Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250101 4.3 警告 Contao - Contao におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4335 2011-11-29 16:28 2011-11-28 Show GitHub Exploit DB Packet Storm
250102 4.3 警告 Dolibarr ERP & CRM - Dolibarr におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4329 2011-11-29 16:27 2011-11-8 Show GitHub Exploit DB Packet Storm
250103 4.3 警告 Ruby on Rails project - Ruby on Rails におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4319 2011-11-29 16:26 2011-11-28 Show GitHub Exploit DB Packet Storm
250104 4.3 警告 Combodo - Combodo iTop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4275 2011-11-29 16:23 2011-11-26 Show GitHub Exploit DB Packet Storm
250105 9.3 危険 SunPlus Electronics - DVR Remote ActiveX コントロールの DVRemoteAx.ax における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-3828 2011-11-29 16:22 2011-11-26 Show GitHub Exploit DB Packet Storm
250106 6.8 警告 IBM - IBM TS3100 および TS3200 テープ・ライブラリにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2011-1372 2011-11-29 16:15 2011-11-23 Show GitHub Exploit DB Packet Storm
250107 1.9 注意 ヒューレット・パッカード
IBM		 - IBM WebSphere MQ における listener プロセス強制終了の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1378 2011-11-29 16:14 2011-11-26 Show GitHub Exploit DB Packet Storm
250108 5 警告 シスコシステムズ - Cisco Secure Access Control System における任意のユーザのパスワードを変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-0951 2011-11-29 10:38 2011-03-30 Show GitHub Exploit DB Packet Storm
250109 5 警告 シスコシステムズ - Cisco Network Access Control Guest Server におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0963 2011-11-29 10:37 2011-03-30 Show GitHub Exploit DB Packet Storm
250110 9.3 危険 シスコシステムズ - Cisco Secure Desktop における意図しないプログラムをダウンロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0925 2011-11-29 10:37 2011-02-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199451 9.8 CRITICAL
Network 		prost_project prost An issue was discovered in the prost crate before 0.6.1 for Rust. There is stack consumption via a crafted message, causing a denial of service (e.g., x86) or possibly remote code execution (e.g., AR… CWE-787
 Out-of-bounds Write 		CVE-2020-35858 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199452 7.5 HIGH
Network 		trust-dns-server_project trust-dns-server An issue was discovered in the trust-dns-server crate before 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption. CWE-400
 Uncontrolled Resource Consumption 		CVE-2020-35857 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199453 4.7 MEDIUM
Local 		concread_project concread An issue was discovered in the concread crate before 0.2.6 for Rust. Attackers can cause an ARCache<K,V> data race by sending types that do not implement Send/Sync. CWE-362
Race Condition 		CVE-2020-35928 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199454 5.5 MEDIUM
Local 		thex_project thex An issue was discovered in the thex crate through 2020-12-08 for Rust. Thex<T> allows cross-thread data races of non-Send types. NVD-CWE-noinfo
CVE-2020-35927 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199455 9.8 CRITICAL
Network 		nanorand_project nanorand An issue was discovered in the nanorand crate before 0.5.1 for Rust. It caused any random number generator (even ChaCha) to return all zeroes because integer truncation was mishandled. CWE-330
CWE-681
 Use of Insufficiently Random Values
 Incorrect Conversion between Numeric Types 		CVE-2020-35926 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199456 5.5 MEDIUM
Local 		magnetic_project magnetic An issue was discovered in the magnetic crate before 2.0.1 for Rust. MPMCConsumer and MPMCProducer allow cross-thread sending of a non-Send type. NVD-CWE-noinfo
CVE-2020-35925 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199457 5.5 MEDIUM
Local 		try-mutex_project try-mutex An issue was discovered in the try-mutex crate before 0.3.0 for Rust. TryMutex<T> allows cross-thread sending of a non-Send type. CWE-787
 Out-of-bounds Write 		CVE-2020-35924 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199458 5.5 MEDIUM
Local 		ordered-float_project ordered-float An issue was discovered in the ordered-float crate before 1.1.1 and 2.x before 2.0.1 for Rust. A NotNan value can contain a NaN. CWE-416
 Use After Free 		CVE-2020-35923 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199459 5.5 MEDIUM
Local 		mio_project mio An issue was discovered in the mio crate before 0.7.6 for Rust. It has false expectations about the std::net::SocketAddr memory representation. NVD-CWE-noinfo
CVE-2020-35922 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm
199460 5.5 MEDIUM
Local 		miow_project miow An issue was discovered in the miow crate before 0.3.6 for Rust. It has false expectations about the std::net::SocketAddr memory representation. NVD-CWE-noinfo
CVE-2020-35921 2024-11-21 14:28 2020-12-31 Show GitHub Exploit DB Packet Storm