Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226991	6.3	警告	シスコシステムズ	-	Android 用 Cisco Jabber IM アプリケーションの XML パーサにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-1161	2013-03-27 16:33	2013-03-12	Show	GitHub Exploit DB Packet Storm

226992	1.9	注意	Linux	-	Linux Kernel の net/bridge/br_mdb.c における重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2013-2636	2013-03-26 17:46	2013-03-20	Show	GitHub Exploit DB Packet Storm

226993	8.5	危険	ヒューレット・パッカード	-	HP Systems Insight Manager における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2012-1999	2013-03-26 17:30	2012-04-30	Show	GitHub Exploit DB Packet Storm

226994	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2417	2013-03-26 17:02	2011-08-9	Show	GitHub Exploit DB Packet Storm

226995	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-2416	2013-03-26 16:58	2011-08-9	Show	GitHub Exploit DB Packet Storm

226996	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2415	2013-03-26 16:56	2011-08-9	Show	GitHub Exploit DB Packet Storm

226997	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2414	2013-03-26 16:54	2011-08-9	Show	GitHub Exploit DB Packet Storm

226998	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2140	2013-03-26 16:53	2011-08-9	Show	GitHub Exploit DB Packet Storm

226999	6.4	警告	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における同一生成元ポリシーを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2139	2013-03-26 16:52	2011-08-9	Show	GitHub Exploit DB Packet Storm

227000	10	危険	ヒューレット・パッカードアドビシステムズレッドハット	-	Adobe Flash Player および Adobe AIR における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-2138	2013-03-26 16:48	2011-08-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
311221	-		-	-	StepSecurity's Harden-Runner provides network egress filtering and runtime security for GitHub-hosted and self-hosted runners. Versions of step-security/harden-runner prior to v2.10.2 contain multipl…	CWE-78 OS Command	CVE-2024-52587	2024-11-20 00:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311222	-		-	-	AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account.	-	CVE-2024-51051	2024-11-20 00:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311223	-		-	-	An arbitrary file upload vulnerability in the component /main/fileupload.php of AVSCMS v8.2.0 allows attackers to execute arbitrary code via uploading a crafted file.	-	CVE-2024-51053	2024-11-20 00:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311224	-		-	-	An XML External Entity (XXE) vulnerability in the Import object and Translation Memory import functionalities of WorldServer v11.8.2 to access sensitive information and execute arbitrary commands via…	-	CVE-2024-50848	2024-11-20 00:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311225	-		-	-	aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. In versions starting with 3.10.6 and prior to 3.10.11, a memory leak can occur when a request produces a MatchInfoError…	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2024-52303	2024-11-20 00:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311226	-		-	-	MarkUs is a web application for the submission and grading of student assignments. In versions prior to 2.4.8, an arbitrary file write vulnerability in the update/upload/create file methods in Contro…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-51743	2024-11-20 00:35	2024-11-19	Show	GitHub Exploit DB Packet Storm

311227	4.3	MEDIUM Network	dolibarr	dolibarr_erp\/crm	An Improper Authorization vulnerability exists in Dolibarr versions prior to the 'develop' branch. A user with restricted permissions in the 'Reception' section is able to access specific reception d…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2021-3991	2024-11-20 00:31	2024-11-15	Show	GitHub Exploit DB Packet Storm

311228	4.8	MEDIUM Network	phpipam	phpipam	A Cross-Site Scripting (XSS) vulnerability in phpipam/phpipam versions prior to 1.4.7 allows attackers to execute arbitrary JavaScript code in the browser of a victim. This vulnerability affects the …	CWE-79 Cross-site Scripting	CVE-2022-1226	2024-11-20 00:30	2024-11-15	Show	GitHub Exploit DB Packet Storm

311229	7.7	HIGH Network	linuxfoundation	harbor	Harbor fails to validate the user permissions when updating p2p preheat policies. By sending a request to update a p2p preheat policy with an id that belongs to a project that the currently authentic…	CWE-863 Incorrect Authorization	CVE-2022-31668	2024-11-20 00:25	2024-11-14	Show	GitHub Exploit DB Packet Storm

311230	6.4	MEDIUM Network	linuxfoundation	harbor	Harbor fails to validate the user permissions when updating a robot account that belongs to a project that the authenticated user doesn’t have access to. By sending a request that attempts to updat…	CWE-863 Incorrect Authorization	CVE-2022-31667	2024-11-20 00:25	2024-11-14	Show	GitHub Exploit DB Packet Storm