Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251131	4.3	警告	xmlsoft.org アップルサイバートラスト株式会社サン・マイクロシステムズ OpenOffice.org Project レッドハット	-	libxml2 および libxml における DTD 内の要素宣言の処理に関するサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-2414	2010-07-13 16:26	2009-08-11	Show	GitHub Exploit DB Packet Storm

251132	4.3	警告	アップル	-	Apple Mac OS の CFNetwork における任意の HTTPS Web サイトを訪問しているように偽装可能な脆弱性	CWE-Other その他	CVE-2009-1723	2010-07-13 16:25	2009-08-5	Show	GitHub Exploit DB Packet Storm

251133	3.5	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1382	2010-07-12 18:12	2010-06-15	Show	GitHub Exploit DB Packet Storm

251134	3.5	注意	アップル	-	Apple Mac OS X の SMB ファイルサーバにおける任意のファイルにアクセスされる脆弱性	CWE-16 環境設定	CVE-2010-1381	2010-07-12 18:12	2010-06-15	Show	GitHub Exploit DB Packet Storm

251135	7.5	危険	アップル	-	Apple Mac OS X の cgtexttops CUPS フィルタにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-1380	2010-07-12 18:11	2010-06-15	Show	GitHub Exploit DB Packet Storm

251136	5	警告	アップル	-	Apple Mac OS X のプリンタ設定におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1379	2010-07-12 18:11	2010-06-15	Show	GitHub Exploit DB Packet Storm

251137	5	警告	IBM	-	IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 CWE-noinfo	CVE-2010-0775	2010-07-12 16:43	2010-05-8	Show	GitHub Exploit DB Packet Storm

251138	4.3	警告	IBM	-	IBM WebSphere Application Server におけるアクセス制限回避の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0774	2010-07-12 16:43	2010-05-8	Show	GitHub Exploit DB Packet Storm

251139	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の cupsd におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3553	2010-07-12 16:41	2009-11-20	Show	GitHub Exploit DB Packet Storm

251140	9.3	危険	アップル	-	Apple Mac OS X の Open Directory における任意のコードを実行される脆弱性	CWE-310 暗号の問題	CVE-2010-1377	2010-07-9 16:27	2010-06-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
198201	7.5	HIGH Network	htacg	tidy	In Tidy 5.5.31, the IsURLCodePoint function in attrs.c allows attackers to cause a denial of service (Segmentation Fault), as demonstrated by an invalid ISALNUM argument.	CWE-20 Improper Input Validation	CVE-2017-13692	2024-11-21 12:11	2017-08-25	Show	GitHub Exploit DB Packet Storm

198202	7.8	HIGH Local	linux	linux_kernel	net/ipv4/route.c in the Linux kernel 4.13-rc1 through 4.13-rc6 is too late to check for a NULL fi field when RTM_F_FIB_MATCH is set, which allows local users to cause a denial of service (NULL pointe…	CWE-476 NULL Pointer Dereference	CVE-2017-13686	2024-11-21 12:11	2017-08-25	Show	GitHub Exploit DB Packet Storm

198203	6.1	MEDIUM Network	misp	misp	app/View/Helper/CommandHelper.php in MISP before 2.4.79 has persistent XSS via comments. It only impacts the users of the same instance because the comment field is not part of the MISP synchronisati…	CWE-79 Cross-site Scripting	CVE-2017-13671	2024-11-21 12:11	2017-08-25	Show	GitHub Exploit DB Packet Storm

198204	9.8	CRITICAL Network	nexusphp	nexusphp	SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the setanswered parameter to staffbox.php.	CWE-89 SQL Injection	CVE-2017-13669	2024-11-21 12:11	2017-08-25	Show	GitHub Exploit DB Packet Storm

198205	5.5	MEDIUM Local	multicorewareinc	x265	An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.5, as used in libbpg and other products. A small height value can…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2017-13666	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

198206	6.5	MEDIUM Network	imagemagick	imagemagick	In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the ReadMATImage function in coders/mat.c, leading to a denial of service (assertion failure and application exi…	CWE-617 Reachable Assertion	CVE-2017-13658	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

198207	5.5	MEDIUM Local	unrealircd	unrealircd	UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root accou…	CWE-665 Improper Initialization	CVE-2017-13649	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

198208	6.5	MEDIUM Network	graphicsmagick	graphicsmagick	In GraphicsMagick 1.3.26, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-13648	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

198209	8.8	HIGH Network	graphicsmagick	graphicsmagick	In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value.	CWE-20 Improper Input Validation	CVE-2017-13147	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

198210	6.1	MEDIUM Network	qodeinteractive	bridge	DOM based Cross-site scripting (XSS) vulnerability in the Bridge theme before 11.2 for WordPress allows remote attackers to inject arbitrary JavaScript.	CWE-79 Cross-site Scripting	CVE-2017-13138	2024-11-21 12:11	2017-08-23	Show	GitHub Exploit DB Packet Storm