Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253021 6 警告 Lester Chan - WordPress 用 WP-PostRatings プラグインにおける SQL インジェクションの脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4646 2011-12-1 16:47 2011-11-30 Show GitHub Exploit DB Packet Storm
253022 7.5 危険 Hastymail - Hastymail2 における任意のコマンドを実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2011-4542 2011-12-1 16:46 2011-11-30 Show GitHub Exploit DB Packet Storm
253023 7.5 危険 Novell - Novell NetWare の xdrDecodeString 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4191 2011-12-1 16:44 2011-10-5 Show GitHub Exploit DB Packet Storm
253024 7.5 危険 Namazu Project - Namazu におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-5028 2011-12-1 16:42 2011-11-30 Show GitHub Exploit DB Packet Storm
253025 5 警告 arora - Arora における証明書の Common Name (CN) を偽造される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3367 2011-12-1 16:42 2011-11-29 Show GitHub Exploit DB Packet Storm
253026 7.5 危険 Canonical - Ubuntu の cupshelpers スクリプトにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-4405 2011-12-1 16:05 2011-11-17 Show GitHub Exploit DB Packet Storm
253027 5 警告 シスコシステムズ - Cisco Nexus 5000 および 3000 シリーズスイッチにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2581 2011-12-1 11:25 2011-09-7 Show GitHub Exploit DB Packet Storm
253028 7.8 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2577 2011-12-1 11:25 2011-08-31 Show GitHub Exploit DB Packet Storm
253029 7.8 危険 シスコシステムズ - Cisco Unified Communications Manager および Cisco Intercompany Media Engine における脆弱性 CWE-noinfo
情報不足 		CVE-2011-2564 2011-12-1 11:24 2011-08-24 Show GitHub Exploit DB Packet Storm
253030 7.8 危険 シスコシステムズ - Cisco Unified Communications Manager および Cisco Intercompany Media Engine における脆弱性 CWE-noinfo
情報不足 		CVE-2011-2563 2011-12-1 11:23 2011-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311031 7.5 HIGH
Network 		tp-link mr200_firmware TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in the web administration panel on /cgi/login via the sign, Action or LoginStatus query parameters which … CWE-476
 NULL Pointer Dereference 		CVE-2024-22733 2024-11-6 06:35 2024-11-2 Show GitHub Exploit DB Packet Storm
311032 - - - A vulnerability in the AWV (Audio, Web and Video Conferencing) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could allow an unauthenticated attacker to conduct a CRLF injection attack d… - CVE-2024-47224 2024-11-6 06:35 2024-10-22 Show GitHub Exploit DB Packet Storm
311033 5.3 MEDIUM
Network 		vmware spring_framework The fix for CVE-2022-22968 made disallowedFields patterns in DataBinder case insensitive. However, String.toLowerCase() has some Locale dependent exceptions that could potentially result in fields no… NVD-CWE-noinfo
CVE-2024-38820 2024-11-6 06:35 2024-10-18 Show GitHub Exploit DB Packet Storm
311034 - - - Cross Site Scripting vulnerability in Alinto SOGo before 5.10.0 allows a remote attacker to execute arbitrary code via the import function to the mail component. - CVE-2024-24510 2024-11-6 06:35 2024-09-10 Show GitHub Exploit DB Packet Storm
311035 8.8 HIGH
Network 		esafenet cdg A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/policy/HookWhiteListService… CWE-89
SQL Injection 		CVE-2024-10500 2024-11-6 06:02 2024-10-30 Show GitHub Exploit DB Packet Storm
311036 9.8 CRITICAL
Network 		draytek vigor3900_firmware In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the restore function. CWE-78
OS Command  		CVE-2024-51252 2024-11-6 05:54 2024-11-2 Show GitHub Exploit DB Packet Storm
311037 - - - Nokia SR OS bof.cfg file encryption is vulnerable to a brute force attack. This weakness allows an attacker in possession of the encrypted file to decrypt the bof.cfg file and obtain the BOF configur… - CVE-2023-6728 2024-11-6 05:35 2024-10-17 Show GitHub Exploit DB Packet Storm
311038 - - - Fujian Kelixin Communication Command and Dispatch Platform <=7.6.6.4391 is vulnerable to SQL Injection via /client/get_gis_fence.php. - CVE-2024-45918 2024-11-6 05:35 2024-10-9 Show GitHub Exploit DB Packet Storm
311039 - - - Sharp NEC Projectors (NP-CB4500UL, NP-CB4500WL, NP-CB4700UL, NP-P525UL, NP-P525UL+, NP-P525ULG, NP-P525ULJL, NP-P525WL, NP-P525WL+, NP-P525WLG, NP-P525WLJL, NP-CG6500UL, NP-CG6500WL, NP-CG6700UL, NP-… - CVE-2024-7011 2024-11-6 05:35 2024-09-27 Show GitHub Exploit DB Packet Storm
311040 9.8 CRITICAL
Network 		anisha e-health_care_system A vulnerability, which was classified as critical, has been found in code-projects E-Health Care System 1.0. Affected by this issue is some unknown functionality of the file /Admin/adminlogin.php. Th… CWE-89
SQL Injection 		CVE-2024-10739 2024-11-6 05:16 2024-11-4 Show GitHub Exploit DB Packet Storm