Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254771 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254772 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
254773 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
254774 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
254775 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298931 - ibm websphere_application_server The Administrative Scripting Tools component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.35 and 7.x before 7.0.0.15, when tracing is enabled, places wsadmin command parameters into… CWE-200
Information Exposure 		CVE-2011-1310 2024-11-21 10:26 2011-03-9 Show GitHub Exploit DB Packet Storm
298932 - ibm websphere_application_server The Plug-in component in IBM WebSphere Application Server (WAS) before 7.0.0.15 does not properly handle trace requests, which has unspecified impact and attack vectors. CWE-20
 Improper Input Validation  		CVE-2011-1309 2024-11-21 10:26 2011-03-9 Show GitHub Exploit DB Packet Storm
298933 - ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the Installation Verification Test (IVT) application in the Install component in IBM WebSphere Application Server (WAS) before 7.0.0.15 allows remote attac… CWE-79
Cross-site Scripting 		CVE-2011-1308 2024-11-21 10:26 2011-03-9 Show GitHub Exploit DB Packet Storm
298934 - ibm websphere_application_server The installer in IBM WebSphere Application Server (WAS) before 7.0.0.15 uses 777 permissions for a temporary log directory, which allows local users to have unintended access to log files via standar… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2011-1307 2024-11-21 10:26 2011-03-9 Show GitHub Exploit DB Packet Storm
298935 - google chrome_os Unspecified vulnerability in the Scratchpad application in Google Chrome OS before R10 0.10.156.46 Beta has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2011-1306 2024-11-21 10:26 2011-03-9 Show GitHub Exploit DB Packet Storm
298936 - - - A vulnerability was found in GamerZ WP-PostRatings up to 1.64. It has been classified as problematic. This affects an unknown part of the file wp-postratings.php. The manipulation leads to cross site… - CVE-2011-10006 2024-11-21 10:25 2024-04-8 Show GitHub Exploit DB Packet Storm
298937 8.8 HIGH
Network 		easyftp_server_project easyftp_server A vulnerability, which was classified as critical, was found in EasyFTP 1.7.0.2. Affected is an unknown function of the component MKD Command Handler. The manipulation leads to buffer overflow. It is… - CVE-2011-10005 2024-11-21 10:25 2024-01-16 Show GitHub Exploit DB Packet Storm
298938 9.8 CRITICAL
Network 		reciply_project reciply A vulnerability was found in reciply Plugin up to 1.1.7 on WordPress. It has been rated as critical. This issue affects some unknown processing of the file uploadImage.php. The manipulation leads to … - CVE-2011-10004 2024-11-21 10:25 2023-10-17 Show GitHub Exploit DB Packet Storm
298939 9.8 CRITICAL
Network 		xpressengine xpressengine A vulnerability was found in XpressEngine up to 1.4.4. It has been rated as critical. This issue affects some unknown processing of the component Update Query Handler. The manipulation leads to sql i… - CVE-2011-10003 2024-11-21 10:25 2023-02-8 Show GitHub Exploit DB Packet Storm
298940 9.8 CRITICAL
Network 		weblabyrinth_project weblabyrinth A vulnerability classified as critical has been found in weblabyrinth 0.3.1. This affects the function Labyrinth of the file labyrinth.inc.php. The manipulation leads to sql injection. Upgrading to v… - CVE-2011-10002 2024-11-21 10:25 2023-02-8 Show GitHub Exploit DB Packet Storm