Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253661 4.3 警告 IBM - IBM WebSphere Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1362 2012-01-17 16:29 2012-01-15 Show GitHub Exploit DB Packet Storm
253662 9.3 危険 NTRglobal - NTR ActiveX コントロールの StopModule メソッドにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0267 2012-01-17 16:07 2012-01-15 Show GitHub Exploit DB Packet Storm
253663 9.3 危険 NTRglobal - NTR ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-0266 2012-01-17 16:04 2012-01-15 Show GitHub Exploit DB Packet Storm
253664 10 危険 ヒューレット・パッカード - HP StorageWorks P2000 G3 MSA array systems における管理者権限でタスクを実行される脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-0697 2012-01-16 15:19 2012-01-13 Show GitHub Exploit DB Packet Storm
253665 4.3 警告 IBM - IBM Cognos TM1 の Executive Viewer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-0696 2012-01-16 15:04 2010-11-12 Show GitHub Exploit DB Packet Storm
253666 10 危険 Google
サムスン
日本エイサー		 - Chromebook プラットフォームで稼働する Google Chrome における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2012-0695 2012-01-16 15:04 2012-01-10 Show GitHub Exploit DB Packet Storm
253667 4.9 警告 Adaptive Computing - TORQUE Resource Manager における任意のユーザアカウントを偽装される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-4925 2012-01-16 15:03 2012-01-13 Show GitHub Exploit DB Packet Storm
253668 10 危険 ヒューレット・パッカード - HP Diagnostics におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4789 2012-01-16 15:02 2012-01-13 Show GitHub Exploit DB Packet Storm
253669 7.8 危険 ヒューレット・パッカード - HP StorageWorks P2000 G3 MSA array systems における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-4788 2012-01-16 15:02 2012-01-13 Show GitHub Exploit DB Packet Storm
253670 9.3 危険 ヒューレット・パッカード - HP Easy Printer Care Software における任意のプログラムをダウンロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4787 2012-01-16 15:01 2012-01-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
311751 - otrs otrs Kernel/Output/HTML/CustomerNewTicketQueueSelectionGeneric.pm in Open Ticket Request System (OTRS) before 2.2.6, when the CustomerPanelOwnSelection and CustomerGroupSupport options are enabled, allows… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-7282 2024-11-21 09:58 2011-03-19 Show GitHub Exploit DB Packet Storm
311752 - otrs otrs Open Ticket Request System (OTRS) before 2.2.7 sends e-mail containing a Bcc header field that lists the Blind Carbon Copy recipients, which allows remote attackers to obtain potentially sensitive e-… CWE-200
Information Exposure 		CVE-2008-7281 2024-11-21 09:58 2011-03-19 Show GitHub Exploit DB Packet Storm
311753 - otrs otrs Kernel/System/EmailParser.pm in PostmasterPOP3.pl in Open Ticket Request System (OTRS) before 2.2.7 does not properly handle e-mail messages containing malformed UTF-8 characters, which allows remote… CWE-20
 Improper Input Validation  		CVE-2008-7280 2024-11-21 09:58 2011-03-19 Show GitHub Exploit DB Packet Storm
311754 - otrs otrs The CustomerInterface component in Open Ticket Request System (OTRS) before 2.2.8 allows remote authenticated users to bypass intended access restrictions and access tickets of arbitrary customers vi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-7279 2024-11-21 09:58 2011-03-19 Show GitHub Exploit DB Packet Storm
311755 - otrs otrs The S/MIME feature in Open Ticket Request System (OTRS) before 2.2.5, and 2.3.x before 2.3.0-beta1, does not properly configure the RANDFILE environment variable for OpenSSL, which might make it easi… CWE-20
 Improper Input Validation  		CVE-2008-7278 2024-11-21 09:58 2011-03-19 Show GitHub Exploit DB Packet Storm
311756 - otrs otrs Open Ticket Request System (OTRS) before 2.3.0-beta4 checks for the rw permission, instead of the configured merge permission, during authorization of merge operations, which might allow remote authe… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-7277 2024-11-21 09:58 2011-03-19 Show GitHub Exploit DB Packet Storm
311757 - otrs otrs Kernel/System/Web/Request.pm in Open Ticket Request System (OTRS) before 2.3.2 creates a directory under /tmp/ with 1274 permissions, which might allow local users to bypass intended access restricti… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-7276 2024-11-21 09:58 2011-03-19 Show GitHub Exploit DB Packet Storm
311758 - otrs otrs Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) before 2.3.3 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) AgentTic… CWE-79
Cross-site Scripting 		CVE-2008-7275 2024-11-21 09:58 2011-03-19 Show GitHub Exploit DB Packet Storm
311759 - ibm websphere_application_server IBM WebSphere Application Server (WAS) 6.1.0.9, when the JAAS Login functionality is enabled, allows attackers to perform an internal application hashtable login by (1) not providing a password or (2… CWE-20
 Improper Input Validation  		CVE-2008-7274 2024-11-21 09:58 2011-02-15 Show GitHub Exploit DB Packet Storm
311760 - eclipse eclipse_ide Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE, possibly 3.3.2, allow remote attackers to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2008-7271 2024-11-21 09:58 2011-01-14 Show GitHub Exploit DB Packet Storm