Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226421 6.8 警告 オラクル - Oracle MySQL の MySQL Server における Server Optimizer の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1703 2013-01-11 15:06 2012-04-17 Show GitHub Exploit DB Packet Storm
226422 6.4 警告 マイクロソフト - Microsoft Windows の SSL プロバイダコンポーネントにおける SSLv2 ダウングレード攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0013 2013-01-11 14:05 2013-01-8 Show GitHub Exploit DB Packet Storm
226423 10 危険 マイクロソフト - Microsoft Windows Server 2008 R2 および Windows 7 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-0011 2013-01-11 14:05 2013-01-8 Show GitHub Exploit DB Packet Storm
226424 4.3 警告 マイクロソフト - Microsoft System Center Operations Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0010 2013-01-11 14:04 2013-01-8 Show GitHub Exploit DB Packet Storm
226425 4.3 警告 マイクロソフト - Microsoft System Center Operations Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0009 2013-01-11 14:02 2013-01-8 Show GitHub Exploit DB Packet Storm
226426 10 危険 マイクロソフト - Microsoft XML コアサービスにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-0007 2013-01-11 13:48 2013-01-8 Show GitHub Exploit DB Packet Storm
226427 6.8 警告 Maxtom - Atomymaxsite の index.php における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2012-6498 2013-01-9 11:59 2012-10-17 Show GitHub Exploit DB Packet Storm
226428 6.4 警告 レッドハット - JBoss Enterprise Application Platform における EJB へアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4550 2013-01-8 16:39 2012-12-18 Show GitHub Exploit DB Packet Storm
226429 5.8 警告 レッドハット - JBoss Enterprise Application Platform におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4549 2013-01-8 16:38 2012-12-18 Show GitHub Exploit DB Packet Storm
226430 5 警告 Apache Software Foundation - Apache CXF における子ポリシーを回避される脆弱性 CWE-200
情報漏えい 		CVE-2012-2378 2013-01-8 16:37 2012-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223841 5.5 MEDIUM
Local 		totaldefense anti-virus The quarantine restoration function in Total Defense Anti-virus 11.5.2.28 is vulnerable to symbolic link attacks, allowing files to be written to privileged directories. CWE-59
Link Following 		CVE-2019-18645 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223842 8.8 HIGH
Network 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service or gain privileges by leveraging the erroneous enabling of interrupts. Interrupts are unconditio… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-18422 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223843 7.5 HIGH
Network 		xen
debian
fedoraproject
opensuse 		xen
debian_linux
fedora
leap 		An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations. There are issues … CWE-362
Race Condition 		CVE-2019-18421 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223844 6.5 MEDIUM
Network 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via a VCPUOP_initialise hypercall. hypercall_create_continuation() is a variadic function whi… CWE-134
Use of Externally-Controlled Format String 		CVE-2019-18420 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223845 5.9 MEDIUM
Network 		totaldefense anti-virus The malware scan function in Total Defense Anti-virus 11.5.2.28 is vulnerable to a TOCTOU bug; consequently, symbolic link attacks allow privileged files to be deleted. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2019-18644 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223846 7.5 HIGH
Network 		themooltipass moolticute An issue was discovered in Mooltipass Moolticute through v0.42.1 and v0.42.x-testing through v0.42.5-testing. There is a NULL pointer dereference in MPDevice_win.cpp. CWE-476
 NULL Pointer Dereference 		CVE-2019-18635 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223847 9.8 CRITICAL
Network 		europa eidas-node_integration_package European Commission eIDAS-Node Integration Package before 2.3.1 has Missing Certificate Validation because a certain ExplicitKeyTrustEvaluator return value is not checked. NOTE: only 2.1 is confirmed… CWE-295
Improper Certificate Validation  		CVE-2019-18633 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223848 9.8 CRITICAL
Network 		europa eidas-node_integration_package European Commission eIDAS-Node Integration Package before 2.3.1 allows Certificate Faking because an attacker can sign a manipulated SAML response with a forged certificate. CWE-295
Improper Certificate Validation  		CVE-2019-18632 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223849 9.8 CRITICAL
Network 		opera mini Opera Mini for Android allows attackers to bypass intended restrictions on .apk file download/installation via an RTLO (aka Right to Left Override) approach, as demonstrated by misinterpretation of m… NVD-CWE-noinfo
CVE-2019-18624 2024-11-21 13:33 2019-10-30 Show GitHub Exploit DB Packet Storm
223850 5.3 MEDIUM
Network 		mediawiki abusefilter An issue was discovered in the AbuseFilter extension through 1.34 for MediaWiki. Previously hidden (restricted) AbuseFilter filters were viewable (or their differences were viewable) to unprivileged … CWE-200
Information Exposure 		CVE-2019-18612 2024-11-21 13:33 2019-10-30 Show GitHub Exploit DB Packet Storm