Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251811	7.5	危険	Deon George	-	phpLDAPadmin の lib/functions.php 内の masort 関数における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4075	2011-11-9 16:42	2011-11-2	Show	GitHub Exploit DB Packet Storm

251812	4.3	警告	Deon George	-	phpLDAPadmin の cmd.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4074	2011-11-9 16:42	2011-11-2	Show	GitHub Exploit DB Packet Storm

251813	6.4	警告	ヒューレット・パッカード	-	HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-3167	2011-11-9 16:38	2011-11-1	Show	GitHub Exploit DB Packet Storm

251814	6.4	警告	ヒューレット・パッカード	-	HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-3166	2011-11-9 16:38	2011-11-1	Show	GitHub Exploit DB Packet Storm

251815	6.4	警告	ヒューレット・パッカード	-	HP OpenView Network Node Manager (OV NNM) における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-3165	2011-11-9 16:37	2011-11-1	Show	GitHub Exploit DB Packet Storm

251816	4.3	警告	株式会社アークウェブ	-	A-Form PC および PC/Mobile におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4274	2011-11-9 16:34	2011-09-30	Show	GitHub Exploit DB Packet Storm

251817	9.3	危険	シスコシステムズ	-	Cisco Small Business におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-4005	2011-11-9 16:32	2011-11-2	Show	GitHub Exploit DB Packet Storm

251818	7.8	危険	シスコシステムズ	-	複数の Cisco 製品におけるサービス運用妨害 (デバイスリロード) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3300	2011-11-9 16:31	2011-10-5	Show	GitHub Exploit DB Packet Storm

251819	7.8	危険	シスコシステムズ	-	複数の Cisco 製品におけるサービス運用妨害 (デバイスリロード) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-3299	2011-11-9 16:30	2011-10-5	Show	GitHub Exploit DB Packet Storm

251820	7.9	危険	シスコシステムズ	-	複数の Cisco 製品における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-3298	2011-11-9 16:30	2011-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223921	5.3	MEDIUM Network	arm fedoraproject debian	mbed_crypto mbed_tls fedora debian_linux	Arm Mbed TLS before 2.19.0 and Arm Mbed Crypto before 2.0.0, when deterministic ECDSA is enabled, use an RNG with insufficient entropy for blinding, which might allow an attacker to recover a private…	NVD-CWE-noinfo	CVE-2019-16910	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223922	5.4	MEDIUM Network	teampass	teampass	TeamPass 2.1.27.36 allows Stored XSS by setting a crafted password for an item in a common available folder or sharing the item with an admin. (The crafted password is exploitable when viewing the ch…	CWE-79 Cross-site Scripting	CVE-2019-16904	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223923	5.3	MEDIUM Network	plutinosoft	platinum	Platinum UPnP SDK 1.2.0 allows Directory Traversal in Core/PltHttpServer.cpp because it checks for /.. where it should be checking for ../ instead.	CWE-22 Path Traversal	CVE-2019-16903	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223924	5.3	MEDIUM Network	mediawiki fedoraproject debian	mediawiki fedora debian_linux	In MediaWiki through 1.33.0, Special:Redirect allows information disclosure of suppressed usernames via a User ID Lookup.	CWE-862 Missing Authorization	CVE-2019-16738	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223925	7.5	HIGH Network	advantech	webaccess\/hmi_designer	Advantech WebAccess/HMI Designer 2.1.9.31 has Exception Handler Chain corruption starting at Unknown Symbol @ 0x0000000000000000 called from ntdll!RtlRaiseStatus+0x00000000000000b4.	CWE-755 Improper Handling of Exceptional Conditions	CVE-2019-16901	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223926	7.5	HIGH Network	advantech	webaccess\/hmi_designer	Advantech WebAccess/HMI Designer 2.1.9.31 has a User Mode Write AV starting at MSVCR90!memcpy+0x000000000000015c.	NVD-CWE-noinfo	CVE-2019-16900	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223927	7.5	HIGH Network	advantech	webaccess\/hmi_designer	In Advantech WebAccess/HMI Designer 2.1.9.31, Data from a Faulting Address controls Code Flow starting at PM_V3!CTagInfoThreadBase::GetNICInfo+0x0000000000512918.	NVD-CWE-noinfo	CVE-2019-16899	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223928	5.5	MEDIUM Local	rubyzip_project fedoraproject redhat	rubyzip fedora cloudforms	In Rubyzip before 1.3.0, a crafted ZIP file can bypass application checks on ZIP entry sizes because data about the uncompressed size can be spoofed. This allows attackers to cause a denial of servic…	NVD-CWE-noinfo	CVE-2019-16892	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223929	5.4	MEDIUM Network	halo	halo	Halo 1.1.0 has XSS via a crafted authorUrl in JSON data to api/content/posts/comments.	CWE-79 Cross-site Scripting	CVE-2019-16890	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm

223930	7.5	HIGH Network	ui	er-x_firmware er-x-sfp_firmware ep-r6_firmware erlite-3_firmware erpoe-5_firmware er-8_firmware erpro-8_firmware ep-r8_firmware er-4_firmware er-6p_firmware er-12_firmwa…	Ubiquiti EdgeMAX devices before 2.0.3 allow remote attackers to cause a denial of service (disk consumption) because *.cache files in /var/run/beaker/container_file/ are created when providing a vali…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-16889	2024-11-21 13:31	2019-09-26	Show	GitHub Exploit DB Packet Storm