Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 11, 2026, 6:13 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 255211 | 4.4 | 警告 | アップル | - | Apple Mac OS X の Application Firewall のデバッグログ機能における権限を取得される脆弱性 |
CWE-134
書式文字列の問題 |
CVE-2011-0185 | 2011-10-25 16:40 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255212 | 5 | 警告 | アップル | - | Apple iOS および Apple TV のカーネルにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-399
リソース管理の問題 |
CVE-2011-3259 | 2011-10-25 16:38 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255213 | 5 | 警告 | アップル | - | Apple iOS および Mac OS X の CFNetwork における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2011-3246 | 2011-10-25 16:37 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255214 | 5 | 警告 | アップル | - | Mac OS X 上で稼動する Apple Safari のプライベートブラウズ機能におけるユーザを追跡可能な脆弱性 |
CWE-200
情報漏えい |
CVE-2011-3242 | 2011-10-25 16:36 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255215 | 6.8 | 警告 | アップル | - | Mac OS X 上で動作する Apple Safari の SSL 実装における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2011-3231 | 2011-10-25 16:36 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255216 | 6.8 | 警告 | アップル | - | Mac OS X 上で動作する Apple Safari における任意のコードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3230 | 2011-10-25 16:35 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255217 | 6.8 | 警告 | アップル | - | Apple Safari におけるディレクトリトラバーサルの脆弱性 |
CWE-22 CWE-94 |
CVE-2011-3229 | 2011-10-25 16:34 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255218 | 6.8 | 警告 | アップル | - | Apple Mac OS X の Apple Type Services (ATS) における整数符号エラーの脆弱性 |
CWE-189
数値処理の問題 |
CVE-2011-3437 | 2011-10-25 16:33 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255219 | 6.5 | 警告 | アップル | - | Apple Mac OS の Open Directory におけるパスワード変更の制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-3436 | 2011-10-25 16:32 | 2011-10-14 | Show | GitHub Exploit DB Packet Storm |
| 255220 | 10 | 危険 | ヒューレット・パッカード | - | HP Data Protector における任意のコードを実行される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-3156 | 2011-10-25 14:34 | 2011-10-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 11, 2026, 5:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 259641 | 9.8 |
CRITICAL
Network |
php_multivendor_ecommerce_project | php_multivendor_ecommerce | PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the shopping-cart.php cusid parameter. |
CWE-89
SQL Injection |
CVE-2017-17951 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 259642 | 8.8 |
HIGH
Network |
cells | blog | Cells Blog 3.5 has SQL Injection via the pub_readpost.php ptid parameter. |
CWE-89
SQL Injection |
CVE-2017-17950 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 259643 | 6.1 |
MEDIUM
Network |
cells | blog | Cells Blog 3.5 has XSS via the pub_readpost.php fmid parameter. |
CWE-79
Cross-site Scripting |
CVE-2017-17949 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 259644 | 6.1 |
MEDIUM
Network |
cells | blog | Cells Blog 3.5 has XSS via the jfdname parameter in an act=showpic request. |
CWE-79
Cross-site Scripting |
CVE-2017-17948 | 2024-11-21 12:19 | 2017-12-29 | Show | GitHub Exploit DB Packet Storm |
| 259645 | 8.8 |
HIGH
Network |
libtiff | libtiff | In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c. |
CWE-125
Out-of-bounds Read |
CVE-2017-17942 | 2024-11-21 12:19 | 2017-12-28 | Show | GitHub Exploit DB Packet Storm |
| 259646 | 7.2 |
HIGH
Network |
single_theater_booking_script_project | single_theater_booking_script | PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter. |
CWE-89
SQL Injection |
CVE-2017-17941 | 2024-11-21 12:19 | 2017-12-28 | Show | GitHub Exploit DB Packet Storm |
| 259647 | 4.8 |
MEDIUM
Network |
single_theater_booking_script_project | single_theater_booking_script | PHP Scripts Mall Single Theater Booking has XSS via the title parameter to admin/sitesettings.php. |
CWE-79
Cross-site Scripting |
CVE-2017-17940 | 2024-11-21 12:19 | 2017-12-28 | Show | GitHub Exploit DB Packet Storm |
| 259648 | 8.8 |
HIGH
Network |
single_theater_booking_script_project | single_theater_booking_script | PHP Scripts Mall Single Theater Booking has CSRF via admin/sitesettings.php. |
CWE-352
Origin Validation Error |
CVE-2017-17939 | 2024-11-21 12:19 | 2017-12-28 | Show | GitHub Exploit DB Packet Storm |
| 259649 | 4.8 |
MEDIUM
Network |
single_theater_booking_script_project | single_theater_booking_script | PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter. |
CWE-79
Cross-site Scripting |
CVE-2017-17938 | 2024-11-21 12:19 | 2017-12-28 | Show | GitHub Exploit DB Packet Storm |
| 259650 | 6.1 |
MEDIUM
Network |
vanguard_project | marketplace_digital_products_php | Vanguard Marketplace Digital Products PHP has XSS via the phps_query parameter to /search. |
CWE-79
Cross-site Scripting |
CVE-2017-17937 | 2024-11-21 12:19 | 2017-12-28 | Show | GitHub Exploit DB Packet Storm |