Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228711 5 警告 Best Practical Solutions - Request Tracker におけるクロスサイトリクエストフォージェリ (CSRF) 保護メカニズムを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4734 2012-11-13 16:12 2012-10-25 Show GitHub Exploit DB Packet Storm
228712 6.8 警告 Best Practical Solutions - Request Tracker におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-4732 2012-11-13 16:11 2012-10-25 Show GitHub Exploit DB Packet Storm
228713 4 警告 Best Practical Solutions - Request Tracker 用 FAQ マネージャにおける任意のクラスの任意の記事を作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4731 2012-11-13 16:10 2012-10-25 Show GitHub Exploit DB Packet Storm
228714 3.5 注意 Best Practical Solutions - Request Tracker における任意のメールヘッダを挿入される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4730 2012-11-13 16:08 2012-10-25 Show GitHub Exploit DB Packet Storm
228715 5 警告 Drupal - Drupal の OpenID モジュールおける任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4554 2012-11-13 15:59 2012-10-17 Show GitHub Exploit DB Packet Storm
228716 6.8 警告 Drupal - Drupal における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4553 2012-11-13 15:58 2012-10-17 Show GitHub Exploit DB Packet Storm
228717 7.5 危険 Quagga
インターネットイニシアティブ		 - Quagga の ecommunity_ecom2str 関数におけるにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3327 2012-11-13 15:11 2011-09-26 Show GitHub Exploit DB Packet Storm
228718 5 警告 Quagga
インターネットイニシアティブ		 - Quagga の ospf_flood 関数におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3326 2012-11-13 15:10 2011-09-26 Show GitHub Exploit DB Packet Storm
228719 5 警告 Quagga
インターネットイニシアティブ		 - Quagga の ospfd 内の ospf_packet.c におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3325 2012-11-13 15:09 2011-09-26 Show GitHub Exploit DB Packet Storm
228720 5 警告 Quagga
インターネットイニシアティブ		 - Quagga の ospf6_lsa.c 内にある ospf6_lsa_is_changed 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3324 2012-11-13 15:08 2011-09-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199201 8.8 HIGH
Network 		microsoft lync
skype_for_business 		Skype for Business in Microsoft Lync 2013 SP1 and Skype for Business 2016 allows an attacker to steal an authentication hash that can be reused elsewhere, due to how Skype for Business handles authen… CWE-294
Authentication Bypass by Capture-replay  		CVE-2017-11786 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199202 7.0 HIGH
Local 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_10
windows_8.1 		Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability in the way it handles call… NVD-CWE-noinfo
CVE-2017-11783 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199203 7.8 HIGH
Local 		microsoft windows_server_2016
windows_10 		The Microsoft Server Block Message (SMB) on Microsoft Windows 10 1607 and Windows Server 2016, allows an elevation of privilege vulnerability when an attacker sends specially crafted requests to the … CWE-20
 Improper Input Validation  		CVE-2017-11782 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199204 8.1 HIGH
Network 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_10
windows_8.1 		The Microsoft Windows Domain Name System (DNS) DNSAPI.dll on Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a rem… NVD-CWE-noinfo
CVE-2017-11779 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199205 5.4 MEDIUM
Network 		microsoft sharepoint_enterprise_server Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted … CWE-79
Cross-site Scripting 		CVE-2017-11777 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199206 7.5 HIGH
Network 		microsoft outlook Microsoft Outlook 2016 allows an attacker to obtain the email content of a user, due to how Outlook 2016 discloses user email content, aka "Microsoft Outlook Information Disclosure Vulnerability." CWE-200
Information Exposure 		CVE-2017-11776 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199207 5.4 MEDIUM
Network 		microsoft sharepoint_enterprise_server Microsoft SharePoint Enterprise Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an attacker to exploit a cross-site scripting (XSS) vulnerability by sending a specially crafted … CWE-79
Cross-site Scripting 		CVE-2017-11775 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199208 7.8 HIGH
Local 		microsoft outlook Microsoft Outlook 2010 SP2, Outlook 2013 SP1 and RT SP1, and Outlook 2016 allow an attacker to execute arbitrary commands, due to how Microsoft Office handles objects in memory, aka "Microsoft Outloo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11774 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199209 7.5 HIGH
Network 		microsoft windows_rt_8.1
windows_server_2012
windows_server_2016
windows_7
windows_10
windows_8.1
windows_server_2008 		The Microsoft Windows Search component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1… CWE-200
Information Exposure 		CVE-2017-11772 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm
199210 7.8 HIGH
Local 		microsoft windows_server_2016
windows_10 		The Microsoft Windows TRIE component on Microsoft Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows a remote code execution vulnerability in the way it handles loading dll files, … NVD-CWE-noinfo
CVE-2017-11769 2024-11-21 12:08 2017-10-13 Show GitHub Exploit DB Packet Storm