Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248891	5	警告	Fetchmail Project	-	fetchmail におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1947	2012-03-27 18:43	2011-06-2	Show	GitHub Exploit DB Packet Storm

248892	7.2	危険	hongli lai	-	libgnomesu の gnomesu-pam-backend における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1946	2012-03-27 18:43	2011-07-7	Show	GitHub Exploit DB Packet Storm

248893	2.1	注意	Fedora Project レッドハット	-	Fedora の NetworkManager パッケージの libnm-util の destroy_one_secret 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-1943	2012-03-27 18:43	2011-06-14	Show	GitHub Exploit DB Packet Storm

248894	6.8	警告	VideoLAN FFmpeg Libav	-	VideoLAN VLC メディアプレイヤーなどの製品で使用される FFmpeg および libav の Sunplus SP5X JPEG デコーダにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-1931	2012-03-27 18:43	2011-07-7	Show	GitHub Exploit DB Packet Storm

248895	5	警告	Wouter Verhelst	-	nbd-server の nbd-server.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1925	2012-03-27 18:43	2011-05-31	Show	GitHub Exploit DB Packet Storm

248896	5	警告	The Tor Project	-	Tor の policy_summarize 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1924	2012-03-27 18:43	2011-02-28	Show	GitHub Exploit DB Packet Storm

248897	3.3	注意	ihji NetBSD	-	pmake などの製品で使用される NetBSD の make インクルードファイルにおける任意のファイルを上書される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-1920	2012-03-27 18:43	2011-05-23	Show	GitHub Exploit DB Packet Storm

248898	9.3	危険	Foxit Software Inc	-	Foxit Reader の FreeType エンジンのType 1 フォントデコーダにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1908	2012-03-27 18:43	2011-06-24	Show	GitHub Exploit DB Packet Storm

248899	5	警告	Trustwave	-	Trustwave WebDefend Enterprise におけるイベント収集テーブルを読まれる脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-1906	2012-03-27 18:43	2011-05-5	Show	GitHub Exploit DB Packet Storm

248900	6.8	警告	Proofpoint, Inc.	-	Proofpoint Protection Server の管理モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1905	2012-03-27 18:43	2011-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314781	5.3	MEDIUM Network	dorsettcontrols	infoscan	Dorsett Controls InfoScan is vulnerable due to a leak of possible sensitive information through the response headers and the rendered JavaScript prior to user login.	NVD-CWE-noinfo	CVE-2024-42493	2024-08-29 23:24	2024-08-9	Show	GitHub Exploit DB Packet Storm

314782	7.5	HIGH Network	dorsettcontrols	infoscan	Dorsett Controls Central Server update server has potential information leaks with an unprotected file that contains passwords and API keys.	NVD-CWE-noinfo	CVE-2024-39287	2024-08-29 23:23	2024-08-9	Show	GitHub Exploit DB Packet Storm

314783	3.7	LOW Network	dorsettcontrols	infoscan	The InfoScan client download page can be intercepted with a proxy, to expose filenames located on the system, which could lead to additional information exposure.	CWE-22 Path Traversal	CVE-2024-42408	2024-08-29 23:22	2024-08-9	Show	GitHub Exploit DB Packet Storm

314784	9.0	CRITICAL Network	vrcx-team	vrcx	VRCX is an assistant/companion application for VRChat. In versions prior to 2024.03.23, a CefSharp browser with over-permission and cross-site scripting via overlay notification can be combined to re…	CWE-79 Cross-site Scripting	CVE-2024-42366	2024-08-29 23:04	2024-08-9	Show	GitHub Exploit DB Packet Storm

314785	4.8	MEDIUM Network	concretecms	concrete_cms	Concrete CMS versions 9 through 9.3.2 and below 8.5.18 are vulnerable to Stored XSS in getAttributeSetName(). A rogue administrator could inject malicious code. The Concrete CMS team gave this a CVS…	CWE-79 Cross-site Scripting	CVE-2024-7394	2024-08-29 22:41	2024-08-9	Show	GitHub Exploit DB Packet Storm

314786	9.8	CRITICAL Network	havocframework	havoc	An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2024-41570	2024-08-29 22:32	2024-08-12	Show	GitHub Exploit DB Packet Storm

314787	-		-	-	Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentia…	CWE-788 Access of Memory Location After End of Buffer	CVE-2024-38304	2024-08-29 22:25	2024-08-29	Show	GitHub Exploit DB Packet Storm

314788	-		-	-	Dell PowerEdge Platform, 14G Intel BIOS version(s) prior to 2.22.x, contains an Improper Input Validation vulnerability. A high privileged attacker with local access could potentially exploit this vu…	CWE-20 Improper Input Validation	CVE-2024-38303	2024-08-29 22:25	2024-08-29	Show	GitHub Exploit DB Packet Storm

314789	7.2	HIGH Network	-	-	The Theme Editor plugin for WordPress is vulnerable to deserialization of untrusted input via the 'images_array' parameter in versions up to, and including 2.8. This makes it possible for authenticat…	CWE-502 Deserialization of Untrusted Data	CVE-2022-2440	2024-08-29 22:25	2024-08-29	Show	GitHub Exploit DB Packet Storm

314790	-		-	-	The OpenTelemetry Collector module AWS firehose receiver is for ingesting AWS Kinesis Data Firehose delivery stream messages and parsing the records received based on the configured record type. `aws…	-	CVE-2024-45043	2024-08-29 22:25	2024-08-29	Show	GitHub Exploit DB Packet Storm