Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251401 4.3 警告 マイクロソフト - 複数の Microsoft 製品における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-1280 2011-06-27 16:19 2011-06-14 Show GitHub Exploit DB Packet Storm
251402 5 警告 マイクロソフト - Microsoft Windows の SMB サーバーにおけるサービス運用妨害 (システムハング) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1267 2011-06-27 16:18 2011-06-14 Show GitHub Exploit DB Packet Storm
251403 4.9 警告 マイクロソフト - Microsoft Windows Server 2008 Gold の Hyper-V におけるサービス運用妨害 (ホスト OS 無限ループ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1872 2011-06-27 16:17 2011-06-14 Show GitHub Exploit DB Packet Storm
251404 7.2 危険 マイクロソフト - Microsoft Windows の Ancillary Function Driver における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-1249 2011-06-27 16:16 2011-06-14 Show GitHub Exploit DB Packet Storm
251405 9.3 危険 マイクロソフト - Microsoft Excel における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1279 2011-06-27 16:16 2011-06-14 Show GitHub Exploit DB Packet Storm
251406 9.3 危険 マイクロソフト - Microsoft Excel 2002 および Office 2004 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1278 2011-06-27 16:15 2011-06-14 Show GitHub Exploit DB Packet Storm
251407 4 警告 サイボウズ - サイボウズ Office におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1335 2011-06-24 12:02 2011-06-24 Show GitHub Exploit DB Packet Storm
251408 4.3 警告 サイボウズ - 複数のサイボウズ製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1334 2011-06-24 12:02 2011-06-24 Show GitHub Exploit DB Packet Storm
251409 3.5 注意 サイボウズ - 複数のサイボウズ製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1333 2011-06-24 12:02 2011-06-24 Show GitHub Exploit DB Packet Storm
251410 2.6 注意 サイボウズ - サイボウズガルーンにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1332 2011-06-24 12:01 2011-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2281 5.5 MEDIUM
Local 		helios textpad Textpad 8.1.2 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long buffer string through the Run command interface. Attacke… CWE-787
 Out-of-bounds Write 		CVE-2018-25271 2026-04-28 02:13 2026-04-23 Show GitHub Exploit DB Packet Storm
2282 9.8 CRITICAL
Network 		dell powerprotect_dp_series_appliance
data_domain_operating_system 		Dell PowerProtect Data Domain with Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.6, LTS2025 release version 8.3.1.0 through 8.3.1.10, LTS2024 release versions 7.13.1.0… CWE-121
CWE-787
Stack-based Buffer Overflow
 Out-of-bounds Write 		CVE-2026-26354 2026-04-28 02:09 2026-04-23 Show GitHub Exploit DB Packet Storm
2283 9.1 CRITICAL
Network 		espocrm espocrm EspoCRM is an open source customer relationship management application. Prior to version 9.3.4, EspoCRM's built-in formula scripting engine allowing updating attachment's sourceId thus allowing an au… CWE-22
Path Traversal 		CVE-2026-33656 2026-04-28 02:04 2026-04-23 Show GitHub Exploit DB Packet Storm
2284 7.8 HIGH
Local 		radare radare2 radare2 prior to 6.1.4 contains a command injection vulnerability in the PDB parser's print_gvars() function that allows attackers to execute arbitrary commands by crafting a malicious PDB file with … CWE-78
OS Command  		CVE-2026-40517 2026-04-28 02:04 2026-04-23 Show GitHub Exploit DB Packet Storm
2285 7.5 HIGH
Network 		powerdns recursor An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web server is disabled by default. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-33256 2026-04-28 02:04 2026-04-22 Show GitHub Exploit DB Packet Storm
2286 7.5 HIGH
Network 		powerdns authoritative
dnsdist
recursor 		An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web server is disabled by default. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-33257 2026-04-28 02:03 2026-04-22 Show GitHub Exploit DB Packet Storm
2287 7.5 HIGH
Network 		powerdns recursor By publishing and querying a crafted zone an attacker can cause allocation of large entries in the negative and aggressive NSEC(3) caches. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-33258 2026-04-28 02:03 2026-04-22 Show GitHub Exploit DB Packet Storm
2288 5.0 MEDIUM
Network 		powerdns recursor Having many concurrent transfers of the same RPZ can lead to inconsistent RPZ data, use after free and/or a crash of the recursor. Normally concurrent transfers of the same RPZ zone can only occur wi… CWE-416
 Use After Free 		CVE-2026-33259 2026-04-28 02:03 2026-04-22 Show GitHub Exploit DB Packet Storm
2289 7.5 HIGH
Network 		powerdns authoritative
dnsdist
recursor 		An attacker can send a web request that causes unlimited memory allocation in the internal web server, leading to a denial of service. The internal web server is disabled by default. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2026-33260 2026-04-28 02:03 2026-04-22 Show GitHub Exploit DB Packet Storm
2290 5.9 MEDIUM
Network 		powerdns recursor A zone transition from NSEC to NSEC3 might trigger an internal inconsistency and cause a denial of service. CWE-353
 Missing Support for Integrity Check 		CVE-2026-33261 2026-04-28 02:03 2026-04-22 Show GitHub Exploit DB Packet Storm