Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258621 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意コードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1268 2011-06-24 10:04 2011-06-14 Show GitHub Exploit DB Packet Storm
258622 7.8 危険 マイクロソフト - Microsoft Windows の Distributed File System 実装におけるサービス運用妨害 (システムハング) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1869 2011-06-24 10:03 2011-06-14 Show GitHub Exploit DB Packet Storm
258623 10 危険 マイクロソフト - Microsoft Windows の Distributed File System 実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1868 2011-06-24 10:01 2011-06-14 Show GitHub Exploit DB Packet Storm
258624 5.7 警告 Linux
レッドハット
- Linux kernel の RPC サーバソケット機能におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0714 2011-06-23 11:48 2011-03-8 Show GitHub Exploit DB Packet Storm
258625 9.3 危険 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1873 2011-06-23 11:42 2011-06-14 Show GitHub Exploit DB Packet Storm
258626 10 危険 マイクロソフト - Microsoft Forefront Threat Management Gateway (TMG) 2010 クライアントの NSPLookupServiceNext 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1889 2011-06-23 11:30 2011-06-14 Show GitHub Exploit DB Packet Storm
258627 9.3 危険 マイクロソフト - Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-0664 2011-06-23 11:29 2011-06-14 Show GitHub Exploit DB Packet Storm
258628 9.3 危険 マイクロソフト - Microsoft Windows の OLE オートメーションプロトコル実装における整数アンダーフローの脆弱性 CWE-189
数値処理の問題
CVE-2011-0658 2011-06-23 11:28 2011-06-14 Show GitHub Exploit DB Packet Storm
258629 4.3 警告 マイクロソフト - Microsoft Windows の MHTML プロトコルハンドラにおけるクロスサイトスクリプティングを誘導される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1894 2011-06-23 11:27 2011-06-14 Show GitHub Exploit DB Packet Storm
258630 5.5 警告 ターボリナックス
Timo Sirainen
レッドハット
- Dovecot の plugins/acl/acl-backend-vfile.c におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3707 2011-06-23 11:15 2010-10-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
283531 8.8 HIGH
Network
koha koha Cross-site scripting (XSS) vulnerability in opac-addbybiblionumber.pl in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, and 3.20.x before 3.20.1 allows remote attackers to inject arbitrary web sc… CWE-352
 Origin Validation Error
CVE-2015-4639 2024-11-21 11:31 2017-07-21 Show GitHub Exploit DB Packet Storm
283532 7.8 HIGH
Local
lenovo mouse_suite Lenovo Mouse Suite before 6.73 allows local users to run arbitrary code with administrator privileges. CWE-264
Permissions, Privileges, and Access Controls
CVE-2015-4596 2024-11-21 11:31 2017-06-14 Show GitHub Exploit DB Packet Storm
283533 7.5 HIGH
Network
download_zip_attachments_project download_zip_attachments Directory traversal vulnerability in the Download Zip Attachments plugin 1.0 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the File parameter to download.php. CWE-22
Path Traversal
CVE-2015-4704 2024-11-21 11:31 2017-05-23 Show GitHub Exploit DB Packet Storm
283534 9.8 CRITICAL
Network
aviary_image_editor_add-on_for_gravity_forms_project aviary_image_editor_add-on_for_gravity_forms Unrestricted file upload vulnerability in includes/upload.php in the Aviary Image Editor Add-on For Gravity Forms plugin 3.0 beta for WordPress allows remote attackers to execute arbitrary code by up… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2015-4455 2024-11-21 11:31 2017-05-23 Show GitHub Exploit DB Packet Storm
283535 7.5 HIGH
Network
squashfs_project squashfs (1) unsquash-1.c, (2) unsquash-2.c, (3) unsquash-3.c, and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of service (application crash) via a crafted input. CWE-20
 Improper Input Validation 
CVE-2015-4646 2024-11-21 11:31 2017-04-14 Show GitHub Exploit DB Packet Storm
283536 5.4 MEDIUM
Network
clip-bucket clipbucket Multiple cross-site scripting (XSS) vulnerabilities in ClipBucket 2.7.0.5 allow remote authenticated users to inject arbitrary web script or HTML via (1) the collection_description parameter to uploa… CWE-79
Cross-site Scripting
CVE-2015-4673 2024-11-21 11:31 2017-04-7 Show GitHub Exploit DB Packet Storm
283537 7.5 HIGH
Network
freeradius
suse
freeradius
linux_enterprise_software_development_kit
linux_enterprise_server
FreeRADIUS 2.2.x before 2.2.8 and 3.0.x before 3.0.9 does not properly check revocation of intermediate CA certificates. CWE-295
Improper Certificate Validation 
CVE-2015-4680 2024-11-21 11:31 2017-04-6 Show GitHub Exploit DB Packet Storm
283538 7.5 HIGH
Adjacent
hak5 wi-fi_pineapple_firmware Hak5 WiFi Pineapple 2.0 through 2.3 uses predictable CSRF tokens. CWE-284
Improper Access Control
CVE-2015-4624 2024-11-21 11:31 2017-04-1 Show GitHub Exploit DB Packet Storm
283539 7.5 HIGH
Network
call-cc chicken The string-translate* procedure in the data-structures unit in CHICKEN before 4.10.0 allows remote attackers to cause a denial of service (crash). CWE-20
 Improper Input Validation 
CVE-2015-4556 2024-11-21 11:31 2017-03-29 Show GitHub Exploit DB Packet Storm
283540 5.5 MEDIUM
Local
squashfs_project
fedoraproject
squashfs
fedora
Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a denial of service (application crash) via a crafted input, which tr… CWE-190
 Integer Overflow or Wraparound
CVE-2015-4645 2024-11-21 11:31 2017-03-17 Show GitHub Exploit DB Packet Storm