Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258931 1.9 注意 IBM - IBM WebSphere Application Server の Administrative Scripting Tools における重要な情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2011-1310 2011-04-8 13:32 2010-07-19 Show GitHub Exploit DB Packet Storm
258932 4 警告 Cyber-Ark Software - Password Vault Web Access におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-0459 2011-04-8 12:01 2011-04-8 Show GitHub Exploit DB Packet Storm
258933 4.6 警告 Linux
レッドハット
- Linux kernel の KVM 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2010-3698 2011-04-8 11:23 2010-10-20 Show GitHub Exploit DB Packet Storm
258934 5 警告 IBM - IBM WebSphere Application Server の SOAP with Attachments API for Java (SAAJ) 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1322 2011-04-7 15:40 2010-07-29 Show GitHub Exploit DB Packet Storm
258935 6.5 警告 IBM - IBM WebSphere Application Server の AuthCache パージ実装における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1321 2011-04-7 15:38 2010-10-18 Show GitHub Exploit DB Packet Storm
258936 5 警告 IBM - IBM WebSphere Application Server の com.ibm.ws.jsp.runtime.WASJSPStrBufferImpl におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1317 2011-04-7 15:35 2010-07-29 Show GitHub Exploit DB Packet Storm
258937 5 警告 IBM - IBM WebSphere Application Server の org.apache.jasper.runtime.JspWriterImpl.response におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1318 2011-04-7 15:25 2010-09-22 Show GitHub Exploit DB Packet Storm
258938 5 警告 IBM - IBM WebSphere Application Server の Session Initiation Protocol におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1316 2011-04-7 15:23 2010-09-23 Show GitHub Exploit DB Packet Storm
258939 5 警告 IBM - IBM WebSphere Application Server のメッセージングエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1315 2011-04-7 15:21 2010-09-30 Show GitHub Exploit DB Packet Storm
258940 5 警告 IBM - IBM WebSphere Application Server の Service Integration Bus メッセージングエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1314 2011-04-7 15:19 2010-08-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288041 - zeromq zeromq libzmq before 4.0.6 and 4.1.x before 4.1.1 allows remote attackers to conduct downgrade attacks and bypass ZMTP v3 protocol security mechanisms via a ZMTP v2 or earlier header. CWE-20
 Improper Input Validation 
CVE-2014-9721 2024-11-21 11:21 2015-06-4 Show GitHub Exploit DB Packet Storm
288042 - avm fritz\!box AVM Fritz!Box allows remote attackers to execute arbitrary commands via shell metacharacters in the var:lang parameter to cgi-bin/webcm. CWE-78
OS Command 
CVE-2014-9727 2024-11-21 11:21 2015-05-30 Show GitHub Exploit DB Packet Storm
288043 - linux linux_kernel include/net/netfilter/nf_conntrack_extend.h in the netfilter subsystem in the Linux kernel before 3.14.5 uses an insufficiently large data type for certain extension data, which allows local users to… NVD-CWE-Other
CVE-2014-9715 2024-11-21 11:21 2015-05-27 Show GitHub Exploit DB Packet Storm
288044 - linux linux_kernel The Btrfs implementation in the Linux kernel before 3.19 does not ensure that the visible xattr state is consistent with a requested replacement, which allows local users to bypass intended ACL setti… CWE-362
Race Condition
CVE-2014-9710 2024-11-21 11:21 2015-05-27 Show GitHub Exploit DB Packet Storm
288045 - kogmbh webodf Cross-site scripting (XSS) vulnerability in WebODF before 0.5.4 allows remote attackers to inject arbitrary web script or HTML via a file name. CWE-79
Cross-site Scripting
CVE-2014-9716 2024-11-21 11:21 2015-05-8 Show GitHub Exploit DB Packet Storm
288046 - debian
qemu
debian_linux
qemu
The (1) BMDMA and (2) AHCI HBA interfaces in the IDE functionality in QEMU 1.0 through 2.1.3 have multiple interpretations of a function's return value, which allows guest OS users to cause a host OS… CWE-399
 Resource Management Errors
CVE-2014-9718 2024-11-21 11:21 2015-04-22 Show GitHub Exploit DB Packet Storm
288047 - opensuse
gnu
opensuse
less
The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2014-9488 2024-11-21 11:21 2015-04-15 Show GitHub Exploit DB Packet Storm
288048 - facebook hiphop_virtual_machine Cross-site scripting (XSS) vulnerability in the WddxPacket::recursiveAddVar function in HHVM (aka the HipHop Virtual Machine) before 3.5.0 allows remote attackers to inject arbitrary web script or HT… CWE-79
Cross-site Scripting
CVE-2014-9714 2024-11-21 11:21 2015-04-13 Show GitHub Exploit DB Packet Storm
288049 - openldap
debian
openldap
debian_linux
The default slapd configuration in the Debian openldap package 2.4.23-3 through 2.4.39-1.1 allows remote authenticated users to modify the user's permissions and other user attributes via unspecified… CWE-264
Permissions, Privileges, and Access Controls
CVE-2014-9713 2024-11-21 11:21 2015-04-1 Show GitHub Exploit DB Packet Storm
288050 - oracle
embedthis
juniper
enterprise_communications_broker
appweb
junos
Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x… CWE-476
 NULL Pointer Dereference
CVE-2014-9708 2024-11-21 11:21 2015-03-31 Show GitHub Exploit DB Packet Storm