Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227881 6.8 警告 VBSEO - vBulletin 用の Crawlability vBSEO プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1077 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227882 4.3 警告 sniggabo - Sniggabo CMS の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1072 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227883 7.5 危険 phpmdj - phpMDJ の profil.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1071 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227884 7.5 危険 proarcadescript - ProArcadeScript の games/game.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1069 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227885 5 警告 the-ghost - AWCM におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1066 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227886 6.8 警告 PHP工房 - Phpkobo Free Real Estate Contact Form におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1063 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227887 6.8 警告 PHP工房 - Phpkobo Free Real Estate Contact Form の codelib/sys/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1062 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227888 6.8 警告 PHP工房 - Phpkobo Short URL におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1061 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227889 6.8 警告 PHP工房 - Phpkobo Short URL の staff/app/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1060 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227890 6.8 警告 PHP工房 - Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1059 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221151 5.5 MEDIUM
Local 		huawei honor_v10_firmware
p30_firmware
enjoy_7s_firmware
mate_20_firmware
honor_9_lite_firmware
honor_9i_firmware
m6_firmware
p30_pro_firmware
honor_20s_firmware 		There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installi… CWE-22
Path Traversal 		CVE-2019-5251 2024-11-21 13:44 2019-12-14 Show GitHub Exploit DB Packet Storm
221152 7.8 HIGH
Local 		huawei mate_20_pro_firmware Mate 20 Pro smartphones with versions earlier than 9.1.0.135(C00E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation of certain privilege,… CWE-269
 Improper Privilege Management 		CVE-2019-5250 2024-11-21 13:44 2019-12-14 Show GitHub Exploit DB Packet Storm
221153 7.4 HIGH
Adjacent 		huawei cloudengine_12800_firmware CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. A… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-5248 2024-11-21 13:44 2019-12-14 Show GitHub Exploit DB Packet Storm
221154 8.8 HIGH
Network 		kakadusoftware kakadu_software An exploitable heap underflow vulnerability exists in the derive_taps_and_gains function in kdu_v7ar.dll of Kakadu Software SDK 7.10.2. A specially crafted jp2 file can cause a heap overflow, which c… CWE-787
 Out-of-bounds Write 		CVE-2019-5144 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
221155 6.5 MEDIUM
Adjacent 		w1.fi hostapd An exploitable denial-of-service vulnerability exists in the 802.11w security state handling for hostapd 2.6 connected clients with valid 802.11w sessions. By simulating an incomplete new association… CWE-346
 Origin Validation Error 		CVE-2019-5062 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
221156 6.5 MEDIUM
Adjacent 		w1.fi hostapd An exploitable denial-of-service vulnerability exists in the hostapd 2.6, where an attacker could trigger AP to send IAPP location updates for stations, before the required authentication process has… CWE-287
Improper Authentication 		CVE-2019-5061 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
221157 8.8 HIGH
Network 		leadtools leadtools An exploitable heap overflow vulnerability exists in the JPEG2000 parsing functionality of LEADTOOLS 20.0.2019.3.15. A specially crafted J2K image file can cause an out of bounds write of a null byte… CWE-787
 Out-of-bounds Write 		CVE-2019-5154 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221158 9.8 CRITICAL
Network 		leadtools leadtools An exploitable code execution vulnerability exists in the DICOM network response functionality of LEADTOOLS libltdic.so version 20.0.2019.3.15. A specially crafted packet can cause an integer overflo… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-5093 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221159 8.8 HIGH
Network 		leadtools leadtools An exploitable heap out of bounds write vulnerability exists in the UI tag parsing functionality of the DICOM image format of LEADTOOLS 20.0.2019.3.15. A specially crafted DICOM image can cause an of… CWE-787
 Out-of-bounds Write 		CVE-2019-5092 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221160 7.5 HIGH
Network 		leadtools leadtools An exploitable denial-of-service vulnerability exists in the Dicom-packet parsing functionality of LEADTOOLS libltdic.so version 20.0.2019.3.15. A specially crafted packet can cause an infinite loop,… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-5091 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm