Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 2:16 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227921	6.9	警告	Standards Based Linux Instrumentation (SBLIM)	-	SBLIM sblim-sfcb の SSL certificate setup program における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2009-0416	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

227922	10	危険	The Tor Project	-	Tor における脆弱性	CWE-399 リソース管理の問題	CVE-2009-0414	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

227923	4.3	警告	Roundcube.net	-	roundcubemail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0413	2012-12-20 19:10	2009-01-20	Show	GitHub Exploit DB Packet Storm

227924	7.5	危険	smartsitecms	-	smartSite CMS の articles.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0405	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

227925	6.8	警告	socialengine	-	SocialEngine の blog.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0400	2012-12-20 19:10	2009-02-3	Show	GitHub Exploit DB Packet Storm

227926	7.8	危険	sony ericsson	-	Sony Ericsson W910i などの電話機におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0396	2012-12-20 19:10	2009-02-2	Show	GitHub Exploit DB Packet Storm

227927	7.5	危険	ple cms	-	PLEs CMS の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0394	2012-12-20 19:10	2009-02-2	Show	GitHub Exploit DB Packet Storm

227928	6.8	警告	sitexs cms	-	SiteXS CMS の post.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0371	2012-12-20 19:10	2009-01-30	Show	GitHub Exploit DB Packet Storm

227929	9.3	危険	wesnoth	-	Wesnoth の Python AI モジュールにおけるサンドボックスをエスケープされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-0367	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

227930	4.3	警告	wesnoth	-	Wesnoth の src/server/simple_wml.cpp におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0366	2012-12-20 19:10	2009-03-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221521	6.5	MEDIUM Network	ezxml_project	ezxml	An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while parsing crafted a XML file, performs incorrect memory handling, leading to a heap-based buffer over-read in the …	CWE-125 Out-of-bounds Read	CVE-2019-20200	2024-11-21 13:38	2020-01-1	Show	GitHub Exploit DB Packet Storm

221522	6.5	MEDIUM Network	ezxml_project	ezxml	An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while parsing a crafted XML file, performs incorrect memory handling, leading to NULL pointer dereference while runnin…	CWE-125 CWE-476 Out-of-bounds Read NULL Pointer Dereference	CVE-2019-20199	2024-11-21 13:38	2020-01-1	Show	GitHub Exploit DB Packet Storm

221523	6.5	MEDIUM Network	ezxml_project	ezxml	An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_ent_ok() mishandles recursion, leading to stack consumption for a crafted XML file.	CWE-674 Uncontrolled Recursion	CVE-2019-20198	2024-11-21 13:38	2020-01-1	Show	GitHub Exploit DB Packet Storm

221524	8.8	HIGH Network	nagios	nagios_xi	In Nagios XI 5.6.9, an authenticated user is able to execute arbitrary OS commands via shell metacharacters in the id parameter to schedulereport.php, in the context of the web-server user account.	CWE-78 OS Command	CVE-2019-20197	2024-11-21 13:38	2020-01-1	Show	GitHub Exploit DB Packet Storm

221525	7.5	HIGH Network	pureftpd fedoraproject	pure-ftpd fedora	In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c.	CWE-400 Uncontrolled Resource Consumption	CVE-2019-20176	2024-11-21 13:38	2020-01-1	Show	GitHub Exploit DB Packet Storm

221526	7.5	HIGH Network	qemu	qemu	An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSI_IOCTL_SEND_COMMAND. It hits an …	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2019-20175	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

221527	7.8	HIGH Local	serenityos	serenityos	Kernel/VM/MemoryManager.cpp in SerenityOS before 2019-12-30 does not reject syscalls with pointers into the kernel-only virtual address space, which allows local users to gain privileges by overwriti…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-20172	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

221528	5.5	MEDIUM Local	gpac debian	gpac debian_linux	An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is an invalid pointer dereference in the function GF_IPMPX_AUTH_Delete() in odf/ipmpx_code.c.	CWE-763 Release of Invalid Pointer or Reference	CVE-2019-20170	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

221529	5.5	MEDIUM Local	gpac	gpac	An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function trak_Read() in isomedia/box_code_base.c.	CWE-416 Use After Free	CVE-2019-20169	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

221530	5.5	MEDIUM Local	gpac	gpac	An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a use-after-free in the function gf_isom_box_dump_ex() in isomedia/box_funcs.c.	CWE-416 Use After Free	CVE-2019-20168	2024-11-21 13:38	2019-12-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed