Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250151 10 危険 リアルネットワークス - RealNetworks RealPlayer および Mac RealPlayer における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4255 2011-11-28 10:23 2011-11-18 Show GitHub Exploit DB Packet Storm
250152 10 危険 リアルネットワークス - RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4254 2011-11-28 10:22 2011-11-18 Show GitHub Exploit DB Packet Storm
250153 9.3 危険 リアルネットワークス - RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4251 2011-11-28 10:18 2011-11-18 Show GitHub Exploit DB Packet Storm
250154 9.3 危険 リアルネットワークス - RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2011-4248 2011-11-28 10:16 2011-11-18 Show GitHub Exploit DB Packet Storm
250155 10 危険 リアルネットワークス - RealNetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-4244 2011-11-28 10:13 2011-11-18 Show GitHub Exploit DB Packet Storm
250156 4.3 警告 Beanbag - Review Board の commenting system におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4312 2011-11-25 16:03 2011-11-15 Show GitHub Exploit DB Packet Storm
250157 3.2 注意 ヒューレット・パッカード - HP Operations Agent および Performance Agent におけるディレクトリアクセス制限を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2011-4160 2011-11-25 16:02 2011-11-22 Show GitHub Exploit DB Packet Storm
250158 7.5 危険 Technicolor - Thomson TG585 上の UPnP IGD の実装における任意のポートマッピングを確立される脆弱性 CWE-16
環境設定 		CVE-2011-4506 2011-11-25 14:33 2011-11-22 Show GitHub Exploit DB Packet Storm
250159 7.5 危険 日本アルカテル・ルーセント - SpeedTouch 5x6 上の UPnP IGD の実装における任意のポートマッピングを確立される脆弱性 CWE-16
環境設定 		CVE-2011-4505 2011-11-25 14:32 2011-11-22 Show GitHub Exploit DB Packet Storm
250160 7.5 危険 ZyXEL
Genmei Mori		 - ZyXEL P-330W におけるポートマッピングによる通信を確立される脆弱性 CWE-16
環境設定 		CVE-2011-4504 2011-11-25 14:31 2011-11-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212841 6.1 MEDIUM
Network 		codepeople contact_form_email The Contact Form Email plugin before 1.2.66 for WordPress allows wp-admin/admin.php item XSS, related to cp_admin_int_edition.inc.php in the "custom edition area." CWE-79
Cross-site Scripting 		CVE-2019-9646 2024-11-21 13:52 2019-03-11 Show GitHub Exploit DB Packet Storm
212842 9.8 CRITICAL
Network 		php
debian
canonical
opensuse
netapp 		php
debian_linux
ubuntu_linux
leap
storage_automation_store 		An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF. CWE-908
 Use of Uninitialized Resource 		CVE-2019-9641 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
212843 7.5 HIGH
Network 		php
canonical
debian
opensuse
netapp
redhat 		php
ubuntu_linux
debian_linux
leap
storage_automation_store
software_collections 		An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an Invalid Read in exif_process_SOFn. CWE-125
Out-of-bounds Read 		CVE-2019-9640 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
212844 7.5 HIGH
Network 		php
debian
canonical
opensuse
netapp
redhat 		php
debian_linux
ubuntu_linux
leap
storage_automation_store
software_collections 		An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling… CWE-908
CWE-909
 Use of Uninitialized Resource
 Missing Initialization of Resource 		CVE-2019-9639 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
212845 7.5 HIGH
Network 		php
debian
canonical
opensuse
netapp
redhat 		php
debian_linux
ubuntu_linux
leap
storage_automation_store
software_collections 		An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling… CWE-125
Out-of-bounds Read 		CVE-2019-9638 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
212846 7.5 HIGH
Network 		php
debian
canonical
opensuse
netapp 		php
debian_linux
ubuntu_linux
leap
storage_automation_store 		An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2019-9637 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
212847 9.8 CRITICAL
Network 		python
fedoraproject
opensuse
debian
canonical
redhat
oracle 		python
fedora
leap
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_server_aus
enterprise_linux
e… 		Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. The impact is: Information disclosure (cr… NVD-CWE-noinfo
CVE-2019-9636 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
212848 7.8 HIGH
Local 		golang go Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection. CWE-427
 Uncontrolled Search Path Element 		CVE-2019-9634 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
212849 6.5 MEDIUM
Network 		gnome glib gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2019-9633 2024-11-21 13:52 2019-03-8 Show GitHub Exploit DB Packet Storm
212850 7.5 HIGH
Network 		esafenet electronic_document_security_management_system ESAFENET CDG V3 and V5 has an arbitrary file download vulnerability via the fileName parameter in download.jsp because the InstallationPack parameter is mishandled in a /CDGServer3/ClientAjax request. NVD-CWE-noinfo
CVE-2019-9632 2024-11-21 13:52 2019-03-8 Show GitHub Exploit DB Packet Storm