Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230151 5.8 警告 pivot - Pivot におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-3533 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230152 5.1 警告 pivot - Pivot の includes/edit_new.php における任意の PHP コードを実行される脆弱性 - CVE-2006-3532 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230153 7.5 危険 pivot - Pivot の includes/editor/insert_image.php における任意のファイルをアップロードされる脆弱性 - CVE-2006-3531 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230154 6.8 警告 Joomla! - Mambo 用の PccookBook Component の com_pccookbook/pccookbook.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2006-3530 2012-12-20 18:02 2006-07-12 Show GitHub Exploit DB Packet Storm
230155 2.1 注意 シマンテック - SODP の SODA および Virtual Desktop モジュール における重要なデータを読み取られる脆弱性 - CVE-2006-3457 2012-12-20 18:02 2006-08-1 Show GitHub Exploit DB Packet Storm
230156 4.3 警告 シマンテック - Symantec AntiVirus Corporate Edition などで使用される SAVRT.SYS デバイスドライバにおける任意のコードを実行される脆弱性 - CVE-2006-3455 2012-12-20 18:02 2006-10-23 Show GitHub Exploit DB Packet Storm
230157 7.2 危険 シマンテック - Symantec AntiVirus Corporate Edition などにおけるフォーマットストリングの脆弱性 - CVE-2006-3454 2012-12-20 18:02 2006-09-13 Show GitHub Exploit DB Packet Storm
230158 5.1 警告 アドビシステムズ - Adobe Acrobat におけるバッファオーバーフローの脆弱性 - CVE-2006-3453 2012-12-20 18:02 2006-07-11 Show GitHub Exploit DB Packet Storm
230159 5.1 警告 cimmetry systems - AutoVue SolidModel Professional Desktop Edition におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-3350 2012-12-20 18:02 2006-07-27 Show GitHub Exploit DB Packet Storm
230160 7.5 危険 hotwebscripts - CMS Mundo における SQL インジェクションの脆弱性 - CVE-2006-3135 2012-12-20 18:02 2006-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211711 7.8 HIGH
Local 		libreoffice libreoffice LibreOffice documents can contain macros. The execution of those macros is controlled by the document security settings, typically execution of macros are blocked by default. A URL decoding flaw exis… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2019-9853 2024-11-21 13:52 2019-09-28 Show GitHub Exploit DB Packet Storm
211712 6.5 MEDIUM
Network 		libav libav A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuse… CWE-787
 Out-of-bounds Write 		CVE-2019-9720 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
211713 8.8 HIGH
Network 		libav libav A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuse… CWE-787
 Out-of-bounds Write 		CVE-2019-9719 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
211714 6.5 MEDIUM
Network 		libav libav In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c has a complex format … CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-9717 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
211715 5.3 MEDIUM
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Some Dahua products have information leakage issues. Attackers can obtain the IP address and device model information of the device by constructing malicious data packets. Affected products include: … NVD-CWE-noinfo
CVE-2019-9680 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm
211716 8.8 HIGH
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Some of Dahua's Debug functions do not have permission separation. Low-privileged users can use the Debug function after logging in. Affected products include: IPC-HDW1X2X,IPC-HFW1X2X,IPC-HDW2X2X,IPC… CWE-276
Incorrect Default Permissions  		CVE-2019-9679 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm
211717 7.5 HIGH
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Some Dahua products have the problem of denial of service during the login process. An attacker can cause a device crashed by constructing a malicious packet. Affected products include: IPC-HDW1X2X,I… NVD-CWE-noinfo
CVE-2019-9678 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm
211718 9.8 CRITICAL
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		The specific fields of CGI interface of some Dahua products are not strictly verified, an attacker can cause a buffer overflow by constructing malicious packets. Affected products include: IPC-HDW1X2… CWE-120
Classic Buffer Overflow 		CVE-2019-9677 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm
211719 5.3 MEDIUM
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Online upgrade information in some firmware packages of Dahua products is not encrypted. Attackers can obtain this information by analyzing firmware packages by specific means. Affected products incl… CWE-311
Missing Encryption of Sensitive Data 		CVE-2019-9681 2024-11-21 13:52 2019-09-18 Show GitHub Exploit DB Packet Storm
211720 9.8 CRITICAL
Network 		libreoffice
opensuse 		libreoffice
leap 		LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. LibreOffice… CWE-417
 Channel and Path Errors 		CVE-2019-9855 2024-11-21 13:52 2019-09-7 Show GitHub Exploit DB Packet Storm