Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250421	4.3	警告	Pligg	-	Pligg CMS の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5023	2012-01-5 10:17	2011-12-29	Show	GitHub Exploit DB Packet Storm

250422	7.5	危険	Pligg	-	Pligg CMS の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5022	2012-01-5 10:16	2011-12-29	Show	GitHub Exploit DB Packet Storm

250423	4.3	警告	Winn GuestBook	-	Winn GuestBook におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5026	2012-01-5 10:16	2011-12-27	Show	GitHub Exploit DB Packet Storm

250424	7.5	危険	PHPIDS	-	PHPIDS におけるルールセット回避の脆弱性	CWE-94 コード・インジェクション	CVE-2011-5021	2012-01-5 10:15	2011-12-29	Show	GitHub Exploit DB Packet Storm

250425	5	警告	GoAhead Software, Inc.	-	GoAhead WebServer におけるサービス運用妨害 (デーモン停止) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-5111	2012-01-5 10:13	2011-12-27	Show	GitHub Exploit DB Packet Storm

250426	5	警告	DHTTPD	-	dhttpd におけるサービス運用妨害 (デーモン停止) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-5110	2012-01-5 10:13	2011-12-27	Show	GitHub Exploit DB Packet Storm

250427	5	警告	Apache Software Foundation	-	Apache Tomcat におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-4084	2012-01-4 16:50	2011-12-30	Show	GitHub Exploit DB Packet Storm

250428	5	警告	Google	-	Google V8 におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-5037	2012-01-4 16:48	2011-12-30	Show	GitHub Exploit DB Packet Storm

250429	5	警告	Christian Neukirchen	-	Rack におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-5036	2012-01-4 16:48	2011-12-30	Show	GitHub Exploit DB Packet Storm

250430	7.8	危険	Apache Software Foundation	-	Apache Geronimo におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-5034	2012-01-4 16:47	2011-12-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213701	9.8	CRITICAL Network	python fedoraproject opensuse debian canonical redhat oracle	python fedora leap debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation enterprise_linux_server_aus enterprise_linux e…	Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. The impact is: Information disclosure (cr…	NVD-CWE-noinfo	CVE-2019-9636	2024-11-21 13:52	2019-03-9	Show	GitHub Exploit DB Packet Storm

213702	7.8	HIGH Local	golang	go	Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection.	CWE-427 Uncontrolled Search Path Element	CVE-2019-9634	2024-11-21 13:52	2019-03-9	Show	GitHub Exploit DB Packet Storm

213703	6.5	MEDIUM Network	gnome	glib	gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial…	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2019-9633	2024-11-21 13:52	2019-03-8	Show	GitHub Exploit DB Packet Storm

213704	7.5	HIGH Network	esafenet	electronic_document_security_management_system	ESAFENET CDG V3 and V5 has an arbitrary file download vulnerability via the fileName parameter in download.jsp because the InstallationPack parameter is mishandled in a /CDGServer3/ClientAjax request.	NVD-CWE-noinfo	CVE-2019-9632	2024-11-21 13:52	2019-03-8	Show	GitHub Exploit DB Packet Storm

213705	9.8	CRITICAL Network	freedesktop fedoraproject debian	poppler fedora debian_linux	Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.	CWE-125 Out-of-bounds Read	CVE-2019-9631	2024-11-21 13:52	2019-03-8	Show	GitHub Exploit DB Packet Storm

213706	8.1	HIGH Network	illumos oracle	illumos solaris	An issue was discovered in Illumos in Nexenta NexentaStor 4.0.5 and 5.1.2, and other products. The SMB server allows an attacker to have unintended access, e.g., an attacker with WRITE_XATTR can chan…	NVD-CWE-Other	CVE-2019-9579	2024-11-21 13:51	2022-12-27	Show	GitHub Exploit DB Packet Storm

213707	9.8	CRITICAL Network	wyze	cam_pan_v2_firmware cam_v2_firmware cam_v3_firmware	A vulnerability in the authentication logic of Wyze Cam Pan v2, Cam v2, Cam v3 allows an attacker to bypass login and control the devices. This issue affects: Wyze Cam Pan v2 versions prior to 4.49.1…	CWE-287 Improper Authentication	CVE-2019-9564	2024-11-21 13:51	2022-03-31	Show	GitHub Exploit DB Packet Storm

213708	5.5	MEDIUM Local	google	android	In /proc/net of the kernel filesystem, there is a possible information leak due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2019-9475	2024-11-21 13:51	2021-06-12	Show	GitHub Exploit DB Packet Storm

213709	7.5	HIGH Network	contiki-os contiki-ng	contiki contiki-ng	An issue was discovered in Contiki-NG through 4.3 and Contiki through 3.0. A buffer overflow is present due to an integer underflow during 6LoWPAN fragment processing in the face of truncated fragmen…	CWE-787 CWE-191 Out-of-bounds Write Integer Underflow (Wrap or Wraparound)	CVE-2019-9183	2024-11-21 13:51	2020-04-24	Show	GitHub Exploit DB Packet Storm

213710	9.8	CRITICAL Network	marchnetworks	command_client	The connection initiation process in March Networks Command Client before 2.7.2 allows remote attackers to execute arbitrary code via crafted XAML objects.	CWE-94 Code Injection	CVE-2019-9163	2024-11-21 13:51	2020-04-2	Show	GitHub Exploit DB Packet Storm