Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227111	4.3	警告	tomaz-muraus	-	Tomaz Muraus Open Blog の application/modules/admin/controllers/users.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3026	2012-12-20 19:29	2010-08-16	Show	GitHub Exploit DB Packet Storm

227112	4.3	警告	tomaz-muraus	-	Tomaz Muraus Open Blog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3025	2012-12-20 19:29	2010-08-16	Show	GitHub Exploit DB Packet Storm

227113	7.5	危険	Pligg	-	Pligg の groupadmin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3013	2012-12-20 19:29	2010-08-11	Show	GitHub Exploit DB Packet Storm

227114	10	危険	Wireshark	-	Wireshark の ASN.1 BER 解析子におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2994	2012-12-20 19:29	2010-08-13	Show	GitHub Exploit DB Packet Storm

227115	5	警告	Wireshark	-	Wireshark の IPMI 解析子におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2993	2012-12-20 19:29	2010-08-13	Show	GitHub Exploit DB Packet Storm

227116	7.5	危険	rightinpoint	-	RightInPoint Lyrics Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2721	2012-12-20 19:29	2010-07-13	Show	GitHub Exploit DB Packet Storm

227117	7.5	危険	rich kavanagh	-	PsNews における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2716	2012-12-20 19:29	2010-07-13	Show	GitHub Exploit DB Packet Storm

227118	4.3	警告	tcwonline	-	TCW PHP Album の photos/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2715	2012-12-20 19:29	2010-07-13	Show	GitHub Exploit DB Packet Storm

227119	7.5	危険	tcwonline	-	TCW PHP Album の photos/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2714	2012-12-20 19:29	2010-07-13	Show	GitHub Exploit DB Packet Storm

227120	3.5	注意	sijio	-	Sijio Community Software におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2698	2012-12-20 19:29	2010-07-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221671	9.8	CRITICAL Network	google	flatbuffers	An issue was discovered in the flatbuffers crate before 0.6.1 for Rust. Arbitrary bytes can be reinterpreted as a bool, defeating soundness.	NVD-CWE-noinfo	CVE-2019-25004	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221672	7.5	HIGH Network	parity	libsecp256k1	An issue was discovered in the libsecp256k1 crate before 0.3.1 for Rust. Scalar::check_overflow allows a timing side-channel attack; consequently, attackers can obtain sensitive information.	NVD-CWE-Other	CVE-2019-25003	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221673	9.8	CRITICAL Network	sodiumoxide_project	sodiumoxide	An issue was discovered in the sodiumoxide crate before 0.2.5 for Rust. generichash::Digest::eq compares itself to itself and thus has degenerate security properties.	NVD-CWE-noinfo	CVE-2019-25002	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221674	7.5	HIGH Network	serde_cbor_project	serde_cbor	An issue was discovered in the serde_cbor crate before 0.10.2 for Rust. The CBOR deserializer can cause stack consumption via nested semantic tags.	CWE-787 Out-of-bounds Write	CVE-2019-25001	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221675	6.5	MEDIUM Local	qemu	qemu	In QEMU 4.1.0, an out-of-bounds read flaw was found in the ATI VGA implementation. It occurs in the ati_cursor_define() routine while handling MMIO write operations through the ati_mm_write() callbac…	CWE-125 Out-of-bounds Read	CVE-2019-20808	2024-11-21 13:39	2020-12-31	Show	GitHub Exploit DB Packet Storm

221676	5.3	MEDIUM Local	linux	linux_kernel	An issue was discovered in the Linux kernel before 5.2.6. On NUMA systems, the Linux fair scheduler has a use-after-free in show_numa_stats() because NUMA fault statistics are inappropriately freed, …	CWE-416 Use After Free	CVE-2019-20934	2024-11-21 13:39	2020-11-28	Show	GitHub Exploit DB Packet Storm

221677	7.5	HIGH Network	mongodb	mongodb	An unauthenticated client can trigger denial of service by issuing specially crafted wire protocol messages, which cause the message decompressor to incorrectly allocate memory. This issue affects Mo…	CWE-697 Incorrect Comparison	CVE-2019-20925	2024-11-21 13:39	2020-11-24	Show	GitHub Exploit DB Packet Storm

221678	6.5	MEDIUM Network	mongodb	mongodb	A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries which trigger an invariant in the IndexBoundsBuilder. This issue affects MongoDB Serve…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2019-20924	2024-11-21 13:39	2020-11-24	Show	GitHub Exploit DB Packet Storm

221679	6.5	MEDIUM Network	mongodb	mongodb	A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which throw unhandled Javascript exceptions containing types intended to be scoped to…	NVD-CWE-Other	CVE-2019-20923	2024-11-21 13:39	2020-11-24	Show	GitHub Exploit DB Packet Storm

221680	9.8	CRITICAL Network	influxdata debian	influxdb debian_linux	InfluxDB before 1.7.6 has an authentication bypass vulnerability in the authenticate function in services/httpd/handler.go because a JWT token may have an empty SharedSecret (aka shared secret).	CWE-287 Improper Authentication	CVE-2019-20933	2024-11-21 13:39	2020-11-19	Show	GitHub Exploit DB Packet Storm