-11-21 12:17 2017-11-24 Show GitHub Exploit DB Packet Storm
264172 8.4 HIGH
Local
neutrinolabs
debian
xrdp
debian_linux
The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the session manager in xrdp through 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of servic… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-16927 2024-11-21 12:17 2017-11-23 Show GitHub Exploit DB Packet Storm
264173 7.8 HIGH
Local
gnu ncurses Stack-based buffer overflow in the _nc_write_entry function in tinfo/write_entry.c in ncurses 6.0 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code … CWE-787
 Out-of-bounds Write
CVE-2017-16879 2024-11-21 12:17 2017-11-23 Show GitHub Exploit DB Packet Storm
264174 9.8 CRITICAL
Network
ohcount_project ohcount Ohcount 3.0.0 is prone to a command injection via specially crafted filenames containing shell metacharacters, which can be exploited by an attacker (providing a source tree for Ohcount processing) t… CWE-78
OS Command 
CVE-2017-16926 2024-11-21 12:17 2017-11-22 Show GitHub Exploit DB Packet Storm
264175 8.8 HIGH
Adjacent
tenda ac9_firmware
ac15_firmware
ac18_firmware
Command Injection vulnerability in app_data_center on Shenzhen Tenda Ac9 US_AC9V1.0BR_V15.03.05.14_multi_TD01, Ac9 ac9_kf_V15.03.05.19(6318_)_cn, Ac15 US_AC15V1.0BR_V15.03.05.18_multi_TD01, Ac15 US_A… CWE-78
OS Command 
CVE-2017-16923 2024-11-21 12:17 2017-11-21 Show GitHub Exploit DB Packet Storm
264176 9.8 CRITICAL
Network
finecms finecms v5/config/system.php in dayrui FineCms 5.2.0 has a default SYS_KEY value and does not require key regeneration for each installation, which allows remote attackers to upload arbitrary .php files via … NVD-CWE-noinfo
CVE-2017-16920 2024-11-21 12:17 2017-11-21 Show GitHub Exploit DB Packet Storm
264177 5.4 MEDIUM
Network
mapos_project mapos MapOS 3.1.11 and earlier has a Stored Cross-site Scripting (XSS) vulnerability in /clientes/visualizar, which allows remote attackers to inject arbitrary web script or HTML via a crafted description … CWE-79
Cross-site Scripting
CVE-2017-16919 2024-11-21 12:17 2017-11-21 Show GitHub Exploit DB Packet Storm
264178 9.8 CRITICAL
Network
ffmpeg
debian
ffmpeg
debian_linux
The VC-2 Video Compression encoder in FFmpeg 3.0 and 3.4 allows remote attackers to cause a denial of service (out-of-bounds read) because of incorrect buffer padding for non-Haar wavelets, related t… CWE-125
Out-of-bounds Read
CVE-2017-16840 2024-11-21 12:17 2017-11-21 Show GitHub Exploit DB Packet Storm
264179 5.4 MEDIUM
Network
horde groupware In Horde Groupware 5.2.19, there is XSS via the Name field during creation of a new Resource. This can be leveraged for remote code execution after compromising an administrator account, because the … CWE-79
Cross-site Scripting
CVE-2017-16908 2024-11-21 12:17 2017-11-21 Show GitHub Exploit DB Packet Storm
264180 5.4 MEDIUM
Network
horde groupware In Horde Groupware 5.2.19 and 5.2.21, there is XSS via the Color field in a Create Task List action. CWE-79
Cross-site Scripting
CVE-2017-16907 2024-11-21 12:17 2017-11-21 Show GitHub Exploit DB Packet Storm