Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258261 8.8 危険 アップル - Apple Safari にて使用される WebKit における任意のファイルを作成される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1774 2011-08-11 10:43 2011-07-21 Show GitHub Exploit DB Packet Storm
258262 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1462 2011-08-11 10:42 2011-07-21 Show GitHub Exploit DB Packet Storm
258263 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1457 2011-08-11 10:41 2011-07-21 Show GitHub Exploit DB Packet Storm
258264 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1453 2011-08-11 10:41 2011-07-21 Show GitHub Exploit DB Packet Storm
258265 7.5 危険 アップル
Google
- Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-1451 2011-08-11 10:40 2011-04-27 Show GitHub Exploit DB Packet Storm
258266 7.5 危険 アップル
Google
- Google Chrome の WebSockets の実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1449 2011-08-11 10:38 2011-04-27 Show GitHub Exploit DB Packet Storm
258267 7.5 危険 アップル
Google
- Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-1296 2011-08-11 10:37 2011-03-24 Show GitHub Exploit DB Packet Storm
258268 7.5 危険 アップル
Google
- Google Chrome および Apple Safari にて使用される WebKit におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2011-1295 2011-08-11 10:37 2011-03-24 Show GitHub Exploit DB Packet Storm
258269 7.5 危険 アップル
Google
- Google Chrome の HTMLCollection 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1293 2011-08-11 10:35 2011-03-24 Show GitHub Exploit DB Packet Storm
258270 9.3 危険 アップル - Apple Safari にて使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1288 2011-08-11 10:35 2011-07-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283531 8.8 HIGH
Network
koha koha Cross-site scripting (XSS) vulnerability in opac-addbybiblionumber.pl in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, and 3.20.x before 3.20.1 allows remote attackers to inject arbitrary web sc… CWE-352
 Origin Validation Error
CVE-2015-4639 2024-11-21 11:31 2017-07-21 Show GitHub Exploit DB Packet Storm
283532 7.8 HIGH
Local
lenovo mouse_suite Lenovo Mouse Suite before 6.73 allows local users to run arbitrary code with administrator privileges. CWE-264
Permissions, Privileges, and Access Controls
CVE-2015-4596 2024-11-21 11:31 2017-06-14 Show GitHub Exploit DB Packet Storm
283533 7.5 HIGH
Network
download_zip_attachments_project download_zip_attachments Directory traversal vulnerability in the Download Zip Attachments plugin 1.0 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the File parameter to download.php. CWE-22
Path Traversal
CVE-2015-4704 2024-11-21 11:31 2017-05-23 Show GitHub Exploit DB Packet Storm
283534 9.8 CRITICAL
Network
aviary_image_editor_add-on_for_gravity_forms_project aviary_image_editor_add-on_for_gravity_forms Unrestricted file upload vulnerability in includes/upload.php in the Aviary Image Editor Add-on For Gravity Forms plugin 3.0 beta for WordPress allows remote attackers to execute arbitrary code by up… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2015-4455 2024-11-21 11:31 2017-05-23 Show GitHub Exploit DB Packet Storm
283535 7.5 HIGH
Network
squashfs_project squashfs (1) unsquash-1.c, (2) unsquash-2.c, (3) unsquash-3.c, and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of service (application crash) via a crafted input. CWE-20
 Improper Input Validation 
CVE-2015-4646 2024-11-21 11:31 2017-04-14 Show GitHub Exploit DB Packet Storm
283536 5.4 MEDIUM
Network
clip-bucket clipbucket Multiple cross-site scripting (XSS) vulnerabilities in ClipBucket 2.7.0.5 allow remote authenticated users to inject arbitrary web script or HTML via (1) the collection_description parameter to uploa… CWE-79
Cross-site Scripting
CVE-2015-4673 2024-11-21 11:31 2017-04-7 Show GitHub Exploit DB Packet Storm
283537 7.5 HIGH
Network
freeradius
suse
freeradius
linux_enterprise_software_development_kit
linux_enterprise_server
FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates. CWE-295
Improper Certificate Validation 
CVE-2015-4680 2024-11-21 11:31 2017-04-6 Show GitHub Exploit DB Packet Storm
283538 7.5 HIGH
Adjacent
hak5 wi-fi_pineapple_firmware Hak5 WiFi Pineapple 2.0 through 2.3 uses predictable CSRF tokens. CWE-284
Improper Access Control
CVE-2015-4624 2024-11-21 11:31 2017-04-1 Show GitHub Exploit DB Packet Storm
283539 7.5 HIGH
Network
call-cc chicken The string-translate* procedure in the data-structures unit in CHICKEN before 4.10.0 allows remote attackers to cause a denial of service (crash). CWE-20
 Improper Input Validation 
CVE-2015-4556 2024-11-21 11:31 2017-03-29 Show GitHub Exploit DB Packet Storm
283540 5.5 MEDIUM
Local
squashfs_project
fedoraproject
squashfs
fedora
Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a denial of service (application crash) via a crafted input, which tr… CWE-190
 Integer Overflow or Wraparound
CVE-2015-4645 2024-11-21 11:31 2017-03-17 Show GitHub Exploit DB Packet Storm