Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257611 10 危険 マイクロソフト - Microsoft Windows の Distributed File System 実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1868 2011-06-24 10:01 2011-06-14 Show GitHub Exploit DB Packet Storm
257612 5.7 警告 Linux
レッドハット		 - Linux kernel の RPC サーバソケット機能におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0714 2011-06-23 11:48 2011-03-8 Show GitHub Exploit DB Packet Storm
257613 9.3 危険 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1873 2011-06-23 11:42 2011-06-14 Show GitHub Exploit DB Packet Storm
257614 10 危険 マイクロソフト - Microsoft Forefront Threat Management Gateway (TMG) 2010 クライアントの NSPLookupServiceNext 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1889 2011-06-23 11:30 2011-06-14 Show GitHub Exploit DB Packet Storm
257615 9.3 危険 マイクロソフト - Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0664 2011-06-23 11:29 2011-06-14 Show GitHub Exploit DB Packet Storm
257616 9.3 危険 マイクロソフト - Microsoft Windows の OLE オートメーションプロトコル実装における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0658 2011-06-23 11:28 2011-06-14 Show GitHub Exploit DB Packet Storm
257617 4.3 警告 マイクロソフト - Microsoft Windows の MHTML プロトコルハンドラにおけるクロスサイトスクリプティングを誘導される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1894 2011-06-23 11:27 2011-06-14 Show GitHub Exploit DB Packet Storm
257618 5.5 警告 ターボリナックス
Timo Sirainen
レッドハット		 - Dovecot の plugins/acl/acl-backend-vfile.c におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-3707 2011-06-23 11:15 2010-10-2 Show GitHub Exploit DB Packet Storm
257619 4 警告 ターボリナックス
Timo Sirainen
レッドハット		 - Dovecot におけるサービス運用妨害 (master process outage) の脆弱性 CWE-Other
その他 		CVE-2010-3780 2011-06-23 11:14 2010-10-2 Show GitHub Exploit DB Packet Storm
257620 4.3 警告 Google - Android の Android ブラウザにおける SD カード上の情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-4804 2011-06-21 07:53 2011-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
300571 - videolan vlc_media_player libpng_plugin in VideoLAN VLC media player 2.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted PNG file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5470 2024-11-21 10:44 2012-10-26 Show GitHub Exploit DB Packet Storm
300572 - phpmyadmin phpmyadmin phpMyAdmin 3.5.x before 3.5.3 uses JavaScript code that is obtained through an HTTP session to phpmyadmin.net without SSL, which allows man-in-the-middle attackers to conduct cross-site scripting (XS… CWE-79
Cross-site Scripting 		CVE-2012-5368 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
300573 - phpmyadmin phpmyadmin Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.3 allow remote authenticated users to inject arbitrary web script or HTML via a crafted name of (1) an event, (2) a … CWE-79
Cross-site Scripting 		CVE-2012-5339 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
300574 - zoner zoner_antivirus_free The Zoner AntiVirus Free application for Android does not verify that the server hostname matches a domain name in the subject's Common Name (CN) field of the X.509 certificate, which allows man-in-t… CWE-310
Cryptographic Issues 		CVE-2012-5456 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
300575 - videousermanuals white-label-cms Cross-site scripting (XSS) vulnerability in wlcms-plugin.php in the White Label CMS plugin 1.5 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML via the … CWE-79
Cross-site Scripting 		CVE-2012-5388 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
300576 - videousermanuals white-label-cms Cross-site request forgery (CSRF) vulnerability in wlcms-plugin.php in the White Label CMS plugin before 1.5.1 for WordPress allows remote attackers to hijack the authentication of administrators for… CWE-352
 Origin Validation Error 		CVE-2012-5387 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
300577 - tibco formvine The server in TIBCO Formvine 3.1.x and 3.2.x before 3.2.1 does not properly implement access control, which allows remote attackers to obtain sensitive information or modify data via unspecified vect… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5302 2024-11-21 10:44 2012-10-25 Show GitHub Exploit DB Packet Storm
300578 - adobe shockwave_player Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4172, CVE-2012-4173, CVE-2012-4… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-5273 2024-11-21 10:44 2012-10-24 Show GitHub Exploit DB Packet Storm
300579 - joomla joomla\! Cross-site scripting (XSS) vulnerability in the language search component in Joomla! before 3.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a … CWE-79
Cross-site Scripting 		CVE-2012-5455 2024-11-21 10:44 2012-10-23 Show GitHub Exploit DB Packet Storm
300580 - atutor acontent user/index_inline_editor_submit.php in ATutor AContent 1.2-1 does not properly restrict access, which allows remote authenticated users to modify arbitrary user passwords via a crafted request. NOTE… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2012-5454 2024-11-21 10:44 2012-10-23 Show GitHub Exploit DB Packet Storm