Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230311	1.9	注意	シトリックス・システムズ	-	Xen におけるサービス運用妨害 (Xen の無限ループおよび物理 CPU の消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-4535	2012-12-17 12:28	2012-11-13	Show	GitHub Exploit DB Packet Storm

230312	4.3	警告	Wikka Development Team	-	WikkaWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2012-12-17 12:15	2012-12-17	Show	GitHub Exploit DB Packet Storm

230313	4.3	警告	Netsweeper, Inc.	-	Netsweeper の WebAdmin Portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2446	2012-12-17 11:02	2012-07-9	Show	GitHub Exploit DB Packet Storm

230314	10	危険	Netsweeper, Inc.	-	Netsweeper の WebAdmin Portal における脆弱性	CWE-noinfo 情報不足	CVE-2012-3859	2012-12-17 10:56	2012-07-9	Show	GitHub Exploit DB Packet Storm

230315	9.3	危険	マイクロソフト	-	複数の Microsoft Windows 製品におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-1537	2012-12-17 10:56	2012-12-11	Show	GitHub Exploit DB Packet Storm

230316	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-2539	2012-12-17 10:55	2012-12-11	Show	GitHub Exploit DB Packet Storm

230317	6.8	警告	Netsweeper, Inc.	-	Netsweeper の WebAdmin Portal におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2447	2012-12-17 10:53	2012-07-9	Show	GitHub Exploit DB Packet Storm

230318	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 6 から 10 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4781	2012-12-17 10:52	2012-12-11	Show	GitHub Exploit DB Packet Storm

230319	10	危険	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4786	2012-12-17 10:50	2012-12-11	Show	GitHub Exploit DB Packet Storm

230320	10	危険	マイクロソフト	-	Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-4787	2012-12-17 10:49	2012-12-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212061	8.8	HIGH Network	imagemagick debian	imagemagick debian_linux	In ImageMagick 7.0.8-35 Q16, there is a stack-based buffer overflow in the function PopHexPixel of coders/ps.c, which allows an attacker to cause a denial of service or code execution via a crafted i…	CWE-787 Out-of-bounds Write	CVE-2019-9956	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

212062	9.1	CRITICAL Network	python opensuse debian fedoraproject canonical redhat	python leap debian_linux fedora ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_eus enterprise_linux_tus ente…	urllib in Python 2.x through 2.7.16 supports the local_file: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggerin…	CWE-22 Path Traversal	CVE-2019-9948	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

212063	6.1	MEDIUM Network	python	python	An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the fir…	CWE-93 CRLF Injection	CVE-2019-9947	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

212064	9.8	CRITICAL Network	softnas	cloud	SoftNAS Cloud 4.2.0 and 4.2.1 allows remote command execution. The NGINX default configuration file has a check to verify the status of a user cookie. If not set, a user is redirected to the login pa…	NVD-CWE-noinfo	CVE-2019-9945	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

212065	3.7	LOW Network	symfony debian	twig debian_linux	A sandbox information disclosure exists in Twig before 1.38.0 and 2.x before 2.7.0 because, under some circumstances, it is possible to call the __toString() method on an object even if not allowed b…	NVD-CWE-noinfo	CVE-2019-9942	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

212066	5.3	MEDIUM Network	coreftp	core_ftp	An issue was discovered in the SFTP Server component in Core FTP 2.0 Build 674. Using the MDTM FTP command, a remote attacker can use a directory traversal technique (..\..\) to browse outside the ro…	CWE-22 Path Traversal	CVE-2019-9649	2024-11-21 13:52	2019-03-23	Show	GitHub Exploit DB Packet Storm

212067	5.3	MEDIUM Network	coreftp	core_ftp	An issue was discovered in the SFTP Server component in Core FTP 2.0 Build 674. A directory traversal vulnerability exists using the SIZE command along with a \..\..\ substring, allowing an attacker …	CWE-22 Path Traversal	CVE-2019-9648	2024-11-21 13:52	2019-03-23	Show	GitHub Exploit DB Packet Storm

212068	8.8	HIGH Adjacent	ushareit	shareit	The SHAREit application before 4.0.36 for Android allows a remote attacker (on the same network or joining public "open" Wi-Fi hotspots created by the application when file transfer is initiated) to …	NVD-CWE-noinfo	CVE-2019-9939	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

212069	5.3	MEDIUM Adjacent	ushareit	shareit	The SHAREit application before 4.0.42 for Android allows a remote attacker (on the same network or joining public "open" Wi-Fi hotspots created by the application when file transfer is initiated) to …	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2019-9938	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

212070	7.5	HIGH Network	sqlite	sqlite	In SQLite 3.27.2, interleaving reads and writes in a single transaction with an fts5 virtual table will lead to a NULL Pointer Dereference in fts5ChunkIterate in sqlite3.c. This is related to ext/fts…	CWE-476 NULL Pointer Dereference	CVE-2019-9937	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm