Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258601 4.3 警告 マイクロソフト - Microsoft Internet Explorer 7 および 8 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1252 2011-06-27 16:22 2011-06-14 Show GitHub Exploit DB Packet Storm
258602 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1251 2011-06-27 16:21 2011-06-14 Show GitHub Exploit DB Packet Storm
258603 4.3 警告 マイクロソフト - Microsoft Internet Explorer 8 における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-1246 2011-06-27 16:21 2011-06-14 Show GitHub Exploit DB Packet Storm
258604 4.3 警告 マイクロソフト - 複数の Microsoft 製品における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2011-1280 2011-06-27 16:19 2011-06-14 Show GitHub Exploit DB Packet Storm
258605 5 警告 マイクロソフト - Microsoft Windows の SMB サーバーにおけるサービス運用妨害 (システムハング) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1267 2011-06-27 16:18 2011-06-14 Show GitHub Exploit DB Packet Storm
258606 4.9 警告 マイクロソフト - Microsoft Windows Server 2008 Gold の Hyper-V におけるサービス運用妨害 (ホスト OS 無限ループ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1872 2011-06-27 16:17 2011-06-14 Show GitHub Exploit DB Packet Storm
258607 7.2 危険 マイクロソフト - Microsoft Windows の Ancillary Function Driver における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1249 2011-06-27 16:16 2011-06-14 Show GitHub Exploit DB Packet Storm
258608 9.3 危険 マイクロソフト - Microsoft Excel における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1279 2011-06-27 16:16 2011-06-14 Show GitHub Exploit DB Packet Storm
258609 9.3 危険 マイクロソフト - Microsoft Excel 2002 および Office 2004 における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1278 2011-06-27 16:15 2011-06-14 Show GitHub Exploit DB Packet Storm
258610 4 警告 サイボウズ - サイボウズ Office におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1335 2011-06-24 12:02 2011-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
300001 - owncloud owncloud Incomplete blacklist vulnerability in ownCloud before 5.0.6 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted file, then accessing it via a direct request to the … NVD-CWE-Other
CVE-2013-2089 2024-11-21 10:51 2014-03-15 Show GitHub Exploit DB Packet Storm
300002 - owncloud owncloud The configuration loader in ownCloud 5.0.x before 5.0.6 allows remote attackers to obtain CSRF tokens and other sensitive information by reading an unspecified JavaScript file. CWE-200
Information Exposure
CVE-2013-2086 2024-11-21 10:51 2014-03-15 Show GitHub Exploit DB Packet Storm
300003 - owncloud owncloud Directory traversal vulnerability in apps/files_trashbin/index.php in ownCloud Server before 5.0.6 allows remote authenticated users to access arbitrary files via a .. (dot dot) in the dir parameter. CWE-22
Path Traversal
CVE-2013-2085 2024-11-21 10:51 2014-03-15 Show GitHub Exploit DB Packet Storm
300004 - brother mfc-9970cdw_firmware
mfc-9970cdw
Multiple cross-site scripting (XSS) vulnerabilities in the Brother MFC-9970CDW printer with firmware G (1.03) allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to… CWE-79
Cross-site Scripting
CVE-2013-2507 2024-11-21 10:51 2014-03-14 Show GitHub Exploit DB Packet Storm
300005 - batavi batavi Cross-site scripting (XSS) vulnerability in admin/templates/default.php in Batavi 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING to admin/index.php. CWE-79
Cross-site Scripting
CVE-2013-2289 2024-11-21 10:51 2014-03-12 Show GitHub Exploit DB Packet Storm
300006 - airvana
sprint
hubbub_c1-600-rt
airave_software
airave
Cross-site scripting (XSS) vulnerability in the administration page in Airvana HubBub C1-600-RT and Sprint AIRAVE 2.5 allows remote attackers to inject arbitrary web script or HTML via unspecified ve… CWE-79
Cross-site Scripting
CVE-2013-2270 2024-11-21 10:51 2014-03-9 Show GitHub Exploit DB Packet Storm
300007 - simplehrm simplehrm SQL injection vulnerability in the login page in flexycms/modules/user/user_manager.php in SimpleHRM 2.3, 2.2, and earlier allows remote attackers to execute arbitrary SQL commands via the username p… CWE-89
SQL Injection
CVE-2013-2498 2024-11-21 10:51 2014-03-1 Show GitHub Exploit DB Packet Storm
300008 - nagios nagios status.cgi in Nagios 4.0 before 4.0 beta4 and 3.x before 3.5.1 does not properly restrict access to certain users that are a contact for a service, which allows remote authenticated users to obtain s… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-2214 2024-11-21 10:51 2014-02-11 Show GitHub Exploit DB Packet Storm
300009 - python_bugzilla_project
fedoraproject
opensuse
python-bugzilla
fedora
opensuse
python-bugzilla before 0.9.0 does not validate X.509 certificates, which allows man-in-the-middle attackers to spoof Bugzilla servers via a crafted certificate. CWE-20
 Improper Input Validation 
CVE-2013-2191 2024-11-21 10:51 2014-02-8 Show GitHub Exploit DB Packet Storm
300010 - apache hadoop The RPC protocol implementation in Apache Hadoop 2.x before 2.0.6-alpha, 0.23.x before 0.23.9, and 1.x before 1.2.1, when the Kerberos security features are enabled, allows man-in-the-middle attacker… CWE-287
Improper Authentication
CVE-2013-2192 2024-11-21 10:51 2014-01-25 Show GitHub Exploit DB Packet Storm