Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
257601 9.3 危険 Investintech.com Inc. - Investintech.com の SlimPDF Reader におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-4219 2011-11-10 16:32 2011-11-1 Show GitHub Exploit DB Packet Storm
257602 9.3 危険 Investintech.com Inc. - Investintech.com の SlimPDF Reader におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-4218 2011-11-10 16:31 2011-11-1 Show GitHub Exploit DB Packet Storm
257603 9.3 危険 Investintech.com Inc. - Investintech.com の SlimPDF Reader におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4217 2011-11-10 16:31 2011-11-1 Show GitHub Exploit DB Packet Storm
257604 9.3 危険 Investintech.com Inc. - Investintech.com の SlimPDF Reader におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-4216 2011-11-10 16:30 2011-11-1 Show GitHub Exploit DB Packet Storm
257605 7.5 危険 OneOrZero - OneOrZero Action & Information Management System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2011-4215 2011-11-10 16:30 2011-11-1 Show GitHub Exploit DB Packet Storm
257606 10 危険 OneOrZero - OneOrZero Action & Information Management System における認証を回避される脆弱性 CWE-287
不適切な認証
CVE-2011-4214 2011-11-10 16:29 2011-11-1 Show GitHub Exploit DB Packet Storm
257607 4.3 警告 The phpMyAdmin Project - phpMyAdmin のセットアップインターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-4064 2011-11-10 16:29 2011-10-17 Show GitHub Exploit DB Packet Storm
257608 7.8 危険 シスコシステムズ - Cisco Unified Communications Manager および Cisco IOS におけるメモリリークの脆弱性 CWE-399
リソース管理の問題
CVE-2011-0941 2011-11-10 16:28 2011-09-28 Show GitHub Exploit DB Packet Storm
257609 5 警告 Roundcube.net - Roundcube Webmail の include/iniset.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-4078 2011-11-10 16:27 2011-11-3 Show GitHub Exploit DB Packet Storm
257610 7.5 危険 The PHP Group - PHP の is_a 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2011-3379 2011-11-10 16:27 2011-08-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311411 - linux linux_kernel The Radeon GPU drivers in the Linux kernel before 2.6.38-rc5 do not properly validate data related to the AA resolve registers, which allows local users to write to arbitrary memory locations associa… CWE-20
 Improper Input Validation 
CVE-2011-1016 2024-11-21 10:25 2011-03-1 Show GitHub Exploit DB Packet Storm
311412 - bestpractical rt Scrips_Overlay.pm in Best Practical Solutions RT before 3.8.9 does not properly restrict access to a TicketObj in a Scrip after a CurrentUser change, which allows remote authenticated users to obtain… CWE-264
Permissions, Privileges, and Access Controls
CVE-2011-1008 2024-11-21 10:25 2011-03-1 Show GitHub Exploit DB Packet Storm
311413 - bestpractical rt Best Practical Solutions RT before 3.8.9 does not perform certain redirect actions upon a login, which allows physically proximate attackers to obtain credentials by resubmitting the login form via t… CWE-255
Credentials Management
CVE-2011-1007 2024-11-21 10:25 2011-03-1 Show GitHub Exploit DB Packet Storm
311414 - cisco secure_desktop The CSDWebInstallerCtrl ActiveX control in CSDWebInstaller.ocx in Cisco Secure Desktop (CSD) allows remote attackers to download an unintended Cisco program onto a client machine, and execute this pr… CWE-20
 Improper Input Validation 
CVE-2011-0925 2024-11-21 10:25 2011-03-1 Show GitHub Exploit DB Packet Storm
311415 - f-secure policy_manager The WebReporting module in F-Secure Policy Manager 7.x, 8.00 before hotfix 2, 8.1x before hotfix 3 on Windows and hotfix 2 on Linux, and 9.00 before hotfix 4 on Windows and hotfix 2 on Linux, allows … CWE-200
Information Exposure
CVE-2011-1103 2024-11-21 10:25 2011-02-26 Show GitHub Exploit DB Packet Storm
311416 - f-secure policy_manager Cross-site scripting (XSS) vulnerability in the WebReporting module in F-Secure Policy Manager 7.x, 8.00 before hotfix 2, 8.1x before hotfix 3 on Windows and hotfix 2 on Linux, and 9.00 before hotfix… CWE-79
Cross-site Scripting
CVE-2011-1102 2024-11-21 10:25 2011-02-26 Show GitHub Exploit DB Packet Storm
311417 - citrix licensing_administration_console Multiple unspecified vulnerabilities in a third-party component of the Citrix Licensing Administration Console 11.6, formerly License Management Console, allow remote attackers to (1) access unauthor… NVD-CWE-noinfo
CVE-2011-1101 2024-11-21 10:25 2011-02-26 Show GitHub Exploit DB Packet Storm
311418 - logwatch logwatch logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server. CWE-20
 Improper Input Validation 
CVE-2011-1018 2024-11-21 10:25 2011-02-26 Show GitHub Exploit DB Packet Storm
311419 - ca host-based_intrusion_prevention_system
internet_security_suite_2010
internet_security_suite_2011
The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server before 8.1.0.88, and the client before 1.6.450, in CA Host-Based Intrusion … NVD-CWE-Other
CVE-2011-1036 2024-11-21 10:25 2011-02-26 Show GitHub Exploit DB Packet Storm
311420 - cisco secure_desktop A certain ActiveX control in CSDWebInstaller.ocx in Cisco Secure Desktop (CSD) does not properly verify the signature of an unspecified downloaded program, which allows remote attackers to execute ar… CWE-20
 Improper Input Validation 
CVE-2011-0926 2024-11-21 10:25 2011-02-26 Show GitHub Exploit DB Packet Storm