Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 12:08 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
258621 10 危険 マイクロソフト - Microsoft Windows の Distributed File System 実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1868 2011-06-24 10:01 2011-06-14 Show GitHub Exploit DB Packet Storm
258622 5.7 警告 Linux
レッドハット
- Linux kernel の RPC サーバソケット機能におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-399
リソース管理の問題
CVE-2011-0714 2011-06-23 11:48 2011-03-8 Show GitHub Exploit DB Packet Storm
258623 9.3 危険 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-1873 2011-06-23 11:42 2011-06-14 Show GitHub Exploit DB Packet Storm
258624 10 危険 マイクロソフト - Microsoft Forefront Threat Management Gateway (TMG) 2010 クライアントの NSPLookupServiceNext 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2011-1889 2011-06-23 11:30 2011-06-14 Show GitHub Exploit DB Packet Storm
258625 9.3 危険 マイクロソフト - Microsoft .NET Framework および Silverlight における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2011-0664 2011-06-23 11:29 2011-06-14 Show GitHub Exploit DB Packet Storm
258626 9.3 危険 マイクロソフト - Microsoft Windows の OLE オートメーションプロトコル実装における整数アンダーフローの脆弱性 CWE-189
数値処理の問題
CVE-2011-0658 2011-06-23 11:28 2011-06-14 Show GitHub Exploit DB Packet Storm
258627 4.3 警告 マイクロソフト - Microsoft Windows の MHTML プロトコルハンドラにおけるクロスサイトスクリプティングを誘導される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2011-1894 2011-06-23 11:27 2011-06-14 Show GitHub Exploit DB Packet Storm
258628 5.5 警告 ターボリナックス
Timo Sirainen
レッドハット
- Dovecot の plugins/acl/acl-backend-vfile.c におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2010-3707 2011-06-23 11:15 2010-10-2 Show GitHub Exploit DB Packet Storm
258629 4 警告 ターボリナックス
Timo Sirainen
レッドハット
- Dovecot におけるサービス運用妨害 (master process outage) の脆弱性 CWE-Other
その他
CVE-2010-3780 2011-06-23 11:14 2010-10-2 Show GitHub Exploit DB Packet Storm
258630 4.3 警告 Google - Android の Android ブラウザにおける SD カード上の情報を取得される脆弱性 CWE-200
情報漏えい
CVE-2010-4804 2011-06-21 07:53 2011-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
225371 6.1 MEDIUM
Network
nagios nagios_xi Cross-site scripting (XSS) vulnerability in Nagios XI before 5.5.11 allows attackers to inject arbitrary web script or HTML via the xiwindow parameter. CWE-79
Cross-site Scripting
CVE-2019-9167 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
225372 7.8 HIGH
Local
nagios nagios_xi Privilege escalation in Nagios XI before 5.5.11 allows local attackers to elevate privileges to root via write access to config.inc.php and import_xiconfig.php. CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2019-9166 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
225373 9.8 CRITICAL
Network
nagios incident_manager SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to execute arbitrary SQL commands. CWE-89
SQL Injection
CVE-2019-9204 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
225374 9.8 CRITICAL
Network
nagios incident_manager Authorization bypass in Nagios IM (component of Nagios XI) before 2.2.7 allows closing incidents in IM via the API. NVD-CWE-noinfo
CVE-2019-9203 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
225375 8.8 HIGH
Network
nagios incident_manager Nagios IM (component of Nagios XI) before 2.2.7 allows authenticated users to execute arbitrary code via API key issues. NVD-CWE-noinfo
CVE-2019-9202 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
225376 9.8 CRITICAL
Network
nagios nagios_xi SQL injection vulnerability in Nagios XI before 5.5.11 allows attackers to execute arbitrary SQL commands via the API when using fusekeys and malicious user id. CWE-89
SQL Injection
CVE-2019-9165 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
225377 8.8 HIGH
Network
nagios nagios_xi Command injection in Nagios XI before 5.5.11 allows an authenticated users to execute arbitrary remote commands via a new autodiscovery job. CWE-79
Cross-site Scripting
CVE-2019-9164 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
225378 6.1 MEDIUM
Network
mailtraq webmail Mailtraq WebMail version 2.17.7.3550 has Persistent Cross Site Scripting (XSS) via the body of an e-mail message. To exploit the vulnerability, the victim must open an email with malicious Javascript… CWE-79
Cross-site Scripting
CVE-2019-9558 2024-11-21 13:51 2019-03-13 Show GitHub Exploit DB Packet Storm
225379 6.1 MEDIUM
Network
codecrafters ability_mail_server Ability Mail Server 4.2.6 has Persistent Cross Site Scripting (XSS) via the body e-mail body. To exploit the vulnerability, the victim must open an email with malicious Javascript inserted into the b… CWE-79
Cross-site Scripting
CVE-2019-9557 2024-11-21 13:51 2019-03-13 Show GitHub Exploit DB Packet Storm
225380 6.1 MEDIUM
Network
stackstorm stackstorm In st2web in StackStorm Web UI before 2.9.3 and 2.10.x before 2.10.3, it is possible to bypass the CORS protection mechanism via a "null" origin value, potentially leading to XSS. CWE-79
Cross-site Scripting
CVE-2019-9580 2024-11-21 13:51 2019-03-9 Show GitHub Exploit DB Packet Storm