Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254031	7.1	危険	マイクロソフト	-	複数の Microsoft 製品の JScript および VBScript スクリプトエンジンにおける重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-0031	2011-03-4 15:12	2011-02-8	Show	GitHub Exploit DB Packet Storm

254032	9.3	危険	マイクロソフト	-	Microsoft Visio の ELEMENTS.DLL における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0093	2011-03-4 15:09	2011-02-8	Show	GitHub Exploit DB Packet Storm

254033	9.3	危険	マイクロソフト	-	Microsoft Visio の LZW ストリーム圧縮機能における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0092	2011-03-4 15:06	2011-02-8	Show	GitHub Exploit DB Packet Storm

254034	5	警告	マイクロソフト	-	Windows Server 2003 上で稼働する Microsoft Active Directory におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0040	2011-03-4 15:02	2011-02-8	Show	GitHub Exploit DB Packet Storm

254035	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の Windows OpenType Compact Font Format ドライバにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0033	2011-03-4 15:00	2011-02-8	Show	GitHub Exploit DB Packet Storm

254036	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 8 における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0038	2011-03-4 14:53	2011-02-8	Show	GitHub Exploit DB Packet Storm

254037	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0036	2011-03-4 14:50	2011-02-8	Show	GitHub Exploit DB Packet Storm

254038	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0035	2011-03-4 14:30	2011-02-8	Show	GitHub Exploit DB Packet Storm

254039	5	警告	日立	-	Hitachi Tuning Manager Software におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2011-03-4 14:24	2011-02-7	Show	GitHub Exploit DB Packet Storm

254040	10	危険	IntelliCom Innovation AB	-	IntelliCom NetBiter NB100 および NB200 プラットフォームに複数の脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-4733	2011-03-4 14:21	2011-02-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
215241	9.8	CRITICAL Network	hawt	hawtio	Hawt Hawtio through 2.5.0 is vulnerable to SSRF, allowing a remote attacker to trigger an HTTP request from an affected server to an arbitrary host via the initial /proxy/ substring of a URI.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-9827	2024-11-21 13:52	2019-07-4	Show	GitHub Exploit DB Packet Storm

215242	9.8	CRITICAL Network	jetbrains	intellij_idea	In several versions of JetBrains IntelliJ IDEA Ultimate, creating Task Servers configurations leads to saving a cleartext unencrypted record of the server credentials in the IDE configuration files. …	CWE-312 CWE-522 Cleartext Storage of Sensitive Information Insufficiently Protected Credentials	CVE-2019-9873	2024-11-21 13:52	2019-07-4	Show	GitHub Exploit DB Packet Storm

215243	9.8	CRITICAL Network	jetbrains	intellij_idea	In several JetBrains IntelliJ IDEA versions, creating remote run configurations of JavaEE application servers leads to saving a cleartext record of the server credentials in the IDE configuration fil…	CWE-312 CWE-522 Cleartext Storage of Sensitive Information Insufficiently Protected Credentials	CVE-2019-9823	2024-11-21 13:52	2019-07-4	Show	GitHub Exploit DB Packet Storm

215244	8.1	HIGH Network	jetbrains	intellij_idea	In several versions of JetBrains IntelliJ IDEA Ultimate, creating run configurations for cloud application servers leads to saving a cleartext unencrypted record of the server credentials in the IDE …	CWE-312 CWE-522 Cleartext Storage of Sensitive Information Insufficiently Protected Credentials	CVE-2019-9872	2024-11-21 13:52	2019-07-4	Show	GitHub Exploit DB Packet Storm

215245	7.8	HIGH Local	symantec	endpoint_encryption	Symantec Endpoint Encryption, prior to SEE 11.3.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that ar…	NVD-CWE-noinfo	CVE-2019-9703	2024-11-21 13:52	2019-07-2	Show	GitHub Exploit DB Packet Storm

215246	7.8	HIGH Local	symantec	endpoint_encryption	Symantec Endpoint Encryption, prior to SEE 11.3.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that ar…	NVD-CWE-noinfo	CVE-2019-9702	2024-11-21 13:52	2019-07-2	Show	GitHub Exploit DB Packet Storm

215247	7.5	HIGH Network	diffplug	gradle maven	In DiffPlug Spotless before 1.20.0 (library and Maven plugin) and before 3.20.0 (Gradle plugin), the XML parser would resolve external entities over both HTTP and HTTPS and didn't respect the resolve…	CWE-611 XXE	CVE-2019-9843	2024-11-21 13:52	2019-06-29	Show	GitHub Exploit DB Packet Storm

215248	8.8	HIGH Network	rockoa	rockoa	RockOA 1.8.7 allows remote attackers to obtain sensitive information because the webmain/webmainAction.php publictreestore method constructs a SQL WHERE clause unsafely by using the pidfields and idf…	CWE-89 SQL Injection	CVE-2019-9846	2024-11-21 13:52	2019-06-29	Show	GitHub Exploit DB Packet Storm

215249	5.3	MEDIUM Network	amd opensuse	secure_encrypted_virtualization_firmware leap	Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic imp…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-9836	2024-11-21 13:52	2019-06-26	Show	GitHub Exploit DB Packet Storm

215250	8.8	HIGH Network	quadbase	espressreport_enterprise_server	CSRF within the admin panel in Quadbase EspressReport ES (ERES) v7.0 update 7 allows remote attackers to escalate privileges, or create new admin accounts by crafting a malicious web page that issues…	CWE-352 Origin Validation Error	CVE-2019-9958	2024-11-21 13:52	2019-06-25	Show	GitHub Exploit DB Packet Storm