Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258111 4.3 警告 The PHP Group - PHP の crypt 関数における認証を回避される脆弱性 CWE-310
暗号の問題
CVE-2011-3189 2011-09-15 13:40 2011-08-25 Show GitHub Exploit DB Packet Storm
258112 7.4 危険 シトリックス・システムズ
レッドハット
- Xen におけるホスト OS の権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1898 2011-09-15 13:38 2011-08-12 Show GitHub Exploit DB Packet Storm
258113 5.1 警告 レッドハット - foomatic-gui その他の製品で使用される pysmb.py における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-2899 2011-09-15 13:37 2011-08-23 Show GitHub Exploit DB Packet Storm
258114 5 警告 The PHP Group - PHP の addGlob および addPattern 関数におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1657 2011-09-14 10:52 2011-08-25 Show GitHub Exploit DB Packet Storm
258115 5 警告 Zabbix - Zabbix における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-3264 2011-09-14 10:50 2011-08-19 Show GitHub Exploit DB Packet Storm
258116 5 警告 Zabbix - Zabbix の zabbix_agentd におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-3263 2011-09-14 10:49 2011-08-19 Show GitHub Exploit DB Packet Storm
258117 4.3 警告 Zabbix - Zabbix の acknow.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-2904 2011-09-14 10:48 2011-08-19 Show GitHub Exploit DB Packet Storm
258118 5.4 警告 Squid-cache.org
インターネットイニシアティブ
- 透過型プロキシサーバが HTTP の Host ヘッダに依存して接続を行う問題 CWE-264
認可・権限・アクセス制御
CVE-2009-0801 2011-09-14 10:47 2009-02-24 Show GitHub Exploit DB Packet Storm
258119 6.8 警告 レッドハット
Pango.org
オラクル
- HarfBuzz の hb-buffer.c 内にある hb_buffer_ensure 関数における任意のコードを実行される脆弱性 CWE-Other
その他
CVE-2011-0064 2011-09-14 10:45 2011-03-1 Show GitHub Exploit DB Packet Storm
258120 6.5 警告 ヒューレット・パッカード
シマンテック
日立
- Symantec Backup Exec における NDMP コマンドを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-0546 2011-09-14 10:44 2011-05-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293531 - fishshell fish fish (aka fish-shell) 1.16.0 before 2.1.1 does not properly check the credentials, which allows local users to gain privileges via the universal variable socket, related to /tmp/fishd.socket.user per… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-2905 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293532 - unitrends enterprise_backup recoveryconsole/bpl/snmpd.php in Unitrends Enterprise Backup 7.3.0 allows remote attackers to bypass authentication by setting the auth parameter to a certain string. CWE-287
Improper Authentication
CVE-2014-3139 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293533 - xerox docushare SQL injection vulnerability in Xerox DocuShare before 6.53 Patch 6 Hotfix 2, 6.6.1 Update 1 before Hotfix 24, and 6.6.1 Update 2 before Hotfix 3 allows remote authenticated users to execute arbitrary… CWE-89
SQL Injection
CVE-2014-3138 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293534 - citrix netscaler_access_gateway_firmware
netscaler_application_delivery_controller_firmware
netscaler_access_gateway
netscaler_application_delivery_controller
Unspecified vulnerability in the management GUI in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unspecified impact and … NVD-CWE-noinfo
CVE-2014-2882 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293535 - citrix netscaler_access_gateway_firmware
netscaler_application_delivery_controller_firmware
netscaler_application_delivery_controller
netscaler_access_gateway
Unspecified vulnerability in the Diffie-Hellman key agreement implementation in the management GUI Java applet in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9… NVD-CWE-noinfo
CVE-2014-2881 2024-11-21 11:07 2014-05-2 Show GitHub Exploit DB Packet Storm
293536 - vbulletin vbulletin Multiple cross-site scripting (XSS) vulnerabilities in vBulletin 5.1.1 Alpha 9 allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO to privatemessage/new/, (2) the fold… CWE-79
Cross-site Scripting
CVE-2014-3135 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm
293537 - sap businessobjects Cross-site scripting (XSS) vulnerability in the InfoView application in SAP BusinessObjects allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2014-3134 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm
293538 - sap netweaver_java_application_server SAP Netweaver Java Application Server does not properly restrict access, which allows remote attackers to obtain the list of SAP systems registered on an SLD via an unspecified webdynpro, related to … CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3133 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm
293539 - sap background_processing SAP Background Processing does not properly restrict access, which allows remote authenticated users to obtain sensitive information via an unspecified RFC function, related to SAP Solution Manager 7… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3132 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm
293540 - sap profile_maintenance SAP Profile Maintenance does not properly restrict access, which allows remote authenticated users to obtain sensitive information via an unspecified RFC function, related to SAP Solution Manager 7.1. CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-3131 2024-11-21 11:07 2014-04-30 Show GitHub Exploit DB Packet Storm