Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257501 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Kerberos 実装における権限昇格の脆弱性 CWE-310
暗号の問題 		CVE-2011-0043 2011-03-7 15:05 2011-02-8 Show GitHub Exploit DB Packet Storm
257502 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0090 2011-03-7 15:03 2011-02-8 Show GitHub Exploit DB Packet Storm
257503 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0089 2011-03-7 15:00 2011-02-8 Show GitHub Exploit DB Packet Storm
257504 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0088 2011-03-7 14:57 2011-02-8 Show GitHub Exploit DB Packet Storm
257505 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0087 2011-03-7 14:54 2011-02-8 Show GitHub Exploit DB Packet Storm
257506 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0086 2011-03-7 14:52 2011-02-8 Show GitHub Exploit DB Packet Storm
257507 7.2 危険 マイクロソフト - Microsoft Windows XP の Trace Events 機能における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2011-0045 2011-03-7 14:49 2011-02-8 Show GitHub Exploit DB Packet Storm
257508 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Local Security Authority Subsystem Service における権限昇格の脆弱性 CWE-287
不適切な認証 		CVE-2011-0039 2011-03-7 14:47 2011-02-8 Show GitHub Exploit DB Packet Storm
257509 6.8 警告 OTRS プロジェクト - OTRS における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0456 2011-03-7 12:02 2011-03-7 Show GitHub Exploit DB Packet Storm
257510 7.1 危険 マイクロソフト - 複数の Microsoft 製品の JScript および VBScript スクリプトエンジンにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-0031 2011-03-4 15:12 2011-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283971 6.1 MEDIUM
Network 		filedownload_project filedownload XSS in filedownload v1.4 wordpress plugin CWE-79
Cross-site Scripting 		CVE-2015-1000004 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
283972 9.8 CRITICAL
Network 		filedownload_project filedownload Blind SQL Injection in filedownload v1.4 wordpress plugin CWE-89
SQL Injection 		CVE-2015-1000003 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
283973 8.2 HIGH
Network 		filedownload_project filedownload Open Proxy in filedownload v1.4 wordpress plugin CWE-20
 Improper Input Validation  		CVE-2015-1000002 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
283974 9.8 CRITICAL
Network 		fast-image-adder_project fast-image-adder Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2015-1000001 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
283975 9.8 CRITICAL
Network 		mailcwp_project mailcwp Remote file upload vulnerability in mailcwp v1.99 wordpress plugin CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2015-1000000 2024-11-21 11:24 2016-10-6 Show GitHub Exploit DB Packet Storm
283976 - ininet_solutions scada_web_server IniNet embeddedWebServer (aka eWebServer) before 2.02 for Windows CE uses cleartext for password storage, which allows context-dependent attackers to obtain sensitive information via unspecified vect… CWE-200
Information Exposure 		CVE-2015-1005 2024-11-21 11:24 2015-10-25 Show GitHub Exploit DB Packet Storm
283977 - ininet_solutions scada_web_server Directory traversal vulnerability in IniNet embeddedWebServer (aka eWebServer) before 2.02 allows remote attackers to read arbitrary files via a crafted pathname. CWE-22
Path Traversal 		CVE-2015-1003 2024-11-21 11:24 2015-10-25 Show GitHub Exploit DB Packet Storm
283978 - ininet_solutions scada_web_server IniNet embeddedWebServer (aka eWebServer) before 2.02 mishandles URL encoding, which allows remote attackers to write to or delete files via a crafted string. NVD-CWE-Other
CVE-2015-1002 2024-11-21 11:24 2015-10-25 Show GitHub Exploit DB Packet Storm
283979 - ininet_solutions scada_web_server Multiple stack-based buffer overflows in IniNet embeddedWebServer (aka eWebServer) before 2.02 allow remote attackers to execute arbitrary code via a long field in an HTTP request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-1001 2024-11-21 11:24 2015-10-25 Show GitHub Exploit DB Packet Storm
283980 - vmware vcenter_server vpxd in VMware vCenter Server 5.0 before u3e, 5.1 before u3, and 5.5 before u2 allows remote attackers to cause a denial of service via a long heartbeat message. CWE-20
 Improper Input Validation  		CVE-2015-1047 2024-11-21 11:24 2015-10-12 Show GitHub Exploit DB Packet Storm