Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253791 4.3 警告 Zikula Foundation - Zikula Application Framework の Theme モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3979 2011-10-11 10:18 2011-09-9 Show GitHub Exploit DB Packet Storm
253792 3.5 注意 LightNEasy - LightNEasy の LightNEasy.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3978 2011-10-11 10:15 2011-10-4 Show GitHub Exploit DB Packet Storm
253793 7.2 危険 NoMachine - NoMachine NX Node および NX Server の nxconfigure.sh における任意のファイルを読まれる脆弱性 CWE-noinfo
情報不足 		CVE-2011-3977 2011-10-11 10:13 2011-08-5 Show GitHub Exploit DB Packet Storm
253794 5 警告 IceWarp, Inc. - IceWarp Mail Server の IceWarp WebMail における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2011-3580 2011-10-11 10:11 2011-09-30 Show GitHub Exploit DB Packet Storm
253795 6.4 警告 IceWarp, Inc. - IceWarp Mail Server の server/webmail.php における任意のファイルを読まれる脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3579 2011-10-11 10:10 2011-09-30 Show GitHub Exploit DB Packet Storm
253796 7.5 危険 シマンテック - Symantec IM Manager の管理コンソールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-0554 2011-10-11 10:10 2011-09-29 Show GitHub Exploit DB Packet Storm
253797 7.5 危険 シマンテック - Symantec IM Manager の管理コンソールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-0553 2011-10-11 10:09 2011-09-29 Show GitHub Exploit DB Packet Storm
253798 4.3 警告 シマンテック - Symantec IM Manager の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0552 2011-10-11 10:09 2011-09-29 Show GitHub Exploit DB Packet Storm
253799 4 警告 株式会社アークウェブ - A-Form におけるアクセス制限不備の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2676 2011-10-7 12:04 2011-10-7 Show GitHub Exploit DB Packet Storm
253800 5 警告 utage.org - 宴会くんにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-2675 2011-10-7 12:03 2011-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
220951 6.5 MEDIUM
Network 		rdkcentral rdkb_ccsppandm Incorrect access control in actionHandlerUtility.php in the RDK RDKB-20181217-1 WebUI module allows a logged in user to control DDNS, QoS, RIP, and other privileged configurations (intended only for … CWE-862
 Missing Authorization 		CVE-2019-6961 2024-11-21 13:47 2019-06-20 Show GitHub Exploit DB Packet Storm
220952 7.5 HIGH
Network 		tp-link tl-wr1043nd_firmware An issue was discovered on TP-Link TL-WR1043ND V2 devices. The credentials can be easily decoded and cracked by brute-force, WordList, or Rainbow Table attacks. Specifically, credentials in the "Auth… CWE-326
Inadequate Encryption Strength 		CVE-2019-6972 2024-11-21 13:47 2019-06-20 Show GitHub Exploit DB Packet Storm
220953 9.8 CRITICAL
Network 		tp-link tl-wr1043nd_firmware An issue was discovered on TP-Link TL-WR1043ND V2 devices. An attacker can send a cookie in an HTTP authentication packet to the router management web interface, and fully control the router without … NVD-CWE-noinfo
CVE-2019-6971 2024-11-21 13:47 2019-06-20 Show GitHub Exploit DB Packet Storm
220954 7.5 HIGH
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.1 and earlier allows Information Exposure. NVD-CWE-noinfo
CVE-2019-7159 2024-11-21 13:47 2019-06-18 Show GitHub Exploit DB Packet Storm
220955 6.1 MEDIUM
Network 		i-doit i-doit An XSS issue was discovered in i-doit Open 1.12 via the src/tools/php/qr/qr.php url parameter. CWE-79
Cross-site Scripting 		CVE-2019-6965 2024-11-21 13:47 2019-06-18 Show GitHub Exploit DB Packet Storm
220956 9.8 CRITICAL
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.0 and earlier has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-7158 2024-11-21 13:47 2019-06-18 Show GitHub Exploit DB Packet Storm
220957 7.5 HIGH
Network 		genieaccess wip3bvaf_firmware Genie Access WIP3BVAF WISH IP 3MP IR Auto Focus Bullet Camera devices through 3.x are vulnerable to directory traversal via the web interface, as demonstrated by reading /etc/shadow. NOTE: this produ… CWE-22
Path Traversal 		CVE-2019-7315 2024-11-21 13:47 2019-06-18 Show GitHub Exploit DB Packet Storm
220958 8.8 HIGH
Network 		tp-link tl-wr940n_firmware
tl-wr941nd_firmware 		TP-Link TL-WR940N is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the ipAddrDispose function. By sending specially crafted ICMP echo request packets, a remote au… CWE-787
 Out-of-bounds Write 		CVE-2019-6989 2024-11-21 13:47 2019-06-7 Show GitHub Exploit DB Packet Storm
220959 6.5 MEDIUM
Network 		progress sitefinity Progress Sitefinity 10.1.6536 does not invalidate session cookies upon logouts. It instead tries to overwrite the cookie in the browser, but it remains valid on the server side. This means the cookie… CWE-613
 Insufficient Session Expiration 		CVE-2019-7215 2024-11-21 13:47 2019-06-7 Show GitHub Exploit DB Packet Storm
220960 7.8 HIGH
Local 		linksys wrt1900acs_firmware An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. A lack of encryption in how the user login cookie (admin-auth) is stored on a victim's computer results in the admin password being… CWE-311
Missing Encryption of Sensitive Data 		CVE-2019-7311 2024-11-21 13:47 2019-06-7 Show GitHub Exploit DB Packet Storm