Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253691 7.2 危険 マイクロソフト - Microsoft Windows の win32k.sys における権限昇格またはサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-1985 2011-10-21 15:24 2011-10-11 Show GitHub Exploit DB Packet Storm
253692 9.3 危険 マイクロソフト - Microsoft Windows Vista および Windows 7 の Windows Media Center における権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-2009 2011-10-21 15:24 2011-10-11 Show GitHub Exploit DB Packet Storm
253693 9.3 危険 マイクロソフト - Microsoft Windows の Microsoft Active Accessibility コンポーネントにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-1247 2011-10-21 15:23 2011-10-11 Show GitHub Exploit DB Packet Storm
253694 4 警告 マイクロソフト - 複数の Microsoft 製品における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-1892 2011-10-21 15:18 2011-09-13 Show GitHub Exploit DB Packet Storm
253695 4.3 警告 マイクロソフト - Microsoft Windows SharePoint Services および SharePoint Foundation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1891 2011-10-21 15:18 2011-09-13 Show GitHub Exploit DB Packet Storm
253696 4.3 警告 マイクロソフト - 複数の Microsoft SharePoint 製品の EditForm.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1890 2011-10-21 15:17 2011-09-13 Show GitHub Exploit DB Packet Storm
253697 4.3 警告 マイクロソフト - 複数の Microsoft SharePoint 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0653 2011-10-21 15:17 2011-09-13 Show GitHub Exploit DB Packet Storm
253698 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2001 2011-10-21 11:55 2011-10-11 Show GitHub Exploit DB Packet Storm
253699 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2000 2011-10-21 11:50 2011-10-11 Show GitHub Exploit DB Packet Storm
253700 5 警告 マイクロソフト - Microsoft Host Integration Server におけるサービス運用妨害 (SNA サーバサービスの休止) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2008 2011-10-21 11:49 2011-10-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
220321 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows Information Disclosure (issue 1 of 6). An authorization iss… NVD-CWE-noinfo
CVE-2019-6782 2024-11-21 13:47 2019-09-10 Show GitHub Exploit DB Packet Storm
220322 7.0 HIGH
Local 		apport_project apport Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10-0ubuntu27.1, 2.20.11-0ubuntu5 contained a TOCTTOU vulnerability when reading the users ~/.apport-ignore.… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2019-7307 2024-11-21 13:47 2019-08-30 Show GitHub Exploit DB Packet Storm
220323 9.8 CRITICAL
Network 		tcl alcatel_linkzone_firmware The web interface of Alcatel LINKZONE MW40-V-V1.0 MW40_LU_02.00_02 devices is vulnerable to an authentication bypass that allows an unauthenticated user to have access to the web interface without kn… CWE-287
Improper Authentication 		CVE-2019-7163 2024-11-21 13:47 2019-08-3 Show GitHub Exploit DB Packet Storm
220324 7.5 HIGH
Network 		dlink dva-5592_firmware The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and … CWE-79
Cross-site Scripting 		CVE-2019-6969 2024-11-21 13:47 2019-08-3 Show GitHub Exploit DB Packet Storm
220325 6.1 MEDIUM
Network 		dlink dva-5592_firmware The web interface of the D-Link DVA-5592 20180823 is vulnerable to XSS because HTML form parameters are directly reflected. CWE-79
Cross-site Scripting 		CVE-2019-6968 2024-11-21 13:47 2019-08-3 Show GitHub Exploit DB Packet Storm
220326 6.1 MEDIUM
Network 		avaya aura_conferencing A Cross-Site Scripting (XSS) vulnerability in the Web UI of Avaya Aura Conferencing may allow code execution and potentially disclose sensitive information. Affected versions of Avaya Aura Conferenci… CWE-79
Cross-site Scripting 		CVE-2019-7000 2024-11-21 13:47 2019-08-1 Show GitHub Exploit DB Packet Storm
220327 6.5 MEDIUM
Network 		wpfastestcache wp_fastest_cache The WP Fastest Cache plugin through 0.8.9.0 for WordPress allows remote attackers to delete arbitrary files because wp_postratings_clear_fastest_cache and rm_folder_recursively in wpFastestCache.php … CWE-22
Path Traversal 		CVE-2019-6726 2024-11-21 13:47 2019-07-30 Show GitHub Exploit DB Packet Storm
220328 7.8 HIGH
Local 		schneider-electric interactive_graphical_scada_system A CWE-787: Out-of-bounds Write vulnerability exists in Interactive Graphical SCADA System (IGSS), Version 14 and prior, which could cause a software crash when data in the mdb database is manipulated. CWE-787
 Out-of-bounds Write 		CVE-2019-6827 2024-11-21 13:47 2019-07-16 Show GitHub Exploit DB Packet Storm
220329 7.8 HIGH
Local 		schneider-electric proclima A CWE-427: Uncontrolled Search Path Element vulnerability exists in ProClima (all versions prior to version 8.0.0) which could allow a malicious DLL file, with the same name of any resident DLLs insi… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6825 2024-11-21 13:47 2019-07-16 Show GitHub Exploit DB Packet Storm
220330 9.8 CRITICAL
Network 		schneider-electric proclima A CWE-119: Buffer Errors vulnerability exists in ProClima (all versions prior to version 8.0.0) which allows an unauthenticated, remote attacker to execute arbitrary code on the targeted system in al… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-6824 2024-11-21 13:47 2019-07-16 Show GitHub Exploit DB Packet Storm