Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254151	4.3	警告	マイクロソフト	-	Microsoft Forefront UAG 2010 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1897	2011-10-21 15:30	2011-10-11	Show	GitHub Exploit DB Packet Storm

254152	4.3	警告	マイクロソフト	-	Microsoft Forefront UAG 2010 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1896	2011-10-21 15:30	2011-10-11	Show	GitHub Exploit DB Packet Storm

254153	9.3	危険	マイクロソフト	-	Microsoft Forefront UAG 2010 における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-1895	2011-10-21 15:28	2011-10-11	Show	GitHub Exploit DB Packet Storm

254154	9.3	危険	マイクロソフト	-	Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1253	2011-10-21 15:27	2011-10-11	Show	GitHub Exploit DB Packet Storm

254155	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバ内にある win32k.sys における権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2011-2011	2011-10-21 15:26	2011-10-11	Show	GitHub Exploit DB Packet Storm

254156	9.3	危険	マイクロソフト	-	Microsoft Windows の win32k.sys のバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2003	2011-10-21 15:25	2011-10-11	Show	GitHub Exploit DB Packet Storm

254157	4.7	警告	マイクロソフト	-	Microsoft Windows の win32k.sys におけるサービス運用妨害 (システムハング) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-2002	2011-10-21 15:25	2011-10-11	Show	GitHub Exploit DB Packet Storm

254158	7.2	危険	マイクロソフト	-	Microsoft Windows の win32k.sys における権限昇格またはサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1985	2011-10-21 15:24	2011-10-11	Show	GitHub Exploit DB Packet Storm

254159	9.3	危険	マイクロソフト	-	Microsoft Windows Vista および Windows 7 の Windows Media Center における権限昇格の脆弱性	CWE-Other その他	CVE-2011-2009	2011-10-21 15:24	2011-10-11	Show	GitHub Exploit DB Packet Storm

254160	9.3	危険	マイクロソフト	-	Microsoft Windows の Microsoft Active Accessibility コンポーネントにおける権限昇格の脆弱性	CWE-Other その他	CVE-2011-1247	2011-10-21 15:23	2011-10-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246311	4.8	MEDIUM Network	seopanel	seo_panel	The Website Manager module in SEO Panel 3.13.0 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability, allowing remote authenticated attackers to inject arbitrary web script or …	CWE-79 Cross-site Scripting	CVE-2018-14384	2024-11-21 12:48	2020-03-3	Show	GitHub Exploit DB Packet Storm

246312	7.8	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096_firmware apq8096au_firmware apq8098_firmware ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware<…	Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sn…	CWE-120 Classic Buffer Overflow	CVE-2018-13916	2024-11-21 12:48	2019-11-22	Show	GitHub Exploit DB Packet Storm

246313	9.1	CRITICAL Network	cospas-sarsat	cospas-sarsat_system	The COSPAS-SARSAT protocol allows remote attackers to forge messages, replay encrypted messages, conduct denial of service attacks, and send private messages (unrelated to distress alerts) via a craf…	CWE-310 Cryptographic Issues	CVE-2018-14062	2024-11-21 12:48	2019-08-16	Show	GitHub Exploit DB Packet Storm

246314	6.5	MEDIUM Adjacent	arista	eos	Arista EOS through 4.21.0F allows a crash because 802.1x authentication is mishandled.	CWE-287 Improper Authentication	CVE-2018-14008	2024-11-21 12:48	2019-08-16	Show	GitHub Exploit DB Packet Storm

246315	7.5	HIGH Network	ttpsc	the_scheduler	The Transition Technologies "The Scheduler" app 5.1.3 for Jira allows XXE due to a weakly configured/parameterized XML parser. It was fixed in the versions 5.2.1 and 3.3.7	CWE-611 XXE	CVE-2018-14383	2024-11-21 12:48	2019-08-8	Show	GitHub Exploit DB Packet Storm

246316	7.5	HIGH Network	qualcomm	mdm9206_firmware mdm9607_firmware mdm9640_firmware mdm9650_firmware msm8909w_firmware msm8996au_firmware qcs605_firmware sd_210_firmware sd_212_firmware sd_205_firmware …	Clients hostname gets added to DNS record on device which is running dnsmasq resulting in an information exposure in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indu…	CWE-200 Information Exposure	CVE-2018-13897	2024-11-21 12:48	2019-07-26	Show	GitHub Exploit DB Packet Storm

246317	7.8	HIGH Local	qualcomm	mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware qcs404_firmware qcs605_firmware sd_410_firmware sd_412_firmware sd_636_firmware sd…	Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, …	CWE-287 Improper Authentication	CVE-2018-13927	2024-11-21 12:48	2019-07-22	Show	GitHub Exploit DB Packet Storm

246318	9.8	CRITICAL Network	qualcomm	ipq8074_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9625_firmware mdm9635m_firmware mdm9640_firmware mdm9650_firmware mdm9655_firmware	Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer…	CWE-787 Out-of-bounds Write	CVE-2018-13924	2024-11-21 12:48	2019-07-22	Show	GitHub Exploit DB Packet Storm

246319	7.8	HIGH Local	qualcomm	mdm9206_firmware mdm9607_firmware mdm9650_firmware mdm9655_firmware msm8996au_firmware qcs404_firmware qcs605_firmware qualcomm_215_firmware sd_410_firmware sd_412_firmware…	XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdra…	CWE-284 Improper Access Control	CVE-2018-13896	2024-11-21 12:48	2019-07-22	Show	GitHub Exploit DB Packet Storm

246320	6.1	MEDIUM Network	digisol	dg-hr-3300_firmware	Digisol Wireless Wifi Home Router HR-3300 allows XSS via the userid or password parameter to the admin login page.	CWE-79 Cross-site Scripting	CVE-2018-14027	2024-11-21 12:48	2019-07-6	Show	GitHub Exploit DB Packet Storm