Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251451	5	警告	INRIA	-	OCaml におけるサービス運用妨害 (CPU 資源の消費) の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0839	2012-02-13 16:13	2012-02-8	Show	GitHub Exploit DB Packet Storm

251452	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer SP における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0927	2012-02-13 14:37	2012-02-6	Show	GitHub Exploit DB Packet Storm

251453	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer SP の RV10 コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0926	2012-02-13 14:36	2012-02-6	Show	GitHub Exploit DB Packet Storm

251454	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer SP における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0924	2012-02-13 14:34	2012-02-6	Show	GitHub Exploit DB Packet Storm

251455	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer SP の rvrender.dll における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0922	2012-02-13 14:32	2012-02-6	Show	GitHub Exploit DB Packet Storm

251456	5.1	警告	ESTsoft Japan 株式会社	-	ALFTP における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2012-0315	2012-02-13 14:00	2012-02-13	Show	GitHub Exploit DB Packet Storm

251457	5	警告	Google	-	Google Chrome の Shader Translator 実装におけるサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-119 バッファエラー	CVE-2011-3972	2012-02-13 10:47	2012-02-8	Show	GitHub Exploit DB Packet Storm

251458	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (out-of-bounds read) の脆弱性	CWE-119 バッファエラー	CVE-2011-3970	2012-02-13 10:46	2012-02-8	Show	GitHub Exploit DB Packet Storm

251459	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2011-3967	2012-02-13 10:44	2012-02-8	Show	GitHub Exploit DB Packet Storm

251460	5	警告	Google	-	Google Chrome におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2011-3965	2012-02-13 10:43	2012-02-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223601	5.4	MEDIUM Network	dolibarr	dolibarr_erp\/crm	Dolibarr CRM/ERP 10.0.3 allows viewimage.php?file= Stored XSS due to JavaScript execution in an SVG image for a profile picture.	CWE-79 Cross-site Scripting	CVE-2019-19206	2024-11-21 13:34	2019-11-27	Show	GitHub Exploit DB Packet Storm

223602	7.5	HIGH Network	proftpd	proftpd	An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer (a variable initialized to NULL) leads to a crash when validating the certificate of a client c…	CWE-476 NULL Pointer Dereference	CVE-2019-19272	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223603	7.5	HIGH Network	proftpd	proftpd	An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. A wrong iteration variable, used when checking a client certificate against CRL entries (installed by a system administrator), can c…	CWE-295 Improper Certificate Validation	CVE-2019-19271	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223604	7.5	HIGH Network	proftpd fedoraproject	proftpd fedora	An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. Failure to check for the appropriate field of a CRL entry (checking twice for subject, rather than once for subject and once for i…	CWE-295 Improper Certificate Validation	CVE-2019-19270	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223605	7.5	HIGH Network	sqlite canonical oracle siemens	sqlite ubuntu_linux mysql_workbench sinec_infrastructure_network_services	sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage.	NVD-CWE-noinfo	CVE-2019-19244	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223606	7.8	HIGH Local	linux	linux_kernel	vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a.	CWE-125 Out-of-bounds Read	CVE-2019-19252	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223607	9.8	CRITICAL Network	opentrade_project	opentrade	OpenTrade before 2019-11-23 allows SQL injection, related to server/modules/api/v1.js and server/utils.js.	CWE-89 SQL Injection	CVE-2019-19250	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223608	9.8	CRITICAL Network	querytreeapp	querytree	Controllers/InvitationsController.cs in QueryTree before 3.0.99-beta mishandles invitations.	CWE-20 Improper Input Validation	CVE-2019-19249	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223609	7.5	HIGH Network	oniguruma_project php fedoraproject canonical debian	oniguruma php fedora ubuntu_linux debian_linux	Oniguruma through 6.9.3, as used in PHP 7.3.x and other products, has a heap-based buffer over-read in str_lower_case_match in regexec.c.	CWE-125 Out-of-bounds Read	CVE-2019-19246	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223610	5.3	MEDIUM Network	embedthis	goahead	Embedthis GoAhead before 5.0.1 mishandles redirected HTTP requests with a large Host header. The GoAhead WebsRedirect uses a static host buffer that has a limited length and can overflow. This can ca…	CWE-787 CWE-908 Out-of-bounds Write Use of Uninitialized Resource	CVE-2019-19240	2024-11-21 13:34	2019-11-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed