Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250371 2.6 注意 Plume CMS - Plume におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-3985 2011-10-13 12:04 2011-10-13 Show GitHub Exploit DB Packet Storm
250372 2.1 注意 IBM - IBM AIX の QLogic adapters 用 Fibre Channel ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3982 2011-10-12 16:09 2011-02-3 Show GitHub Exploit DB Packet Storm
250373 9.3 危険 チェック・ポイント・ソフトウェア・テクノロジーズ - Check Point の 複数の製品における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2011-1827 2011-10-12 16:05 2011-10-5 Show GitHub Exploit DB Packet Storm
250374 7.5 危険 Exim Development - Exim の src/dkim.c 内の dkim_exim_verify_finish 関数における任意のコードを実行される脆弱性 CWE-134
書式文字列の問題 		CVE-2011-1764 2011-10-12 16:00 2011-04-29 Show GitHub Exploit DB Packet Storm
250375 2.1 注意 Ted Felix - Ted Felix acpid の acpid.c におけるサービス運用妨害 (デーモンハング) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1159 2011-10-12 15:55 2011-10-5 Show GitHub Exploit DB Packet Storm
250376 7.8 危険 Linux - Linux kernel の net/dns_resolver/dns_key.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-1076 2011-10-12 15:45 2011-10-5 Show GitHub Exploit DB Packet Storm
250377 4.3 警告 リアルネットワークス - RealNetworks RealPlayer の ActiveX コントロールにおけるクロスゾーンスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1221 2011-10-12 15:13 2011-08-26 Show GitHub Exploit DB Packet Storm
250378 9.3 危険 アドビシステムズ - Adobe Photoshop Elements におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2443 2011-10-12 15:12 2011-09-30 Show GitHub Exploit DB Packet Storm
250379 5 警告 Quassel IRC - Quassel の CtcpParser::packedReply メソッドにおけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-3354 2011-10-12 15:12 2011-10-4 Show GitHub Exploit DB Packet Storm
250380 6.8 警告 VMware - VMware の Spring Framework および Spring Security におけるセキュリティ制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2894 2011-10-12 15:11 2011-09-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212191 7.5 HIGH
Network 		tengcon t-920_plc_firmware An issue was discovered on TENGCONTROL T-920 PLC v5.5 devices. It allows remote attackers to cause a denial of service (persistent failure mode) by sending a series of \x19\xb2\x00\x00\x00\x06\x43\x0… NVD-CWE-noinfo
CVE-2019-9590 2024-11-21 13:51 2019-03-7 Show GitHub Exploit DB Packet Storm
212192 7.8 HIGH
Local 		glyphandcog xpdfreader There is a NULL pointer dereference vulnerability in PSOutputDev::setupResources() located in PSOutputDev.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdfto… CWE-476
 NULL Pointer Dereference 		CVE-2019-9589 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm
212193 7.8 HIGH
Local 		glyphandcog xpdfreader There is an Invalid memory access in gAtomicIncrement() located at GMutex.h in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdftops binary. It allows an attacker … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-9588 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm
212194 7.8 HIGH
Local 		glyphandcog xpdfreader There is a stack consumption issue in md5Round1() located in Decrypt.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to (for example) the pdfimages binary. It allows an attacker to… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-9587 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm
212195 8.8 HIGH
Network 		twinkletoessoftware booked phpscheduleit Booked Scheduler 2.7.5 allows arbitrary file upload via the Favicon field, leading to execution of arbitrary Web/custom-favicon.php PHP code, because Presenters/Admin/ManageThemePresent… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-9581 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm
212196 7.5 HIGH
Network 		yubico libu2f-host In devs.c in Yubico libu2f-host before 1.1.8, the response to init is misparsed, leaking uninitialized stack memory back to the device. CWE-908
 Use of Uninitialized Resource 		CVE-2019-9578 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm
212197 5.3 MEDIUM
Network 		sagemcom f\@st_5260_firmware Sagemcom F@st 5260 routers using firmware version 0.4.39, in WPA mode, default to using a PSK that is generated from a 2-part wordlist of known values and a nonce with insufficient entropy. The numbe… CWE-331
 Insufficient Entropy 		CVE-2019-9555 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm
212198 5.5 MEDIUM
Local 		linux
debian
redhat
opensuse
canonical 		linux_kernel
debian_linux
enterprise_linux
leap
ubuntu_linux 		In the Linux kernel before 4.20.14, expand_downwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NULL pointer dereferences on non-SM… CWE-476
 NULL Pointer Dereference 		CVE-2019-9213 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm
212199 6.1 MEDIUM
Network 		adenion blog2social The Blog2Social plugin before 5.0.3 for WordPress allows wp-admin/admin.php?page=blog2social-ship XSS. CWE-79
Cross-site Scripting 		CVE-2019-9576 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm
212200 6.1 MEDIUM
Network 		quizandsurveymaster quiz_and_survey_master The Quiz And Survey Master plugin 6.0.4 for WordPress allows wp-admin/admin.php?page=mlw_quiz_results quiz_id XSS. CWE-79
Cross-site Scripting 		CVE-2019-9575 2024-11-21 13:51 2019-03-6 Show GitHub Exploit DB Packet Storm