Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253991 9.3 危険 マイクロソフト - Microsoft Windows の Microsoft Active Accessibility コンポーネントにおける権限昇格の脆弱性 CWE-Other
その他 		CVE-2011-1247 2011-10-21 15:23 2011-10-11 Show GitHub Exploit DB Packet Storm
253992 4 警告 マイクロソフト - 複数の Microsoft 製品における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2011-1892 2011-10-21 15:18 2011-09-13 Show GitHub Exploit DB Packet Storm
253993 4.3 警告 マイクロソフト - Microsoft Windows SharePoint Services および SharePoint Foundation におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1891 2011-10-21 15:18 2011-09-13 Show GitHub Exploit DB Packet Storm
253994 4.3 警告 マイクロソフト - 複数の Microsoft SharePoint 製品の EditForm.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1890 2011-10-21 15:17 2011-09-13 Show GitHub Exploit DB Packet Storm
253995 4.3 警告 マイクロソフト - 複数の Microsoft SharePoint 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0653 2011-10-21 15:17 2011-09-13 Show GitHub Exploit DB Packet Storm
253996 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2001 2011-10-21 11:55 2011-10-11 Show GitHub Exploit DB Packet Storm
253997 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2000 2011-10-21 11:50 2011-10-11 Show GitHub Exploit DB Packet Storm
253998 5 警告 マイクロソフト - Microsoft Host Integration Server におけるサービス運用妨害 (SNA サーバサービスの休止) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2008 2011-10-21 11:49 2011-10-11 Show GitHub Exploit DB Packet Storm
253999 5 警告 マイクロソフト - Microsoft Host Integration Server におけるサービス運用妨害 (SNA サーバサービスの休止) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-2007 2011-10-21 11:48 2011-10-11 Show GitHub Exploit DB Packet Storm
254000 9.3 危険 アップル - Apple iTunes で使用される CoreMedia におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-3219 2011-10-21 11:46 2011-10-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
220841 7.2 HIGH
Network 		magento magento A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An authenticated user with admin privileges to email templates can… NVD-CWE-noinfo
CVE-2019-7903 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220842 5.3 MEDIUM
Network 		magento magento Names of disabled downloadable products could be disclosed due to inadequate validation of user input in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prio… CWE-20
 Improper Input Validation  		CVE-2019-7899 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220843 5.3 MEDIUM
Network 		magento magento Samples of disabled downloadable products are accessible in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Mage… CWE-20
 Improper Input Validation  		CVE-2019-7898 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220844 4.8 MEDIUM
Network 		magento magento A stored cross-site scripting vulnerability exists in the admin panel of Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior t… CWE-79
Cross-site Scripting 		CVE-2019-7897 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220845 7.2 HIGH
Network 		magento magento A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An authenticated user with administrator privileges to layouts can… NVD-CWE-noinfo
CVE-2019-7896 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220846 7.2 HIGH
Network 		magento magento A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An authenticated user with admin privileges to layouts can execute… NVD-CWE-noinfo
CVE-2019-7895 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220847 7.2 HIGH
Network 		magento magento A remote code execution vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An authenticated user with administrator privileges to access ship… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-7892 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220848 7.3 HIGH
Network 		magento magento An Insecure Direct Object Reference (IDOR) vulnerability exists in the order processing workflow of Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can lead … CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-7890 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220849 6.5 MEDIUM
Network 		magento magento An injection vulnerability exists in Magento Open Source prior to 1.9.4.2, and Magento Commerce prior to 1.14.4.2, Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2.… CWE-74
Injection 		CVE-2019-7889 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm
220850 6.5 MEDIUM
Network 		magento magento An information disclosure vulnerability exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. An authenticated user with privileges to create email templates … NVD-CWE-noinfo
CVE-2019-7888 2024-11-21 13:48 2019-08-3 Show GitHub Exploit DB Packet Storm