Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249201 4.3 警告 Phorum - Phorum の control.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3392 2012-03-27 18:43 2011-09-8 Show GitHub Exploit DB Packet Storm
249202 4 警告 IBM - IBM Rational Build Forge における鍵ファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-3391 2012-03-27 18:43 2011-04-29 Show GitHub Exploit DB Packet Storm
249203 4.3 警告 IBM - IBM OAT for Informix の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3390 2012-03-27 18:43 2011-09-6 Show GitHub Exploit DB Packet Storm
249204 4.3 警告 Opera Software ASA - Opera における安全でないサイトが安全なサイトにみえる脆弱性 CWE-200
情報漏えい 		CVE-2011-3388 2012-03-27 18:43 2011-08-31 Show GitHub Exploit DB Packet Storm
249205 4 警告 IBM - IBM Java のクラスファイルパーサーにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3387 2012-03-27 18:43 2011-06-29 Show GitHub Exploit DB Packet Storm
249206 4 警告 Medtronic - Medtronic Paradigm ワイヤレスインシュリンポンプにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-3386 2012-03-27 18:43 2011-09-2 Show GitHub Exploit DB Packet Storm
249207 4.6 警告 OpenTTD - OpenTTD におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3343 2012-03-27 18:43 2011-09-8 Show GitHub Exploit DB Packet Storm
249208 7.5 危険 OpenTTD - OpenTTD におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3342 2012-03-27 18:43 2011-09-8 Show GitHub Exploit DB Packet Storm
249209 7.5 危険 OpenTTD - OpenTTD における任意のファイルを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2011-3341 2012-03-27 18:43 2011-09-8 Show GitHub Exploit DB Packet Storm
249210 2.6 注意 Wireshark - Wireshark の proto_tree_add_item 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3266 2012-03-27 18:43 2011-08-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
315481 3.3 LOW
Local 		ofono_project ofono oFono AT CMGR Command Uninitialized Variable Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive information on affected installations of oFono. An a… CWE-908
 Use of Uninitialized Resource 		CVE-2024-7542 2024-08-30 02:56 2024-08-6 Show GitHub Exploit DB Packet Storm
315482 7.8 HIGH
Local 		ofono_project ofono oFono SimToolKit Heap-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker mus… CWE-787
 Out-of-bounds Write 		CVE-2024-7546 2024-08-30 02:55 2024-08-6 Show GitHub Exploit DB Packet Storm
315483 5.4 MEDIUM
Network 		haloservicesolutions haloitsm HaloITSM versions up to 2.146.1 are affected by a Stored Cross-Site Scripting (XSS) vulnerability. The injected JavaScript code can execute arbitrary action on behalf of the user accessing a ticket. … CWE-79
Cross-site Scripting 		CVE-2024-6200 2024-08-30 02:53 2024-08-6 Show GitHub Exploit DB Packet Storm
315484 5.3 MEDIUM
Network 		haloservicesolutions haloitsm HaloITSM versions up to 2.146.1 are affected by a Template Injection vulnerability within the engine used to generate emails. This can lead to the leakage of potentially sensitive information. HaloIT… NVD-CWE-Other
CVE-2024-6201 2024-08-30 02:52 2024-08-6 Show GitHub Exploit DB Packet Storm
315485 9.8 CRITICAL
Network 		haloservicesolutions haloitsm HaloITSM versions up to 2.146.1 are affected by a SAML XML Signature Wrapping (XSW) vulnerability. When having a SAML integration configured, anonymous actors could impersonate arbitrary HaloITSM use… CWE-863
 Incorrect Authorization 		CVE-2024-6202 2024-08-30 02:48 2024-08-6 Show GitHub Exploit DB Packet Storm
315486 8.1 HIGH
Network 		haloservicesolutions haloitsm HaloITSM versions up to 2.146.1 are affected by a Password Reset Poisoning vulnerability. Poisoned password reset links can be sent to existing HaloITSM users (given their email address is known). Wh… CWE-640
 Weak Password Recovery Mechanism for Forgotten Password 		CVE-2024-6203 2024-08-30 02:46 2024-08-6 Show GitHub Exploit DB Packet Storm
315487 6.1 MEDIUM
Network 		mozilla firefox
firefox_esr 		Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection. On a site protected by Content Security Policy in "strict-dynamic" mode, an attacker a… CWE-79
Cross-site Scripting 		CVE-2024-7524 2024-08-30 02:35 2024-08-6 Show GitHub Exploit DB Packet Storm
315488 6.1 MEDIUM
Network 		insurance_management_system_project insurance_management_system A vulnerability has been found in nafisulbari/itsourcecode Insurance Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file editCl… CWE-79
Cross-site Scripting 		CVE-2024-8208 2024-08-30 02:27 2024-08-28 Show GitHub Exploit DB Packet Storm
315489 6.1 MEDIUM
Network 		insurance_management_system_project insurance_management_system A vulnerability was found in nafisulbari/itsourcecode Insurance Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file addClient.php. Th… CWE-79
Cross-site Scripting 		CVE-2024-8209 2024-08-30 02:23 2024-08-28 Show GitHub Exploit DB Packet Storm
315490 4.3 MEDIUM
Network 		ibm infosphere_information_server IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be use… CWE-209
Information Exposure Through an Error Message 		CVE-2024-39751 2024-08-30 01:56 2024-08-7 Show GitHub Exploit DB Packet Storm