Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257861	7.5	危険	シマンテック	-	Symantec IM Manager の管理コンソールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-0553	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

257862	4.3	警告	シマンテック	-	Symantec IM Manager の管理コンソールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0552	2011-10-11 10:09	2011-09-29	Show	GitHub Exploit DB Packet Storm

257863	4	警告	株式会社アークウェブ	-	A-Form におけるアクセス制限不備の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2676	2011-10-7 12:04	2011-10-7	Show	GitHub Exploit DB Packet Storm

257864	5	警告	utage.org	-	宴会くんにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2675	2011-10-7 12:03	2011-10-7	Show	GitHub Exploit DB Packet Storm

257865	2.6	注意	HTC Corporation	-	複数の Android 用 HTC 製品における電話番号およびその他の重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-3975	2011-10-7 11:46	2011-10-3	Show	GitHub Exploit DB Packet Storm

257866	5	警告	FFmpeg	-	FFmpeg の decode_residual_inter 関数における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-3974	2011-10-7 11:33	2011-10-2	Show	GitHub Exploit DB Packet Storm

257867	4.3	警告	PunBB	-	PunBB の include/functions.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3371	2011-10-7 11:29	2011-10-2	Show	GitHub Exploit DB Packet Storm

257868	9	危険	ヒューレット・パッカード	-	HP NonStop Servers における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2411	2011-10-7 11:26	2011-09-19	Show	GitHub Exploit DB Packet Storm

257869	4.3	警告	TWiki	-	TWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3010	2011-10-7 11:20	2011-09-22	Show	GitHub Exploit DB Packet Storm

257870	4.3	警告	Mozilla Foundation	-	Mozilla Firefox および SeaMonkey におけるキー操作を読み取られる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-3866	2011-10-7 11:10	2011-09-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
266961	6.1	MEDIUM Network	nexusphp_project	nexusphp	Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the q parameter to searchsuggest.php.	CWE-79 Cross-site Scripting	CVE-2017-12798	2024-11-21 12:10	2017-08-11	Show	GitHub Exploit DB Packet Storm

266962	6.1	MEDIUM Network	nexusphp_project	nexusphp	Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via some parameter to usersearch.php.	CWE-79 Cross-site Scripting	CVE-2017-12777	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

266963	9.8	CRITICAL Network	finecms_project	finecms	finecms in 1.9.5\controllers\member\ContentController.php allows remote attackers to operate website database	CWE-89 SQL Injection	CVE-2017-12774	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

266964	9.8	CRITICAL Network	linux canonical	linux_kernel ubuntu_linux	In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is copied into a local buffer of constant size using strcpy without a length check which can cause a buffer overflow. This affects the Linux …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-12762	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

266965	7.2	HIGH Network	extplorer	extplorer	Command inject in transfer from another server in extplorer 2.1.9 and prior allows attacker to inject command via the userfile[0] parameter.	CWE-77 Command Injection	CVE-2017-12756	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

266966	8.8	HIGH Network	asuswrt-merlin	asuswrt-merlin	Stack buffer overflow in httpd in Asuswrt-Merlin firmware 380.67_0RT-AC5300 and earlier for ASUS devices and ASUS firmware for ASUS RT-AC5300, RT_AC1900P, RT-AC68U, RT-AC68P, RT-AC88U, RT-AC66U, RT-A…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-12754	2024-11-21 12:10	2017-08-10	Show	GitHub Exploit DB Packet Storm

266967	8.8	HIGH Network	taglib debian	taglib debian_linux	In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspeci…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2017-12678	2024-11-21 12:10	2017-08-8	Show	GitHub Exploit DB Packet Storm

266968	6.1	MEDIUM Network	identityserver	identityserver3	IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an Angular expression on the authorize response page, which might allow remote attackers to obtain sensitive information about the Iden…	CWE-79 Cross-site Scripting	CVE-2017-12677	2024-11-21 12:10	2017-08-8	Show	GitHub Exploit DB Packet Storm

266969	6.5	MEDIUM Network	imagemagick	imagemagick	In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service.	CWE-20 CWE-772 Improper Input Validation Missing Release of Resource after Effective Lifetime	CVE-2017-12676	2024-11-21 12:10	2017-08-8	Show	GitHub Exploit DB Packet Storm

266970	6.5	MEDIUM Network	imagemagick	imagemagick	In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to c…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-12675	2024-11-21 12:10	2017-08-8	Show	GitHub Exploit DB Packet Storm