Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 27, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254281 | 5.5 | 警告 | オラクル | - | Oracle Industry Applications の InForm コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0855 | 2011-05-17 09:45 | 2011-04-19 | Show | GitHub Exploit DB Packet Storm |
| 254282 | 5.5 | 警告 | オラクル | - | Oracle PeopleSoft Enterprise HRMS における ePerformance に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0854 | 2011-05-17 09:44 | 2011-04-19 | Show | GitHub Exploit DB Packet Storm |
| 254283 | 5.5 | 警告 | オラクル | - | Oracle PeopleSoft Enterprise HRMS における ePerformance に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0853 | 2011-05-17 09:43 | 2011-04-19 | Show | GitHub Exploit DB Packet Storm |
| 254284 | 5.5 | 警告 | オラクル | - | Oracle PeopleSoft Enterprise ELS における Enterprise Learning Mgmt に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0851 | 2011-05-17 09:41 | 2011-04-19 | Show | GitHub Exploit DB Packet Storm |
| 254285 | 5.5 | 警告 | オラクル | - | Oracle PeopleSoft Enterprise CRM における Order Capture に関する脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0850 | 2011-05-17 09:28 | 2011-04-19 | Show | GitHub Exploit DB Packet Storm |
| 254286 | 4.3 | 警告 | オラクル | - | Oracle Java Dynamic Management Kit の HTML Adaptor における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2011-0849 | 2011-05-17 09:27 | 2011-04-19 | Show | GitHub Exploit DB Packet Storm |
| 254287 | 4.3 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット オラクル |
- | 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-2769 | 2011-05-17 09:01 | 2010-09-7 | Show | GitHub Exploit DB Packet Storm |
| 254288 | 4.3 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット オラクル |
- | 複数の Mozilla 製品におけるクロスサイトスクリプティングに対する保護メカニズムを回避される脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-2768 | 2011-05-17 09:00 | 2010-09-7 | Show | GitHub Exploit DB Packet Storm |
| 254289 | 4.3 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット オラクル |
- | 複数の Mozilla 製品におけるイントラネット上の Web サーバの存在を発見される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-2764 | 2011-05-17 08:59 | 2010-09-7 | Show | GitHub Exploit DB Packet Storm |
| 254290 | 6.8 | 警告 | サイバートラスト株式会社 Mozilla Foundation レッドハット オラクル |
- | Mozilla 製品の SafeJSObjectWrapper 実装におけるクローム特権で任意の JavaScript コードを実行される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-2762 | 2011-05-17 08:56 | 2010-09-7 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 27, 2026, 4:52 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 221131 | 8.8 |
HIGH
Network |
libssh2 debian netapp opensuse redhat fedoraproject oracle |
libssh2 debian_linux ontap_select_deploy_administration_utility leap enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus … |
An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHANNEL_REQUEST packets with an exit signal are parsed. A remote attacker… |
CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound |
CVE-2019-3857 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221132 | 8.8 |
HIGH
Network |
libssh2 debian netapp opensuse redhat fedoraproject oracle |
libssh2 debian_linux ontap_select_deploy_administration_utility leap enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus … |
An integer overflow flaw, which could lead to an out of bounds write, was discovered in libssh2 before 1.8.1 in the way keyboard prompt requests are parsed. A remote attacker who compromises a SSH se… |
CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound |
CVE-2019-3856 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221133 | 9.8 |
CRITICAL
Network |
atlassian |
confluence confluence_server |
The WebDAV endpoint in Atlassian Confluence Server and Data Center before version 6.6.7 (the fixed version for 6.6.x), from version 6.7.0 before 6.8.5 (the fixed version for 6.8.x), and from version … |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2019-3395 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221134 | 5.5 |
MEDIUM
Local |
artifex redhat fedoraproject opensuse debian |
ghostscript enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus enterprise_linu… |
It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example,… |
NVD-CWE-Other
|
CVE-2019-3838 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221135 | 5.5 |
MEDIUM
Local |
artifex redhat fedoraproject debian opensuse |
ghostscript enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus enterprise_linux_server_eus enterprise_linux_server_aus ansi… |
It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have ac… |
CWE-862
Missing Authorization |
CVE-2019-3835 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221136 | 9.8 |
CRITICAL
Network |
atlassian |
confluence confluence_server |
The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 (the fixed version for 6.6.x), from version 6.7.0 before 6.12.3 (the fixed version for 6.12.x), from version 6.13.0 bef… |
CWE-22
Path Traversal |
CVE-2019-3396 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221137 | 6.8 |
MEDIUM
Network |
kubevirt | containerized_data_importer | Kubevirt/virt-cdi-importer, versions 1.4.0 to 1.5.3 inclusive, were reported to disable TLS certificate validation when importing data into PVCs from container registries. This could enable man-in-th… |
CWE-295
Improper Certificate Validation |
CVE-2019-3841 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221138 | 6.7 |
MEDIUM
Local |
ovirt redhat |
vdsm gluster_storage |
A vulnerability was discovered in vdsm, version 4.19 through 4.30.3 and 4.30.5 through 4.30.8. The systemd_run function exposed to the vdsm system user could be abused to execute arbitrary commands a… |
NVD-CWE-Other
|
CVE-2019-3831 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221139 | 8.8 |
HIGH
Network |
libssh2 debian netapp opensuse redhat |
libssh2 debian_linux ontap_select_deploy_administration_utility leap enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_server_tus … |
A flaw was found in libssh2 before 1.8.1. A server could send a multiple keyboard interactive response messages whose total length are greater than unsigned char max characters. This value is used as… |
CWE-787
Out-of-bounds Write |
CVE-2019-3863 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |
| 221140 | 7.0 |
HIGH
Local |
gnome | gvfs | An incorrect permission check in the admin backend in gvfs before version 1.39.4 was found that allows reading and modify arbitrary files by privileged users without asking for password when no authe… |
CWE-863
Incorrect Authorization |
CVE-2019-3827 | 2024-11-21 13:42 | 2019-03-26 | Show | GitHub Exploit DB Packet Storm |