Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254321 4.3 警告 アップル
Ruby on Rails project		 - Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4214 2010-04-16 16:58 2009-12-7 Show GitHub Exploit DB Packet Storm
254322 4.3 警告 アップル
Ruby on Rails project		 - Ruby on Rails におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3009 2010-04-16 16:58 2009-09-8 Show GitHub Exploit DB Packet Storm
254323 7.5 危険 アップル
Ruby on Rails project		 - Ruby on Rails のダイジェスト認証における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-2422 2010-04-16 16:57 2009-07-10 Show GitHub Exploit DB Packet Storm
254324 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0526 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
254325 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0520 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
254326 6.8 警告 アップル - Apple Mac OS X の QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0519 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
254327 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0518 2010-04-16 16:56 2010-03-29 Show GitHub Exploit DB Packet Storm
254328 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0517 2010-04-16 16:56 2010-03-29 Show GitHub Exploit DB Packet Storm
254329 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0516 2010-04-15 18:39 2010-03-29 Show GitHub Exploit DB Packet Storm
254330 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0515 2010-04-15 18:39 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298751 - hp openview_storage_data_protector Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allow remote attackers to execute arbitrary code via a request containing crafted par… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-1865 2024-11-21 10:27 2011-07-1 Show GitHub Exploit DB Packet Storm
298752 - rubyonrails rails
ruby_on_rails 		The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it … CWE-79
Cross-site Scripting 		CVE-2011-2197 2024-11-21 10:27 2011-07-1 Show GitHub Exploit DB Packet Storm
298753 - apache tomcat Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.17, when the MemoryUserDatabase is used, creates log entries containing passwords upon encountering errors in JMX user creatio… CWE-200
Information Exposure 		CVE-2011-2204 2024-11-21 10:27 2011-06-30 Show GitHub Exploit DB Packet Storm
298754 - reallysimplechat really_simple_chat Multiple SQL injection vulnerabilities in A Really Simple Chat (ARSC) 3.3-rc2 allow remote attackers to execute arbitrary SQL commands via the (1) arsc_user parameter to base/admin/edit_user.php, (2)… CWE-89
SQL Injection 		CVE-2011-2181 2024-11-21 10:27 2011-06-30 Show GitHub Exploit DB Packet Storm
298755 - reallysimplechat really_simple_chat Cross-site scripting (XSS) vulnerability in dereferer.php in A Really Simple Chat (ARSC) 3.3-rc2 allows remote attackers to inject arbitrary web script or HTML via the arsc_link parameter. CWE-79
Cross-site Scripting 		CVE-2011-2180 2024-11-21 10:27 2011-06-30 Show GitHub Exploit DB Packet Storm
298756 - videolan vlc_media_player Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unsp… CWE-189
Numeric Errors 		CVE-2011-2194 2024-11-21 10:27 2011-06-25 Show GitHub Exploit DB Packet Storm
298757 - clusterresources torque_resource_manager Multiple buffer overflows in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.x before 2.4.14, 2.5.x before 2.5.6, and 3.x before 3.0.2 allow (1) remote authenticated … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2011-2193 2024-11-21 10:27 2011-06-25 Show GitHub Exploit DB Packet Storm
298758 - foxitsoftware foxit_reader Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader before 4.0.0.0619 allows remote attackers to execute arbitrary code or cause a denial of service (application crash)… CWE-189
Numeric Errors 		CVE-2011-1908 2024-11-21 10:27 2011-06-25 Show GitHub Exploit DB Packet Storm
298759 7.5 HIGH
Network 		linux
fedoraproject 		linux_kernel
fedora 		Integer underflow in the dccp_parse_options function (net/dccp/options.c) in the Linux kernel before 2.6.33.14 allows remote attackers to cause a denial of service via a Datagram Congestion Control P… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2011-1770 2024-11-21 10:27 2011-06-25 Show GitHub Exploit DB Packet Storm
298760 - brad_fitzpatrick djabberd XMLParser.pm in DJabberd before 0.85 allows remote authenticated users to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consum… CWE-399
 Resource Management Errors 		CVE-2011-2206 2024-11-21 10:27 2011-06-23 Show GitHub Exploit DB Packet Storm