Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258011 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0087 2011-03-7 14:54 2011-02-8 Show GitHub Exploit DB Packet Storm
258012 7.2 危険 マイクロソフト - 複数の Microsoft 製品の win32k.sys における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0086 2011-03-7 14:52 2011-02-8 Show GitHub Exploit DB Packet Storm
258013 7.2 危険 マイクロソフト - Microsoft Windows XP の Trace Events 機能における権限昇格の脆弱性 CWE-119
バッファエラー 		CVE-2011-0045 2011-03-7 14:49 2011-02-8 Show GitHub Exploit DB Packet Storm
258014 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Local Security Authority Subsystem Service における権限昇格の脆弱性 CWE-287
不適切な認証 		CVE-2011-0039 2011-03-7 14:47 2011-02-8 Show GitHub Exploit DB Packet Storm
258015 6.8 警告 OTRS プロジェクト - OTRS における OS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2011-0456 2011-03-7 12:02 2011-03-7 Show GitHub Exploit DB Packet Storm
258016 7.1 危険 マイクロソフト - 複数の Microsoft 製品の JScript および VBScript スクリプトエンジンにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-0031 2011-03-4 15:12 2011-02-8 Show GitHub Exploit DB Packet Storm
258017 9.3 危険 マイクロソフト - Microsoft Visio の ELEMENTS.DLL における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0093 2011-03-4 15:09 2011-02-8 Show GitHub Exploit DB Packet Storm
258018 9.3 危険 マイクロソフト - Microsoft Visio の LZW ストリーム圧縮機能における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0092 2011-03-4 15:06 2011-02-8 Show GitHub Exploit DB Packet Storm
258019 5 警告 マイクロソフト - Windows Server 2003 上で稼働する Microsoft Active Directory におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0040 2011-03-4 15:02 2011-02-8 Show GitHub Exploit DB Packet Storm
258020 9.3 危険 マイクロソフト - 複数の Microsoft 製品の Windows OpenType Compact Font Format ドライバにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0033 2011-03-4 15:00 2011-02-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278681 7.0 HIGH
Local 		lenovo system_update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A race condition was reported (fixed and publicly disclosed in 2015) in Lenovo System Update version 5.07.0008 and … CWE-362
Race Condition 		CVE-2015-7335 2024-11-21 11:36 2020-03-28 Show GitHub Exploit DB Packet Storm
278682 7.8 HIGH
Local 		lenovo system_update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A local privilege escalation vulnerability was reported (fixed and publicly disclosed in 2015) in Lenovo System Upd… CWE-269
 Improper Privilege Management 		CVE-2015-7334 2024-11-21 11:36 2020-03-28 Show GitHub Exploit DB Packet Storm
278683 7.8 HIGH
Local 		lenovo system_update MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A local privilege escalation vulnerability was reported (fixed and publicly disclosed in 2015) in Lenovo System Upd… CWE-269
 Improper Privilege Management 		CVE-2015-7333 2024-11-21 11:36 2020-03-28 Show GitHub Exploit DB Packet Storm
278684 7.2 HIGH
Network 		joobi jnews JNews Joomla Component before 8.5.0 allows SQL injection via upload thumbnail, Queue Search Field, Subscribers Search Field, or Newsletters Search Field. CWE-89
SQL Injection 		CVE-2015-7342 2024-11-21 11:36 2020-03-10 Show GitHub Exploit DB Packet Storm
278685 8.8 HIGH
Network 		joobi jnews JNews Joomla Component before 8.5.0 allows arbitrary File Upload via Subscribers or Templates, as demonstrated by the .php5 extension. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2015-7341 2024-11-21 11:36 2020-03-10 Show GitHub Exploit DB Packet Storm
278686 7.2 HIGH
Network 		gwesystems jevents JEvents Joomla Component before 3.4.0 RC6 has SQL Injection via evid in a Manage Events action. CWE-89
SQL Injection 		CVE-2015-7340 2024-11-21 11:36 2020-03-10 Show GitHub Exploit DB Packet Storm
278687 8.8 HIGH
Network 		widgetfactorylimited jce JCE Joomla Component 2.5.0 to 2.5.2 allows arbitrary file upload via a .php file extension for an image file to the /com_jce/editor/libraries/classes/browser.php script. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2015-7339 2024-11-21 11:36 2020-03-10 Show GitHub Exploit DB Packet Storm
278688 7.2 HIGH
Network 		acyba acymailing SQL Injection exists in AcyMailing Joomla Component before 4.9.5 via exportgeolocorder in a geolocation_longitude request to index.php. CWE-89
SQL Injection 		CVE-2015-7338 2024-11-21 11:36 2020-03-10 Show GitHub Exploit DB Packet Storm
278689 4.8 MEDIUM
Network 		hikashop hikashop HikaShop Joomla Component before 2.6.0 has XSS via an injected payload[/caption]. CWE-79
Cross-site Scripting 		CVE-2015-7344 2024-11-21 11:36 2020-03-9 Show GitHub Exploit DB Packet Storm
278690 4.8 MEDIUM
Network 		joobi jnews JNews Joomla Component before 8.5.0 has XSS via the mailingsearch parameter. CWE-79
Cross-site Scripting 		CVE-2015-7343 2024-11-21 11:36 2020-03-9 Show GitHub Exploit DB Packet Storm