Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
249891 6.4 警告 BlackBerry - BlackBerry Administration API におけるテキストファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2011-0287 2011-12-13 14:35 2011-07-12 Show GitHub Exploit DB Packet Storm
249892 6.4 警告 Widelands - Widelands におけるパストラバーサル攻撃を誘発される脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4675 2011-12-12 18:21 2011-12-5 Show GitHub Exploit DB Packet Storm
249893 5 警告 One Click Orgs - One Click Orgs のパスワードリセット機能におけるユーザアカウントを列挙される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-4678 2011-12-12 18:19 2011-12-6 Show GitHub Exploit DB Packet Storm
249894 4 警告 One Click Orgs - One Click Orgs におけるサービス運用妨害 (ログイン障害) の脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-4555 2011-12-12 18:18 2011-12-6 Show GitHub Exploit DB Packet Storm
249895 5.5 警告 One Click Orgs - One Click Orgs における巧妙に細工された SMTP トラフィックを誘発する脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4554 2011-12-12 18:15 2011-12-6 Show GitHub Exploit DB Packet Storm
249896 6.9 警告 Celery - Celery における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4356 2011-12-12 18:14 2011-12-5 Show GitHub Exploit DB Packet Storm
249897 7.5 危険 ヒューレット・パッカード - HP Protect Tools Device Access Manager における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-4162 2011-12-12 18:13 2011-12-1 Show GitHub Exploit DB Packet Storm
249898 10 危険 ヒューレット・パッカード - HP CM8060 Color MFP その他の製品のデフォルト設定における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4161 2011-12-12 18:10 2011-11-30 Show GitHub Exploit DB Packet Storm
249899 6.9 警告 マイクロソフト - Microsoft Windows 7 における Internet Explorer サンドボックスの制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4695 2011-12-12 16:39 2011-12-7 Show GitHub Exploit DB Packet Storm
249900 9.3 危険 アップル
アドビシステムズ
マイクロソフト		 - Windows および Mac OS X 上で稼働する Adobe Flash Player における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4694 2011-12-12 16:38 2011-12-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212491 6.1 MEDIUM
Network 		python python An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the fir… CWE-93
CRLF Injection 		CVE-2019-9740 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212492 6.1 MEDIUM
Network 		golangtc gopher jimmykuu Gopher 2.0 has DOM-based XSS via vectors involving the '<EMBED SRC="data:image/svg+xml' substring. CWE-79
Cross-site Scripting 		CVE-2019-9738 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212493 6.1 MEDIUM
Network 		ipandao editor.md Editor.md 1.5.0 has DOM-based XSS via vectors involving the '<EMBED SRC="data:image/svg+xml' substring. CWE-79
Cross-site Scripting 		CVE-2019-9737 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212494 6.1 MEDIUM
Network 		1024tools 1024tools DOM-based XSS exists in 1024Tools Markdown 1.0 via vectors involving the '<EMBED SRC="data:image/svg+xml' substring. CWE-79
Cross-site Scripting 		CVE-2019-9736 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212495 6.5 MEDIUM
Network 		openstack
redhat
debian 		neutron
openstack
debian_linux 		An issue was discovered in the iptables firewall module in OpenStack Neutron before 10.0.8, 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By setting a destination port in a security… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-9735 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212496 7.8 HIGH
Local 		shanda maplestory_online In Shanda MapleStory Online V160, the SdoKeyCrypt.sys driver allows privilege escalation to NT AUTHORITY\SYSTEM because of not validating the IOCtl 0x8000c01c input value, leading to an integer signe… CWE-787
CWE-129
 Out-of-bounds Write
 Improper Validation of Array Index 		CVE-2019-9729 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212497 6.1 MEDIUM
Network 		korenix jetport_web_manager
jetport_5601_firmware
jetport_5601f_firmware 		The Web manager (aka Commander) on Korenix JetPort 5601 and 5601f devices has Persistent XSS via the Port Alias field under Serial Setting. CWE-79
Cross-site Scripting 		CVE-2019-9725 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212498 6.1 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! before 3.9.4. The media form field lacks escaping, leading to XSS. CWE-79
Cross-site Scripting 		CVE-2019-9714 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212499 7.5 HIGH
Network 		joomla joomla\! An issue was discovered in Joomla! before 3.9.4. The sample data plugins lack ACL checks, allowing unauthorized access. CWE-862
 Missing Authorization 		CVE-2019-9713 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm
212500 6.1 MEDIUM
Network 		joomla joomla\! An issue was discovered in Joomla! before 3.9.4. The JSON handler in com_config lacks input validation, leading to XSS. CWE-79
Cross-site Scripting 		CVE-2019-9712 2024-11-21 13:52 2019-03-13 Show GitHub Exploit DB Packet Storm