Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251371	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0094	2011-05-2 13:58	2011-04-12	Show	GitHub Exploit DB Packet Storm

251372	6.8	警告	ヒューレット・パッカード	-	HP-UX の NFS/ONCplus におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-0896	2011-05-2 13:39	2011-04-11	Show	GitHub Exploit DB Packet Storm

251373	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 8 における解放済みメモリを使用する脆弱性	CWE-399 リソース管理の問題	CVE-2011-0346	2011-05-2 13:25	2011-01-7	Show	GitHub Exploit DB Packet Storm

251374	-	-	マイクロソフト	-	Microsoft Windows にバッファオーバーフローの脆弱性	-	-	2011-05-2 08:51	2011-02-17	Show	GitHub Exploit DB Packet Storm

251375	5.1	警告	レッドハット	-	SPICE Firefox のプラグインにおける任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1179	2011-04-28 15:51	2011-04-7	Show	GitHub Exploit DB Packet Storm

251376	3.3	注意	レッドハット	-	SPICE Firefox のプラグインにおける任意のファイルを上書される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-0012	2011-04-28 15:32	2011-04-7	Show	GitHub Exploit DB Packet Storm

251377	5.8	警告	Apache Software Foundation	-	Apache Tomcat におけるアクセス制限を回避される脆弱性	CWE-DesignError	CVE-2011-1183	2011-04-28 15:31	2011-04-1	Show	GitHub Exploit DB Packet Storm

251378	5	警告	Apache Software Foundation	-	Apache Tomcat の HTTP BIO コネクタにおけるレスポンスを閲覧される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1475	2011-04-28 15:29	2011-03-28	Show	GitHub Exploit DB Packet Storm

251379	2.1	注意	オラクル	-	Oracle Solaris 10 に認証情報漏えいの脆弱性	-	CVE-2011-0412	2011-04-28 15:27	2011-04-6	Show	GitHub Exploit DB Packet Storm

251380	-	-	デル	-	Dell Kace K2000 Systems Deployment Appliance に脆弱性	-	-	2011-04-28 15:21	2011-04-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214071	9.8	CRITICAL Network	artifex	mupdf	Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.	CWE-787 CWE-908 Out-of-bounds Write Use of Uninitialized Resource	CVE-2019-7321	2024-11-21 13:48	2019-06-14	Show	GitHub Exploit DB Packet Storm

214072	8.8	HIGH Network	adobe redhat	flash_player enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	Adobe Flash Player versions 32.0.0.192 and earlier, 32.0.0.192 and earlier, and 32.0.0.192 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execu…	CWE-416 Use After Free	CVE-2019-7845	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

214073	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code…	CWE-502 Deserialization of Untrusted Data	CVE-2019-7840	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

214074	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.	CWE-77 Command Injection	CVE-2019-7839	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

214075	9.8	CRITICAL Network	adobe	coldfusion	ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a file extension blacklist bypass vulnerability. Successful exploitation could lead to arbitrary code e…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-7838	2024-11-21 13:48	2019-06-13	Show	GitHub Exploit DB Packet Storm

214076	6.1	MEDIUM Network	api_based_travel_booking_project	api_based_travel_booking	An issue was discovered in PHP Scripts Mall API Based Travel Booking 3.4.7. There is Reflected XSS via the flight-results.php d2 parameter.	CWE-79 Cross-site Scripting	CVE-2019-7554	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm

214077	5.4	MEDIUM Network	chartered_accountant_\	_auditor_website_project	PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has Stored XSS in the Profile Update page via the My Name field.	CWE-79 Cross-site Scripting	CVE-2019-7553	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm

214078	5.4	MEDIUM Network	investment_mlm_software_project	investment_mlm_software	An issue was discovered in PHP Scripts Mall Investment MLM Software 2.0.2. Stored XSS was found in the the My Profile Section. This is due to lack of sanitization in the Edit Name section.	CWE-79 Cross-site Scripting	CVE-2019-7552	2024-11-21 13:48	2019-06-7	Show	GitHub Exploit DB Packet Storm

214079	8.8	HIGH Network	primasystems	flexair	Prima Systems FlexAir, Versions 2.3.38 and prior. The flash version of the web interface contains a hard-coded username and password, which may allow an authenticated attacker to escalate privileges.	CWE-798 Use of Hard-coded Credentials	CVE-2019-7672	2024-11-21 13:48	2019-06-6	Show	GitHub Exploit DB Packet Storm

214080	9.0	CRITICAL Network	primasystems	flexair	Prima Systems FlexAir, Versions 2.3.38 and prior. Parameters sent to scripts are not properly sanitized before being returned to the user, which may allow an attacker to execute arbitrary code in a u…	CWE-79 Cross-site Scripting	CVE-2019-7671	2024-11-21 13:48	2019-06-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed