Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254791	7.2	危険	Google	-	Google App Engine Python SDK の sandbox 環境におけるアクセス制限を回避される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4211	2011-11-7 09:49	2011-10-30	Show	GitHub Exploit DB Packet Storm

254792	6.8	警告	Google	-	Google App Engine Python SDK の SDK Console におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1364	2011-11-7 09:48	2011-10-30	Show	GitHub Exploit DB Packet Storm

254793	5	警告	IBM	-	IBM WebSphere Application Server (WAS) における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2747	2011-11-7 09:46	2009-10-24	Show	GitHub Exploit DB Packet Storm

254794	5	警告	IBM	-	IBM Lotus Sametime における構成設定の情報を読まれる脆弱性	CWE-16 環境設定	CVE-2011-1370	2011-11-7 09:46	2011-10-29	Show	GitHub Exploit DB Packet Storm

254795	5	警告	IBM	-	IBM WebSphere Application Server におけるファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2011-1368	2011-11-7 09:45	2011-10-29	Show	GitHub Exploit DB Packet Storm

254796	4.3	警告	IBM	-	IBM WebSphere MQ におけるサービス運用妨害 (ディスク消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-0780	2011-11-7 09:44	2011-10-29	Show	GitHub Exploit DB Packet Storm

254797	9.3	危険	シスコシステムズ	-	Cisco WebEx Recording Format (WRF) player の ATAS32 の処理機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4004	2011-11-4 15:14	2011-10-26	Show	GitHub Exploit DB Packet Storm

254798	9.3	危険	シスコシステムズ	-	Cisco WebEx Recording Format (WRF) player の WRF の解析機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-3319	2011-11-4 15:13	2011-10-26	Show	GitHub Exploit DB Packet Storm

254799	7.8	危険	シスコシステムズ	-	Cisco Video Surveillance カメラにおけるサービス運用妨害 (デバイスリロード) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3318	2011-11-4 15:11	2011-10-26	Show	GitHub Exploit DB Packet Storm

254800	7.8	危険	シスコシステムズ	-	複数の Cisco 製品におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-3315	2011-11-4 15:08	2011-10-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257331	7.8	HIGH Local	marklogic	marklogic	An exploitable heap corruption vulnerability exists in the GetIndexArray functionality of Antenna House DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted XLS file can cause a heap corrup…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2798	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

257332	4.8	MEDIUM Network	fortinet	fortios	A stored XSS (Cross-Site-Scripting) vulnerability in Fortinet FortiOS allows attackers to execute unauthorized code or commands via the policy global-label parameter.	CWE-79 Cross-site Scripting	CVE-2017-3128	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

257333	7.8	HIGH Local	marklogic	marklogic	An exploitable heap overflow vulnerability exists in the ParseEnvironment functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2797	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

257334	7.8	HIGH Local	marklogic	marklogic	An exploitable stack-based buffer overflow vulnerability exists in the DHFSummary functionality of AntennaHouse DMC HTMLFilter as used by MarkLogic 8.0-6. A specially crafted PPT file can cause a sta…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2794	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

257335	7.8	HIGH Local	marklogic	marklogic	An exploitable heap corruption vulnerability exists in the UnCompressUnicode functionality of Antenna House DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corru…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2793	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

257336	7.8	HIGH Local	marklogic	marklogic	An exploitable heap corruption vulnerability exists in the FillRowFormat functionality of Antenna House DMC HTMLFilter that is shipped with MarkLogic 8.0-6. A specially crafted xls file can cause a h…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-2783	2024-11-21 12:24	2017-05-24	Show	GitHub Exploit DB Packet Storm

257337	8.8	HIGH Network	adobe redhat	flash_player_desktop_runtime flash_player enterprise_linux enterprise_linux_desktop enterprise_linux_workstation	Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the Graphics class. Successful exploitation could lead to arbitrary code execution.	CWE-787 Out-of-bounds Write	CVE-2017-3074	2024-11-21 12:24	2017-05-10	Show	GitHub Exploit DB Packet Storm

257338	8.8	HIGH Network	adobe redhat	flash_player_desktop_runtime flash_player enterprise_linux enterprise_linux_desktop enterprise_linux_workstation	Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable use after free vulnerability when handling multiple mask properties of display objects, aka memory corruption. Successful exploi…	CWE-416 Use After Free	CVE-2017-3073	2024-11-21 12:24	2017-05-10	Show	GitHub Exploit DB Packet Storm

257339	8.8	HIGH Network	adobe redhat	flash_player_desktop_runtime flash_player enterprise_linux enterprise_linux_desktop enterprise_linux_workstation	Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the BitmapData class. Successful exploitation could lead to arbitrary code execution.	CWE-787 Out-of-bounds Write	CVE-2017-3072	2024-11-21 12:24	2017-05-10	Show	GitHub Exploit DB Packet Storm

257340	8.8	HIGH Network	adobe redhat	flash_player_desktop_runtime flash_player enterprise_linux enterprise_linux_desktop enterprise_linux_workstation	Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable use after free vulnerability when masking display objects. Successful exploitation could lead to arbitrary code execution.	CWE-416 Use After Free	CVE-2017-3071	2024-11-21 12:24	2017-05-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed