Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228781	5.8	警告	PayPal	-	PayPal WPS ToolKit における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2011-5237	2012-11-7 17:38	2012-11-6	Show	GitHub Exploit DB Packet Storm

228782	5.8	警告	CiviCRM	-	CiviCRM における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2011-5239	2012-11-7 17:38	2012-11-6	Show	GitHub Exploit DB Packet Storm

228783	5.8	警告	The PHP Group	-	Services_Twitter における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2011-5241	2012-11-7 17:38	2012-11-6	Show	GitHub Exploit DB Packet Storm

228784	5.8	警告	Moneris Solutions	-	Moneris eSelectPlus における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2011-5236	2012-11-7 17:38	2012-11-6	Show	GitHub Exploit DB Packet Storm

228785	5.8	警告	Magento, Inc.	-	Magento における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2011-5240	2012-11-7 17:38	2012-11-6	Show	GitHub Exploit DB Packet Storm

228786	5.8	警告	Matt Harris	-	tmhOAuth における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2011-5242	2012-11-7 17:38	2012-11-6	Show	GitHub Exploit DB Packet Storm

228787	5.8	警告	Abraham Williams	-	TwitterOAuth における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2011-5243	2012-11-7 17:38	2012-11-6	Show	GitHub Exploit DB Packet Storm

228788	5.8	警告	Cerulean Studios	-	Trillian における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5824	2012-11-7 17:38	2012-11-4	Show	GitHub Exploit DB Packet Storm

228789	5.8	警告	Tweepy	-	Tweepy における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5825	2012-11-7 17:38	2012-11-4	Show	GitHub Exploit DB Packet Storm

228790	5.8	警告	Open Source Classifieds	-	Open Source Classifieds における SSL サーバを偽装される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5823	2012-11-7 17:38	2012-11-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212791	6.0	MEDIUM Local	qemu	qemu	The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveragin…	CWE-476 NULL Pointer Dereference	CVE-2015-7549	2024-11-21 11:36	2017-10-30	Show	GitHub Exploit DB Packet Storm

212792	8.8	HIGH Local	qemu xen debian	qemu xen debian_linux	Heap-based buffer overflow in the pcnet_receive function in hw/net/pcnet.c in QEMU allows guest OS administrators to cause a denial of service (instance crash) or possibly execute arbitrary code via …	CWE-787 Out-of-bounds Write	CVE-2015-7504	2024-11-21 11:36	2017-10-17	Show	GitHub Exploit DB Packet Storm

212793	7.5	HIGH Network	zend	zend_framework	Zend Framework before 2.4.9, zend-framework/zend-crypt 2.4.x before 2.4.9, and 2.5.x before 2.5.2 allows remote attackers to recover the RSA private key.	CWE-320 Key Management Errors	CVE-2015-7503	2024-11-21 11:36	2017-10-11	Show	GitHub Exploit DB Packet Storm

212794	7.5	HIGH Network	nodejs	node.js	Node.js 4.0.0, 4.1.0, and 4.1.1 allows remote attackers to cause a denial of service.	CWE-400 Uncontrolled Resource Consumption	CVE-2015-7384	2024-11-21 11:36	2017-10-11	Show	GitHub Exploit DB Packet Storm

212795	7.8	HIGH Local	ciphershed idrix truecrypt	ciphershed veracrypt truecrypt	The (1) IsVolumeAccessibleByCurrentUser and (2) MountDevice methods in Ntdriver.c in TrueCrypt 7.0, VeraCrypt before 1.15, and CipherShed, when running on Windows, do not check the impersonation leve…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-7359	2024-11-21 11:36	2017-10-3	Show	GitHub Exploit DB Packet Storm

212796	7.8	HIGH Local	ciphershed idrix truecrypt	ciphershed veracrypt truecrypt	The IsDriveLetterAvailable method in Driver/Ntdriver.c in TrueCrypt 7.0, VeraCrypt before 1.15, and CipherShed, when running on Windows, does not properly validate drive letter symbolic links, which …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-7358	2024-11-21 11:36	2017-10-3	Show	GitHub Exploit DB Packet Storm

212797	6.1	MEDIUM Network	udesign_project	udesign	Cross-site scripting (XSS) vulnerability in the uDesign (aka U-Design) theme 2.3.0 before 2.7.10 for WordPress allows remote attackers to inject arbitrary web script or HTML via a fragment identifier…	CWE-79 Cross-site Scripting	CVE-2015-7357	2024-11-21 11:36	2017-10-3	Show	GitHub Exploit DB Packet Storm

212798	6.1	MEDIUM Network	vasco	digipass	Cross-site scripting (XSS) vulnerability in the sample feedback.inc file in VASCO DIGIPASS authentication plug-in for Citrix Web Interface allows remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2015-7349	2024-11-21 11:36	2017-09-28	Show	GitHub Exploit DB Packet Storm

212799	5.9	MEDIUM Network	zyxel	nwa1100-n_firmware nwa1100-nh_firmware nwa1121-ni_firmware nwa1123-ac_firmware nwa1123-ni_firmware p-660hn-51_firmware p-663hn-51_firmware vmg1312-b10a_firmware vmg1312-b30a_f…	ZyXEL NWA1100-N, NWA1100-NH, NWA1121-NI, NWA1123-AC, and NWA1123-NI access points; P-660HN-51, P-663HN-51, VMG1312-B10A, VMG1312-B30A, VMG1312-B30B, VMG4380-B10A, VMG8324-B10A, VMG8924-B10A, VMG8924-…	CWE-310 Cryptographic Issues	CVE-2015-7256	2024-11-21 11:36	2017-09-28	Show	GitHub Exploit DB Packet Storm

212800	9.8	CRITICAL Network	testlink	testlink	SQL injection vulnerability in TestLink before 1.9.14 allows remote attackers to execute arbitrary SQL commands via the apikey parameter to lnl.php.	CWE-89 SQL Injection	CVE-2015-7390	2024-11-21 11:36	2017-09-27	Show	GitHub Exploit DB Packet Storm