Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 9, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 252131 | 5.8 | 警告 | Apache Software Foundation | - | Apache Tomcat におけるアクセス制限を回避される脆弱性 |
CWE-DesignError
|
CVE-2011-1183 | 2011-04-28 15:31 | 2011-04-1 | Show | GitHub Exploit DB Packet Storm |
| 252132 | 5 | 警告 | Apache Software Foundation | - | Apache Tomcat の HTTP BIO コネクタにおけるレスポンスを閲覧される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2011-1475 | 2011-04-28 15:29 | 2011-03-28 | Show | GitHub Exploit DB Packet Storm |
| 252133 | 2.1 | 注意 | オラクル | - | Oracle Solaris 10 に認証情報漏えいの脆弱性 | - | CVE-2011-0412 | 2011-04-28 15:27 | 2011-04-6 | Show | GitHub Exploit DB Packet Storm |
| 252134 | - | - | デル | - | Dell Kace K2000 Systems Deployment Appliance に脆弱性 | - | - | 2011-04-28 15:21 | 2011-04-6 | Show | GitHub Exploit DB Packet Storm |
| 252135 | - | - | ネットギア | - | Netgear Prosafe Wireless-N Access Point に複数の脆弱性 | - | - | 2011-04-28 15:19 | 2011-04-6 | Show | GitHub Exploit DB Packet Storm |
| 252136 | 7.2 | 危険 | Prefix WhoIs Project | - | pWhois Layer Four Traceroute に権限昇格の脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0765 | 2011-04-28 15:18 | 2011-04-5 | Show | GitHub Exploit DB Packet Storm |
| 252137 | 6.9 | 警告 | レッドハット | - | policycoreutils パッケージの seunshare_mount 関数における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2011-1011 | 2011-04-28 15:11 | 2011-02-24 | Show | GitHub Exploit DB Packet Storm |
| 252138 | 4.3 | 警告 | マイクロソフト | - | Microsoft Windows にスクリプトインジェクションの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2011-0096 | 2011-04-28 14:33 | 2011-01-31 | Show | GitHub Exploit DB Packet Storm |
| 252139 | 9.3 | 危険 | マイクロソフト | - | Microsoft WMI Administrative Tools の WBEMSingleView.ocx ActiveX コントロールにおける任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-3973 | 2011-04-28 14:29 | 2010-12-23 | Show | GitHub Exploit DB Packet Storm |
| 252140 | 9.3 | 危険 | マイクロソフト | - | Microsoft Internet Explorer における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0811 | 2011-04-28 14:25 | 2010-06-8 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 9, 2026, 5:07 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223481 | 7.4 |
HIGH
Network |
roundcube fedoraproject |
webmail fedora |
Roundcube Webmail through 1.3.9 mishandles Punycode xn-- domain names, leading to homograph attacks. |
NVD-CWE-noinfo
|
CVE-2019-15237 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223482 | 9.8 |
CRITICAL
Network |
live555 | streaming_media | Live555 before 2019.08.16 has a Use-After-Free because GenericMediaServer::createNewClientSessionWithId can generate the same client session ID in succession, which is mishandled by the MPEG1or2 and … |
CWE-416
Use After Free |
CVE-2019-15232 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223483 | 8.8 |
HIGH
Network |
thedaylightstudio | fuel_cms | FUEL CMS 1.4.4 has CSRF in the blocks/create/ Create Blocks section of the Admin console. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially craft… |
CWE-352
Origin Validation Error |
CVE-2019-15229 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223484 | 5.4 |
MEDIUM
Network |
thedaylightstudio | fuel_cms | FUEL CMS 1.4.4 has XSS in the Create Blocks section of the Admin console. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated acc… |
CWE-79
Cross-site Scripting |
CVE-2019-15228 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223485 | 7.5 |
HIGH
Network |
envoyproxy | envoy | In Envoy through 1.11.1, users may configure a route to match incoming path headers via the libstdc++ regular expression implementation. A remote attacker may send a request with a very long URI to r… |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2019-15225 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223486 | 9.8 |
CRITICAL
Network |
rest-client_project | rest-client | The rest-client gem 1.6.10 through 1.6.13 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. Versions <=1.6.9 and >=1.6.14 are unaffected. |
CWE-94
Code Injection |
CVE-2019-15224 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223487 | 4.6 |
MEDIUM
Physics |
linux netapp canonical |
linux_kernel h410c_firmware data_availability_services solidfire_\&_hci_management_node active_iq_unified_manager solidfire_baseboard_management_controller ubuntu_linux |
An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/driver.c driver. |
CWE-476
NULL Pointer Dereference |
CVE-2019-15223 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223488 | 4.6 |
MEDIUM
Physics |
linux netapp opensuse |
linux_kernel h410c_firmware data_availability_services solidfire_\&_hci_management_node active_iq_unified_manager solidfire_baseboard_management_controller leap |
An issue was discovered in the Linux kernel before 5.2.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/helper.c (motu_microbookii) driver. |
CWE-476
NULL Pointer Dereference |
CVE-2019-15222 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223489 | 4.6 |
MEDIUM
Physics |
linux netapp canonical debian opensuse |
linux_kernel h410c_firmware data_availability_services solidfire_\&_hci_management_node active_iq_unified_manager solidfire_baseboard_management_controller ubuntu_linux debia… |
An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver. |
CWE-476
NULL Pointer Dereference |
CVE-2019-15221 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |
| 223490 | 4.6 |
MEDIUM
Physics |
linux netapp canonical debian opensuse |
linux_kernel h410c_firmware data_availability_services solidfire_\&_hci_management_node active_iq_unified_manager solidfire_baseboard_management_controller ubuntu_linux debia… |
An issue was discovered in the Linux kernel before 5.2.1. There is a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver. |
CWE-416
Use After Free |
CVE-2019-15220 | 2024-11-21 13:28 | 2019-08-20 | Show | GitHub Exploit DB Packet Storm |