Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226971 4.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1255 2013-02-14 17:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226972 4.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1254 2013-02-14 17:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226973 4.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1253 2013-02-14 17:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226974 4.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1252 2013-02-14 17:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226975 4.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1251 2013-02-14 17:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226976 4.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1250 2013-02-14 17:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226977 4.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1249 2013-02-14 17:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226978 4.9 警告 マイクロソフト - Microsoft Windows のカーネルモードドライバ内の win32k.sys における権限昇格の脆弱性 CWE-362
競合状態 		CVE-2013-1248 2013-02-14 17:11 2013-02-12 Show GitHub Exploit DB Packet Storm
226979 7.2 危険 マイクロソフト - Microsoft Windows Server 2008 R2 および Windows 7 における権限昇格の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0076 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
226980 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 10 の VML の実装における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-0030 2013-02-14 16:53 2013-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221411 6.8 MEDIUM
Network 		openbsd
winscp
netapp
siemens 		openssh
winscp
element_software
storage_automation_store
ontap_select_deploy
scalance_x204rna_firmware
scalance_x204rna_eec_firmware 		In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI c… CWE-838
 Inappropriate Encoding for Output Context 		CVE-2019-6110 2024-11-21 13:45 2019-02-1 Show GitHub Exploit DB Packet Storm
221412 6.8 MEDIUM
Network 		openbsd
winscp
canonical
debian
netapp
fedoraproject
redhat
siemens
fujitsu 		openssh
winscp
ubuntu_linux
debian_linux
element_software
storage_automation_store
ontap_select_deploy
fedora
enterprise_linux
enterprise_linux_eus
enterprise_linux_serv… 		An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2019-6109 2024-11-21 13:45 2019-02-1 Show GitHub Exploit DB Packet Storm
221413 5.5 MEDIUM
Local 		artifex mupdf Artifex MuPDF 1.14.0 has a SEGV in the function fz_load_page of the fitz/document.c file, as demonstrated by mutool. This is related to page-number mishandling in cbz/mucbz.c, cbz/muimg.c, and svg/sv… CWE-118
Incorrect Access of Indexable Resource ('Range Error') 		CVE-2019-6130 2024-11-21 13:45 2019-01-11 Show GitHub Exploit DB Packet Storm
221414 6.5 MEDIUM
Network 		libpng libpng png_create_info_struct in png.c in libpng 1.6.36 has a memory leak, as demonstrated by pngcp. NOTE: a third party has stated "I don't think it is libpng's job to free this buffer. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-6129 2024-11-21 13:45 2019-01-11 Show GitHub Exploit DB Packet Storm
221415 8.8 HIGH
Network 		libtiff
canonical
opensuse
debian 		libtiff
ubuntu_linux
leap
debian_linux 		The TIFFFdOpen function in tif_unix.c in LibTIFF 4.0.10 has a memory leak, as demonstrated by pal2rgb. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-6128 2024-11-21 13:45 2019-01-11 Show GitHub Exploit DB Packet Storm
221416 7.2 HIGH
Network 		xiaocms xiaocms An issue was discovered in XiaoCms 20141229. It allows admin/index.php?c=database table[] SQL injection. This can be used for PHP code execution via "INTO OUTFILE" with a .php filename. CWE-89
SQL Injection 		CVE-2019-6127 2024-11-21 13:45 2019-01-11 Show GitHub Exploit DB Packet Storm
221417 7.5 HIGH
Network 		advance_peer_to_peer_mlm_script_project advance_peer_to_peer_mlm_script The Admin Panel of PHP Scripts Mall Advance Peer to Peer MLM Script v1.7.0 allows remote attackers to bypass intended access restrictions by directly navigating to admin/dashboard.php or admin/user.p… CWE-425
 Direct Request ('Forced Browsing') 		CVE-2019-6126 2024-11-21 13:45 2019-01-11 Show GitHub Exploit DB Packet Storm
221418 9.8 CRITICAL
Network 		nelson-it open_source_erp Nelson Open Source ERP v6.3.1 allows SQL Injection via the db/utils/query/data.xml query parameter. CWE-89
SQL Injection 		CVE-2019-5893 2024-11-21 13:45 2019-01-11 Show GitHub Exploit DB Packet Storm
221419 6.5 MEDIUM
Network 		frrouting frrouting bgpd in FRRouting FRR (aka Free Range Routing) 2.x and 3.x before 3.0.4, 4.x before 4.0.1, 5.x before 5.0.2, and 6.x before 6.0.2 (not affecting Cumulus Linux or VyOS), when ENABLE_BGP_VNC is used fo… CWE-436
 Interpretation Conflict 		CVE-2019-5892 2024-11-21 13:45 2019-01-11 Show GitHub Exploit DB Packet Storm
221420 7.5 HIGH
Network 		shopxo shopxo An issue was discovered in ShopXO 1.2.0. In the UnlinkDir method of the FileUtil.php file, the input parameters are not checked, resulting in input mishandling by the rmdir method. Attackers can dele… CWE-22
Path Traversal 		CVE-2019-5887 2024-11-21 13:45 2019-01-10 Show GitHub Exploit DB Packet Storm