Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251071	10	危険	Google	-	Google Chrome におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-3117	2011-06-10 09:54	2010-08-19	Show	GitHub Exploit DB Packet Storm

251072	10	危険	シスコシステムズ	-	Cisco Wireless LAN Controller における設定を変更される脆弱性	CWE-noinfo 情報不足	CVE-2009-1167	2011-06-10 09:53	2009-07-27	Show	GitHub Exploit DB Packet Storm

251073	7.8	危険	シスコシステムズ	-	Cisco Wireless LAN Controller の管理用 Web インターフェースにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-1166	2011-06-10 09:53	2009-07-27	Show	GitHub Exploit DB Packet Storm

251074	6.8	警告	Redback Apache Software Foundation	-	Apache Archiva および Apache Continuum におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3449	2011-06-10 09:53	2010-11-24	Show	GitHub Exploit DB Packet Storm

251075	5	警告	JSecurity Apache Software Foundation	-	Apache Shiro および JSecurity におけるアクセス制限を回避される脆弱性	CWE-22 パス・トラバーサル	CVE-2010-3863	2011-06-10 09:52	2010-11-5	Show	GitHub Exploit DB Packet Storm

251076	4.3	警告	Apache Software Foundation	-	Apache CouchDB の Web 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3854	2011-06-10 09:52	2011-01-28	Show	GitHub Exploit DB Packet Storm

251077	4.3	警告	The Dojo Foundation Apache Software Foundation	-	Apache Struts などで利用される Dojo におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6726	2011-06-10 09:51	2009-04-9	Show	GitHub Exploit DB Packet Storm

251078	4.3	警告	Apache Software Foundation	-	Apache Struts の LookupDispatchAction、DispatchAction および ActionDispatcher におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-1548	2011-06-10 09:50	2006-03-30	Show	GitHub Exploit DB Packet Storm

251079	7.8	危険	Apache Software Foundation	-	Apache Struts (with BeanUtils) の ActionForm におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-1547	2011-06-10 09:50	2006-03-30	Show	GitHub Exploit DB Packet Storm

251080	4.3	警告	Apache Software Foundation レッドハット	-	Apache Struts におけるクロスサイトスクリプティングの脆弱性	-	CVE-2005-3745	2011-06-10 09:49	2005-11-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212941	7.0	HIGH Local	exacq	enterprise_system_manager	A vulnerability in the exacqVision Enterprise System Manager (ESM) v5.12.2 application whereby unauthorized privilege escalation can potentially be achieved. This vulnerability impacts exacqVision ES…	CWE-276 Incorrect Default Permissions	CVE-2019-7588	2024-11-21 13:48	2019-06-18	Show	GitHub Exploit DB Packet Storm

212942	7.5	HIGH Network	linksys	wrt1900acs_firmware	An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. An ability exists for an unauthenticated user to browse a confidential ui/1.0.99.187766/dynamic/js/setup.js.localized file on the r…	CWE-287 Improper Authentication	CVE-2019-7579	2024-11-21 13:48	2019-06-18	Show	GitHub Exploit DB Packet Storm

212943	9.8	CRITICAL Network	artifex	mupdf	Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.	CWE-787 CWE-908 Out-of-bounds Write Use of Uninitialized Resource	CVE-2019-7321	2024-11-21 13:48	2019-06-14	Show	GitHub Exploit DB Packet Storm

212944	8.8	HIGH Network	adobe redhat	flash_player enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Adobe Flash Player versions 32.0.0.192 and earlier, 32.0.0.192 and earlier, and 32.0.0.192 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execu…	CWE-416 Use After Free	CVE-2019-7845	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

212945	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code…	CWE-502 Deserialization of Untrusted Data	CVE-2019-7840	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

212946	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.	CWE-77 Command Injection	CVE-2019-7839	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

212947	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a file extension blacklist bypass vulnerability. Successful exploitation could lead to arbitrary code e…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-7838	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

212948	6.1	MEDIUM Network	api_based_travel_booking_project	api_based_travel_booking	An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter.	CWE-79 Cross-site Scripting	CVE-2019-7554	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm

212949	5.4	MEDIUM Network	chartered_accountant_\	_auditor_website_project	PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field.	CWE-79 Cross-site Scripting	CVE-2019-7553	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm

212950	5.4	MEDIUM Network	investment_mlm_software_project	investment_mlm_software	An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section.	CWE-79 Cross-site Scripting	CVE-2019-7552	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm