Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251101	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0978	2011-05-2 14:16	2011-02-10	Show	GitHub Exploit DB Packet Storm

251102	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における整数アンダーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0097	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

251103	9.3	危険	マイクロソフト	-	Microsoft Windows の OpenType Compact Font Format ドライバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0034	2011-05-2 14:14	2011-04-12	Show	GitHub Exploit DB Packet Storm

251104	9.3	危険	マイクロソフト	-	Microsoft の JScript および VBScript スクリプトエンジンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0663	2011-05-2 14:13	2011-04-12	Show	GitHub Exploit DB Packet Storm

251105	7.5	危険	マイクロソフト	-	Microsoft Windows の DNS クライアント内にある DNSAPI.dll における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0657	2011-05-2 14:12	2011-04-12	Show	GitHub Exploit DB Packet Storm

251106	9.3	危険	マイクロソフト	-	Microsoft Windows および Office XP の GDI+ 内にある gdiplus.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0041	2011-05-2 14:11	2011-04-12	Show	GitHub Exploit DB Packet Storm

251107	9.3	危険	マイクロソフト	-	Microsoft .NET Framework の x86 JIT コンパイラにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3958	2011-05-2 14:09	2011-04-12	Show	GitHub Exploit DB Packet Storm

251108	9.3	危険	マイクロソフト	-	Microsoft Windows XP の Windows Messenger ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1243	2011-05-2 14:08	2011-04-12	Show	GitHub Exploit DB Packet Storm

251109	10	危険	マイクロソフト	-	Microsoft Windows の SMB サーバサービスにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0661	2011-05-2 14:06	2011-04-12	Show	GitHub Exploit DB Packet Storm

251110	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の SMB クライアントにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0660	2011-05-2 14:05	2011-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
212941	7.0	HIGH Local	exacq	enterprise_system_manager	A vulnerability in the exacqVision Enterprise System Manager (ESM) v5.12.2 application whereby unauthorized privilege escalation can potentially be achieved. This vulnerability impacts exacqVision ES…	CWE-276 Incorrect Default Permissions	CVE-2019-7588	2024-11-21 13:48	2019-06-18	Show	GitHub Exploit DB Packet Storm

212942	7.5	HIGH Network	linksys	wrt1900acs_firmware	An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. An ability exists for an unauthenticated user to browse a confidential ui/1.0.99.187766/dynamic/js/setup.js.localized file on the r…	CWE-287 Improper Authentication	CVE-2019-7579	2024-11-21 13:48	2019-06-18	Show	GitHub Exploit DB Packet Storm

212943	9.8	CRITICAL Network	artifex	mupdf	Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.	CWE-787 CWE-908 Out-of-bounds Write Use of Uninitialized Resource	CVE-2019-7321	2024-11-21 13:48	2019-06-14	Show	GitHub Exploit DB Packet Storm

212944	8.8	HIGH Network	adobe redhat	flash_player enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Adobe Flash Player versions 32.0.0.192 and earlier, 32.0.0.192 and earlier, and 32.0.0.192 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execu…	CWE-416 Use After Free	CVE-2019-7845	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

212945	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code…	CWE-502 Deserialization of Untrusted Data	CVE-2019-7840	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

212946	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.	CWE-77 Command Injection	CVE-2019-7839	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

212947	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a file extension blacklist bypass vulnerability. Successful exploitation could lead to arbitrary code e…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-7838	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

212948	6.1	MEDIUM Network	api_based_travel_booking_project	api_based_travel_booking	An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter.	CWE-79 Cross-site Scripting	CVE-2019-7554	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm

212949	5.4	MEDIUM Network	chartered_accountant_\	_auditor_website_project	PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field.	CWE-79 Cross-site Scripting	CVE-2019-7553	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm

212950	5.4	MEDIUM Network	investment_mlm_software_project	investment_mlm_software	An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section.	CWE-79 Cross-site Scripting	CVE-2019-7552	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm