Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
256811 6.8 警告 Mozilla Foundation - Bugzilla の post_bug.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2011-3668 2012-01-5 16:26 2011-11-20 Show GitHub Exploit DB Packet Storm
256812 6.8 警告 Mozilla Foundation - Bugzilla の User.offer_account_by_email の WebService メソッドにおける脆弱性 CWE-287
不適切な認証
CVE-2011-3667 2012-01-5 16:23 2011-12-17 Show GitHub Exploit DB Packet Storm
256813 4.3 警告 Mozilla Foundation - Bugzilla におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-3657 2012-01-5 16:21 2011-10-27 Show GitHub Exploit DB Packet Storm
256814 9.3 危険 Steve Baker - PLIB の util/ulError.cxx 内の ulSetError 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2011-4620 2012-01-5 16:21 2011-12-31 Show GitHub Exploit DB Packet Storm
256815 1.2 注意 Celery - virtualenv の virtualenv.py における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題
CVE-2011-4617 2012-01-5 16:20 2011-12-31 Show GitHub Exploit DB Packet Storm
256816 7.5 危険 Novell - Novell XTier framework の HTTP サーバにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2011-1710 2012-01-5 16:19 2011-12-31 Show GitHub Exploit DB Packet Storm
256817 4.3 警告 JJWDesign - PHP Booking Calendar の details_view.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5045 2012-01-5 16:14 2011-12-30 Show GitHub Exploit DB Packet Storm
256818 7.2 危険 SopCast - SopCast における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-5044 2012-01-5 16:13 2011-12-30 Show GitHub Exploit DB Packet Storm
256819 4.3 警告 Tomatosoft - TomatoSoft Free Mp3 Player におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-5043 2012-01-5 16:12 2011-12-30 Show GitHub Exploit DB Packet Storm
256820 4.3 警告 gphemsley - SASHA の inc/lib/lib.base.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-5042 2012-01-5 16:11 2011-12-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270141 5.0 MEDIUM
Local
microsoft windows_rt_8.1
windows_server_2008
windows_server_2012
office
windows_10
windows_8.1
windows_server_2016
windows_7
Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows improper… CWE-200
Information Exposure
CVE-2017-0287 2024-11-21 12:02 2017-06-15 Show GitHub Exploit DB Packet Storm
270142 5.0 MEDIUM
Local
microsoft windows_rt_8.1
windows_server_2012
office
windows_10
windows_8.1
windows_server_2016
office_word_viewer
windows_server_2008
windows_7
Uniscribe in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, Windows Server 2016, Microsoft Office … CWE-200
Information Exposure
CVE-2017-0285 2024-11-21 12:02 2017-06-15 Show GitHub Exploit DB Packet Storm
270143 5.0 MEDIUM
Local
microsoft windows_rt_8.1
windows_server_2012
office
windows_10
windows_8.1
windows_server_2016
windows_server_2008
windows_7
Uniscribe in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, Windows Server 2016, Microsoft Office … CWE-200
Information Exposure
CVE-2017-0284 2024-11-21 12:02 2017-06-15 Show GitHub Exploit DB Packet Storm
270144 8.8 HIGH
Network
microsoft silverlight
windows_server_2012
office
windows_10
windows_server_2016
windows_8.1
windows_server_2008
lync
office_word_viewer
skype_for_business
windows_7
Uniscribe in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, Windows Server 2016, Microsoft Office 2007 S… NVD-CWE-noinfo
CVE-2017-0283 2024-11-21 12:02 2017-06-15 Show GitHub Exploit DB Packet Storm
270145 5.0 MEDIUM
Local
microsoft windows_rt_8.1
windows_server_2012
office
windows_10
windows_8.1
windows_server_2016
windows_server_2008
windows_7
Uniscribe in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, Windows Server 2016, Microsoft Office … CWE-200
Information Exposure
CVE-2017-0282 2024-11-21 12:02 2017-06-15 Show GitHub Exploit DB Packet Storm
270146 7.8 HIGH
Local
microsoft windows_server_2012
windows_10
windows_server_2016
windows_8.1
windows_server_2008
windows_7
Windows Hyper-V in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 201… CWE-755
 Improper Handling of Exceptional Conditions
CVE-2017-0193 2024-11-21 12:02 2017-06-15 Show GitHub Exploit DB Packet Storm
270147 8.8 HIGH
Network
ibm maximo_asset_management IBM Maximo Asset Management 7.5 and 7.6 could allow a remote authenticated attacker to execute arbitrary commands on the system as administrator. IBM X-Force ID: 120276. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-9984 2024-11-21 12:02 2017-06-14 Show GitHub Exploit DB Packet Storm
270148 5.4 MEDIUM
Network
ibm rational_collaborative_lifecycle_management
rational_quality_manager
rational_team_concert
rational_doors_next_generation
rational_engineering_lifecycle_manager
rational_rhapsody_desig…
IBM Jazz Foundation is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leadin… CWE-79
Cross-site Scripting
CVE-2016-9973 2024-11-21 12:02 2017-06-14 Show GitHub Exploit DB Packet Storm
270149 7.5 HIGH
Network
torproject
debian
tor
debian_linux
The hidden-service feature in Tor before 0.3.0.8 allows a denial of service (assertion failure and daemon exit) in the connection_edge_process_relay_cell function via a BEGIN_DIR cell on a rendezvous… CWE-617
 Reachable Assertion
CVE-2017-0376 2024-11-21 12:02 2017-06-10 Show GitHub Exploit DB Packet Storm
270150 7.5 HIGH
Network
torproject tor The hidden-service feature in Tor before 0.3.0.8 allows a denial of service (assertion failure and daemon exit) in the relay_send_end_cell_from_edge_ function via a malformed BEGIN cell. CWE-617
 Reachable Assertion
CVE-2017-0375 2024-11-21 12:02 2017-06-10 Show GitHub Exploit DB Packet Storm