Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226631	7.5	危険	Cenango Financial LLC	-	WikidForum の advanced search における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6520	2013-01-25 14:33	2013-01-24	Show	GitHub Exploit DB Packet Storm

226632	7.5	危険	diy-cms	-	DIY-CMS の modules/poll/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6519	2013-01-25 14:33	2013-01-24	Show	GitHub Exploit DB Packet Storm

226633	6.8	警告	diy-cms	-	DiY-CMS の mod.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6518	2013-01-25 14:32	2013-01-24	Show	GitHub Exploit DB Packet Storm

226634	4.3	警告	diy-cms	-	DiY-CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6517	2013-01-25 14:31	2013-01-24	Show	GitHub Exploit DB Packet Storm

226635	7.5	危険	Shawn Bradley	-	PHP Ticket System における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6516	2013-01-25 14:30	2013-01-24	Show	GitHub Exploit DB Packet Storm

226636	5	警告	eFront Learning	-	eFront における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6515	2013-01-25 14:30	2013-01-24	Show	GitHub Exploit DB Packet Storm

226637	4.3	警告	Netshine Software	-	Joomla! 用 nBill コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6514	2013-01-25 14:28	2013-01-24	Show	GitHub Exploit DB Packet Storm

226638	4.3	警告	gpEasy	-	gpEasy CMS の index.php/Admin_Preferences におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6513	2013-01-25 14:28	2013-01-24	Show	GitHub Exploit DB Packet Storm

226639	5	警告	Imthiaz	-	WordPress 用 Organizer プラグインにおけるインストールパスを取得される脆弱性	CWE-200 情報漏えい	CVE-2012-6512	2013-01-25 14:27	2013-01-24	Show	GitHub Exploit DB Packet Storm

226640	4.3	警告	Imthiaz	-	WordPress 用 Organizer プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6511	2013-01-25 14:26	2013-01-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224261	5.5	MEDIUM Local	linux fedoraproject redhat	linux_kernel fedora enterprise_linux	A memory leak in the sof_set_get_large_ctrl_data() function in sound/soc/sof/ipc.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering s…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-18811	2024-11-21 13:33	2019-11-8	Show	GitHub Exploit DB Packet Storm

224262	7.5	HIGH Network	linux canonical	linux_kernel ubuntu_linux	A memory leak in the komeda_wb_connector_add() function in drivers/gpu/drm/arm/display/komeda/komeda_wb_connector.c in the Linux kernel before 5.3.8 allows attackers to cause a denial of service (mem…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-18810	2024-11-21 13:33	2019-11-8	Show	GitHub Exploit DB Packet Storm

224263	4.6	MEDIUM Physics	linux debian canonical fedoraproject opensuse	linux_kernel debian_linux ubuntu_linux fedora leap	A memory leak in the af9005_identify_state() function in drivers/media/usb/dvb-usb/af9005.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka C…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-18809	2024-11-21 13:33	2019-11-8	Show	GitHub Exploit DB Packet Storm

224264	5.5	MEDIUM Local	linux fedoraproject opensuse canonical	linux_kernel fedora leap ubuntu_linux	A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-18808	2024-11-21 13:33	2019-11-8	Show	GitHub Exploit DB Packet Storm

224265	7.5	HIGH Network	linux	linux_kernel	Two memory leaks in the sja1105_static_config_upload() function in drivers/net/dsa/sja1105/sja1105_spi.c in the Linux kernel before 5.3.5 allow attackers to cause a denial of service (memory consumpt…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-18807	2024-11-21 13:33	2019-11-8	Show	GitHub Exploit DB Packet Storm

224266	5.5	MEDIUM Local	linux	linux_kernel	A memory leak in the ql_alloc_large_buffers() function in drivers/net/ethernet/qlogic/qla3xxx.c in the Linux kernel before 5.3.5 allows local users to cause a denial of service (memory consumption) b…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-18806	2024-11-21 13:33	2019-11-8	Show	GitHub Exploit DB Packet Storm

224267	7.5	HIGH Network	djvulibre_project debian fedoraproject canonical opensuse	djvulibre debian_linux fedora ubuntu_linux leap	DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filter_fv at IW44EncodeCodec.cpp.	CWE-476 NULL Pointer Dereference	CVE-2019-18804	2024-11-21 13:33	2019-11-7	Show	GitHub Exploit DB Packet Storm

224268	9.8	CRITICAL Network	linux opensuse redhat netapp broadcom	linux_kernel leap enterprise_linux steelstore_cloud_integrated_storage data_availability_services solidfire hci_management_node hci_storage_node active_iq_unified_manager f…	An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very l…	CWE-190 Integer Overflow or Wraparound	CVE-2019-18805	2024-11-21 13:33	2019-11-7	Show	GitHub Exploit DB Packet Storm

224269	8.8	HIGH Network	zohocorp	manageengine_adselfservice_plus	Zoho ManageEngine ADSelfService Plus 5.x through 5803 has CSRF on the users' profile information page. Users who are attacked with this vulnerability will be forced to modify their enrolled informati…	CWE-352 Origin Validation Error	CVE-2019-18411	2024-11-21 13:33	2019-11-7	Show	GitHub Exploit DB Packet Storm

224270	6.5	MEDIUM Network	sass-lang	libsass	LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser::parseCompoundSelector in parser_selectors.cpp.	CWE-476 NULL Pointer Dereference	CVE-2019-18799	2024-11-21 13:33	2019-11-7	Show	GitHub Exploit DB Packet Storm