Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
259001 5.8 警告 Apache Software Foundation - Apache Tomcat におけるアクセス制限を回避される脆弱性 CWE-DesignError
CVE-2011-1183 2011-04-28 15:31 2011-04-1 Show GitHub Exploit DB Packet Storm
259002 5 警告 Apache Software Foundation - Apache Tomcat の HTTP BIO コネクタにおけるレスポンスを閲覧される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1475 2011-04-28 15:29 2011-03-28 Show GitHub Exploit DB Packet Storm
259003 2.1 注意 オラクル - Oracle Solaris 10 に認証情報漏えいの脆弱性 - CVE-2011-0412 2011-04-28 15:27 2011-04-6 Show GitHub Exploit DB Packet Storm
259004 - - デル - Dell Kace K2000 Systems Deployment Appliance に脆弱性 - - 2011-04-28 15:21 2011-04-6 Show GitHub Exploit DB Packet Storm
259005 - - ネットギア - Netgear Prosafe Wireless-N Access Point に複数の脆弱性 - - 2011-04-28 15:19 2011-04-6 Show GitHub Exploit DB Packet Storm
259006 7.2 危険 Prefix WhoIs Project - pWhois Layer Four Traceroute に権限昇格の脆弱性 CWE-noinfo
情報不足
CVE-2011-0765 2011-04-28 15:18 2011-04-5 Show GitHub Exploit DB Packet Storm
259007 6.9 警告 レッドハット - policycoreutils パッケージの seunshare_mount 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2011-1011 2011-04-28 15:11 2011-02-24 Show GitHub Exploit DB Packet Storm
259008 4.3 警告 マイクロソフト - Microsoft Windows にスクリプトインジェクションの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-0096 2011-04-28 14:33 2011-01-31 Show GitHub Exploit DB Packet Storm
259009 9.3 危険 マイクロソフト - Microsoft WMI Administrative Tools の WBEMSingleView.ocx ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-3973 2011-04-28 14:29 2010-12-23 Show GitHub Exploit DB Packet Storm
259010 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2010-0811 2011-04-28 14:25 2010-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273111 6.1 MEDIUM
Network
sophos puremessage Cross-site scripting (XSS) vulnerability in Sophos PureMessage for UNIX before 6.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting
CVE-2016-6217 2024-11-21 11:55 2018-01-27 Show GitHub Exploit DB Packet Storm
273112 4.3 MEDIUM
Network
ibm rational_quality_manager
rational_team_concert
rational_doors_next_generation
rational_engineering_lifecycle_manager
rational_rhapsody_design_manager
rational_software_architect_design…
IBM Jazz technology based products might divulge information that might be useful in helping attackers through error messages. IBM X-Force ID: 116868. CWE-200
Information Exposure
CVE-2016-6024 2024-11-21 11:55 2017-11-28 Show GitHub Exploit DB Packet Storm
273113 9.8 CRITICAL
Network
jantek jtc-200_firmware An Improper Authentication issue was discovered in JanTek JTC-200, all versions. The improper authentication could provide an undocumented BusyBox Linux shell accessible over the TELNET service witho… CWE-287
Improper Authentication
CVE-2016-5791 2024-11-21 11:55 2017-10-13 Show GitHub Exploit DB Packet Storm
273114 8.0 HIGH
Network
jantek jtc-200_firmware A Cross-site Request Forgery issue was discovered in JanTek JTC-200, all versions. An attacker could perform actions with the same permissions as a victim user, provided the victim has an active sess… CWE-352
 Origin Validation Error
CVE-2016-5789 2024-11-21 11:55 2017-10-13 Show GitHub Exploit DB Packet Storm
273115 7.0 HIGH
Local
google android drivers/net/ethernet/msm/rndis_ipa.c in the Qualcomm networking driver in Android allows remote attackers to execute arbitrary code via a crafted application compromising a privileged process. CWE-264
Permissions, Privileges, and Access Controls
CVE-2016-5868 2024-11-21 11:55 2017-09-26 Show GitHub Exploit DB Packet Storm
273116 7.3 HIGH
Network
automatedlogic
carrier
i-vu
sitescan_web
automatedlogic_webctrl
An XXE issue was discovered in Automated Logic Corporation (ALC) Liebert SiteScan Web Version 6.5 and prior, ALC WebCTRL Version 6.5 and prior, and Carrier i-Vu Version 6.5 and prior. An attacker cou… CWE-611
XXE
CVE-2016-5795 2024-11-21 11:55 2017-09-1 Show GitHub Exploit DB Packet Storm
273117 7.5 HIGH
Network
westermo mrd-305-din_firmware
mrd-315-din_firmware
mrd-355-din_firmware
mrd-455-din_firmware
A Use of Hard-Coded Cryptographic Key issue was discovered in MRD-305-DIN versions older than 1.7.5.0, and MRD-315, MRD-355, MRD-455 versions older than 1.7.5.0. The device utilizes hard-coded privat… CWE-798
 Use of Hard-coded Credentials
CVE-2016-5816 2024-11-21 11:55 2017-08-26 Show GitHub Exploit DB Packet Storm
273118 5.3 MEDIUM
Network
redhat jboss_enterprise_application_platform Get requests in JBoss Enterprise Application Platform (EAP) 7 disclose internal IP addresses to remote attackers. CWE-200
Information Exposure
CVE-2016-6311 2024-11-21 11:55 2017-08-23 Show GitHub Exploit DB Packet Storm
273119 5.5 MEDIUM
Local
redhat enterprise_virtualization oVirt Engine discloses the ENGINE_HTTPS_PKI_TRUST_STORE_PASSWORD in /var/log/ovirt-engine/engine.log file in RHEV before 4.0. CWE-200
Information Exposure
CVE-2016-6310 2024-11-21 11:55 2017-08-23 Show GitHub Exploit DB Packet Storm
273120 9.8 CRITICAL
Network
google android In all Qualcomm products with Android releases from CAF using the Linux kernel, arguments to several QTEE syscalls are not properly validated. CWE-20
 Improper Input Validation 
CVE-2016-5872 2024-11-21 11:55 2017-08-19 Show GitHub Exploit DB Packet Storm