Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251381 9.3 危険 マイクロソフト - Microsoft Windows の MPEG Layer-3 オーディオコーデックにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0480 2010-05-10 19:11 2010-04-13 Show GitHub Exploit DB Packet Storm
251382 9.3 危険 マイクロソフト - Microsoft Windows の Media Services におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0478 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
251383 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0477 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
251384 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0476 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
251385 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0270 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
251386 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0269 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
251387 9.3 危険 マイクロソフト - Microsoft Windows の Cabinet File Viewer Shell Extension における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0487 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
251388 9.3 危険 マイクロソフト - Microsoft Windows の Authenticode Signature Verification における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0486 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
251389 4.7 警告 サイバートラスト株式会社
Linux
レッドハット		 - x86_64 および amd64 プラットフォーム上 Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4271 2010-05-10 18:25 2010-03-16 Show GitHub Exploit DB Packet Storm
251390 5 警告 VMware - VMware Authorization Service の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3707 2010-05-7 17:26 2009-10-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199281 5.5 MEDIUM
Local 		ytnef_project ytnef In ytnef 1.9.2, a heap-based buffer overflow vulnerability was found in the function TNEFFillMapi in ytnef.c, which allows attackers to cause a denial of service via a crafted file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-12141 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
199282 6.5 MEDIUM
Network 		imagemagick imagemagick The ReadDCMImage function in coders\dcm.c in ImageMagick 7.0.6-1 has an integer signedness error leading to excessive memory consumption via a crafted DCM file. CWE-400
CWE-681
 Uncontrolled Resource Consumption
 Incorrect Conversion between Numeric Types 		CVE-2017-12140 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
199283 6.1 MEDIUM
Network 		xoops xoops XOOPS Core 2.5.8 has stored XSS in imagemanager.php because of missing MIME type validation in htdocs/class/uploader.php. CWE-79
Cross-site Scripting 		CVE-2017-12139 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
199284 6.1 MEDIUM
Network 		xoops xoops XOOPS Core 2.5.8 has a stored URL redirect bypass vulnerability in /modules/profile/index.php because of the URL filter. CWE-601
Open Redirect 		CVE-2017-12138 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
199285 5.9 MEDIUM
Network 		gnu glibc The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS support is enabled, will solicit large UDP responses from name servers, potentially simplifying off-path… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2017-12132 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
199286 6.1 MEDIUM
Network 		mantisbt mantisbt An XSS issue was discovered in manage_user_page.php in MantisBT 2.x before 2.5.2. The 'filter' field is not sanitized before being rendered in the Manage User page, allowing remote attackers to execu… CWE-79
Cross-site Scripting 		CVE-2017-12062 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
199287 6.1 MEDIUM
Network 		mantisbt mantisbt An XSS issue was discovered in admin/install.php in MantisBT before 1.3.12 and 2.x before 2.5.2. Some variables under user control in the MantisBT installation script are not properly sanitized befor… CWE-79
Cross-site Scripting 		CVE-2017-12061 2024-11-21 12:08 2017-08-2 Show GitHub Exploit DB Packet Storm
199288 6.5 MEDIUM
Network 		underbit mad_libmad mpg321.c in mpg321 0.3.2-1 does not properly manage memory for use with libmad 0.15.1b, which allows remote attackers to cause a denial of service (memory corruption seen in a crash in the mad_decode… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11552 2024-11-21 12:08 2017-08-1 Show GitHub Exploit DB Packet Storm
199289 6.1 MEDIUM
Network 		goldplugins easy_testimonials The Easy Testimonials plugin 3.0.4 for WordPress has XSS in include/settings/display.options.php, as demonstrated by the Default Testimonials Width, View More Testimonials Link, and Testimonial Excer… CWE-79
Cross-site Scripting 		CVE-2017-12131 2024-11-21 12:08 2017-08-1 Show GitHub Exploit DB Packet Storm
199290 6.1 MEDIUM
Network 		event_list_project event_list The Event List plugin 0.7.9 for WordPress has XSS in the slug array parameter to wp-admin/admin.php in an el_admin_categories delete_bulk action. CWE-79
Cross-site Scripting 		CVE-2017-12068 2024-11-21 12:08 2017-08-1 Show GitHub Exploit DB Packet Storm