Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258171 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1240 2011-05-9 11:52 2011-04-12 Show GitHub Exploit DB Packet Storm
258172 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1239 2011-05-9 11:51 2011-04-12 Show GitHub Exploit DB Packet Storm
258173 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1238 2011-05-9 11:50 2011-04-12 Show GitHub Exploit DB Packet Storm
258174 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1237 2011-05-9 11:49 2011-04-12 Show GitHub Exploit DB Packet Storm
258175 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1236 2011-05-9 11:48 2011-04-12 Show GitHub Exploit DB Packet Storm
258176 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1235 2011-05-9 11:46 2011-04-12 Show GitHub Exploit DB Packet Storm
258177 6.8 警告 freedesktop.org
サイバートラスト株式会社
foolabs
OpenOffice.org Project
レッドハット		 - xpdf および poppler などの製品で利用される PDF パーサの FoFiType1::parse 関数における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3704 2011-05-9 11:29 2010-10-7 Show GitHub Exploit DB Packet Storm
258178 6.8 警告 freedesktop.org
サイバートラスト株式会社
foolabs
OpenOffice.org Project
レッドハット		 - xpdf および poppler などの製品で利用される PDF パーサの Gfx::getPos 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3702 2011-05-9 11:26 2010-10-7 Show GitHub Exploit DB Packet Storm
258179 7.5 危険 サイバートラスト株式会社
The Perl Foundation
レッドハット
オラクル		 - Perl の Safe モジュールにおける任意のコードを挿入または実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1168 2011-05-9 11:13 2010-06-7 Show GitHub Exploit DB Packet Storm
258180 9.3 危険 サン・マイクロシステムズ
サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - Mozilla NSS の正規表現の解析における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2404 2011-05-9 11:11 2009-08-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283691 - solarwinds server_and_application_monitor Multiple stack-based buffer overflows in the TSUnicodeGraphEditorControl in SolarWinds Server and Application Monitor (SAM) allow remote attackers to execute arbitrary code via unspecified vectors to… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-1500 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283692 - samsung samsung_security_manager The ActiveMQ Broker in Samsung Security Manager (SSM) before 1.31 allows remote attackers to delete arbitrary files, and consequently cause a denial of service, via a DELETE request. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-1499 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283693 - persistent_systems radia_client_automation Persistent Systems Radia Client Automation does not properly restrict access to certain request, which allows remote attackers to (1) enumerate user accounts via a getUsers request, (2) assign a role… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-1498 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283694 - persistent_systems radia_client_automation radexecd.exe in Persistent Systems Radia Client Automation (RCA) 7.9, 8.1, 9.0, and 9.1 allows remote attackers to execute arbitrary commands via a crafted request to TCP port 3465. CWE-94
Code Injection 		CVE-2015-1497 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283695 - motorola motorola_scanner_sdk Motorola Scanner SDK uses weak permissions for (1) CoreScanner.exe, (2) rsmdriverproviderservice.exe, and (3) ScannerService.exe, which allows local users to gain privileges via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-1496 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283696 - motorola motorola_scanner_sdk Multiple stack-based buffer overflows in Motorola Scanner SDK allow remote attackers to execute arbitrary code via a crafted string to the Open method in (1) IOPOSScanner.ocx or (2) IOPOSScale.ocx. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-1495 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283697 - easing_slider_project easing_slider Cross-site scripting (XSS) vulnerability in the Easing Slider plugin before 2.2.0.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the edit parameter in the (1) easi… CWE-79
Cross-site Scripting 		CVE-2015-1436 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283698 - mylittleforum my_little_forum Cross-site scripting (XSS) vulnerability in my little forum before 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the back parameter to index.php. CWE-79
Cross-site Scripting 		CVE-2015-1435 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283699 - mylittleforum my_little_forum Multiple SQL injection vulnerabilities in my little forum before 2.3.4 allow remote administrators to execute arbitrary SQL commands via the (1) letter parameter in a user action or (2) edit_category… CWE-89
SQL Injection 		CVE-2015-1434 2024-11-21 11:25 2015-02-17 Show GitHub Exploit DB Packet Storm
283700 - topline_systems opportunity_form Topline Opportunity Form (aka XLS Opp form) before 2015-02-15 does not properly restrict access to database-connection strings, which allows attackers to read the cleartext version of sensitive crede… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-1608 2024-11-21 11:25 2015-02-16 Show GitHub Exploit DB Packet Storm