Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258941 7.2 危険 マイクロソフト - Microsoft Windows XP の win32k.sys における権限昇格の脆弱性 CWE-Other
その他
CVE-2011-0673 2011-05-9 11:56 2011-04-12 Show GitHub Exploit DB Packet Storm
258942 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1242 2011-05-9 11:55 2011-04-12 Show GitHub Exploit DB Packet Storm
258943 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1241 2011-05-9 11:53 2011-04-12 Show GitHub Exploit DB Packet Storm
258944 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1240 2011-05-9 11:52 2011-04-12 Show GitHub Exploit DB Packet Storm
258945 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1239 2011-05-9 11:51 2011-04-12 Show GitHub Exploit DB Packet Storm
258946 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1238 2011-05-9 11:50 2011-04-12 Show GitHub Exploit DB Packet Storm
258947 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1237 2011-05-9 11:49 2011-04-12 Show GitHub Exploit DB Packet Storm
258948 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1236 2011-05-9 11:48 2011-04-12 Show GitHub Exploit DB Packet Storm
258949 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格の脆弱性 CWE-399
リソース管理の問題
CVE-2011-1235 2011-05-9 11:46 2011-04-12 Show GitHub Exploit DB Packet Storm
258950 6.8 警告 freedesktop.org
サイバートラスト株式会社
foolabs
OpenOffice.org Project
レッドハット
- xpdf および poppler などの製品で利用される PDF パーサの FoFiType1::parse 関数における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2010-3704 2011-05-9 11:29 2010-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278021 4.7 MEDIUM
Local
linux
debian
linux_kernel
debian_linux
In the Linux kernel before 4.9.3, fs/xfs/xfs_aops.c allows local users to cause a denial of service (system crash) because there is a race condition between direct and memory-mapped I/O (associated w… CWE-362
Race Condition
CVE-2016-10741 2024-11-21 11:44 2019-02-2 Show GitHub Exploit DB Packet Storm
278022 4.9 MEDIUM
Network
atlassian crowd Various resources in Atlassian Crowd before version 2.10.1 allow remote attackers with administration rights to learn the passwords of configured LDAP directories by examining the responses to reques… CWE-200
Information Exposure
CVE-2016-10740 2024-11-21 11:44 2019-01-29 Show GitHub Exploit DB Packet Storm
278023 5.3 MEDIUM
Local
gnu
opensuse
glibc
leap
In the GNU C Library (aka glibc or libc6) through 2.28, the getaddrinfo function would successfully parse a string that contained an IPv4 address followed by whitespace and arbitrary characters, whic… CWE-20
 Improper Input Validation 
CVE-2016-10739 2024-11-21 11:44 2019-01-22 Show GitHub Exploit DB Packet Storm
278024 8.8 HIGH
Network
castlamp zenbership Zenbership v107 has CSRF via admin/cp-functions/event-add.php. CWE-352
 Origin Validation Error
CVE-2016-10738 2024-11-21 11:44 2019-01-16 Show GitHub Exploit DB Packet Storm
278025 5.4 MEDIUM
Network
s9y serendipity Serendipity 2.0.4 has XSS via the serendipity_admin.php serendipity[body] parameter. CWE-79
Cross-site Scripting
CVE-2016-10737 2024-11-21 11:44 2019-01-16 Show GitHub Exploit DB Packet Storm
278026 6.1 MEDIUM
Network
devpups social_pug The "Social Pug - Easy Social Share Buttons" plugin before 1.2.6 for WordPress allows XSS via the wp-admin/admin.php?page=dpsp-toolkit dpsp_message_class parameter. CWE-79
Cross-site Scripting
CVE-2016-10736 2024-11-21 11:44 2019-01-10 Show GitHub Exploit DB Packet Storm
278027 6.1 MEDIUM
Network
getbootstrap bootstrap In Bootstrap 3.x before 3.4.0 and 4.x-beta before 4.0.0-beta.2, XSS is possible in the data-target attribute, a different vulnerability than CVE-2018-14041. CWE-79
Cross-site Scripting
CVE-2016-10735 2024-11-21 11:44 2019-01-9 Show GitHub Exploit DB Packet Storm
278028 9.8 CRITICAL
Network
qualcomm mdm9206_firmware
mdm9607_firmware
mdm9650_firmware
sd_210_firmware
sd_212_firmware
sd_205_firmware
sd_835_firmware
sda660_firmware
While generating trusted application id, An integer overflow can occur giving the trusted application an invalid identity in Snapdragon Mobile and Snapdragon Wear in versions MDM9206, MDM9607, MDM965… CWE-190
 Integer Overflow or Wraparound
CVE-2016-10502 2024-11-21 11:44 2018-12-10 Show GitHub Exploit DB Packet Storm
278029 9.8 CRITICAL
Network
projectsend projectsend ProjectSend (formerly cFTP) r582 allows Insecure Direct Object Reference via includes/actions.log.export.php. CWE-285
Improper Authorization
CVE-2016-10734 2024-11-21 11:44 2018-10-29 Show GitHub Exploit DB Packet Storm
278030 9.8 CRITICAL
Network
projectsend projectsend ProjectSend (formerly cFTP) r582 allows directory traversal via file=../ in the process-zip-download.php query string. CWE-22
Path Traversal
CVE-2016-10733 2024-11-21 11:44 2018-10-29 Show GitHub Exploit DB Packet Storm