Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251571	4.3	警告	The Tor Project	-	Tor におけるブリッジを列挙される脆弱性	CWE-200 情報漏えい	CVE-2011-2769	2011-12-27 11:01	2011-10-27	Show	GitHub Exploit DB Packet Storm

251572	5.8	警告	The Tor Project	-	Tor における匿名化のためのプロパティを無効にされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2768	2011-12-27 10:54	2011-10-27	Show	GitHub Exploit DB Packet Storm

251573	7.5	危険	PmWiki	-	PmWiki の PageListSort 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-4453	2011-12-27 10:46	2011-11-11	Show	GitHub Exploit DB Packet Storm

251574	-	-	The Support Incident Tracker Project	-	Support Incident Tracker に複数の脆弱性	-	CVE-2011-3831 CVE-2011-3833 CVE-2011-5067 CVE-2011-5068 CVE-2011-5069 CVE-2011-5070	2011-12-27 09:42	2011-12-5	Show	GitHub Exploit DB Packet Storm

251575	9.3	危険	Sielco Sistemi	-	Sielco Sistemi Winlog PRO および Winlog Lite におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4037	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

251576	5	警告	Moodle	-	Moodle の calendar/set.php における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4203	2011-12-26 16:32	2011-12-22	Show	GitHub Exploit DB Packet Storm

251577	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4634	2011-12-26 16:31	2011-12-1	Show	GitHub Exploit DB Packet Storm

251578	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の libraries/display_export.lib.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4780	2011-12-26 16:30	2011-12-21	Show	GitHub Exploit DB Packet Storm

251579	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の libraries/config/ConfigFile.class.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4782	2011-12-26 16:29	2011-12-21	Show	GitHub Exploit DB Packet Storm

251580	6.5	警告	WordPress.org	-	WordPress において任意の PHP コードが実行可能な脆弱性	CWE-94 コード・インジェクション	-	2011-12-26 14:27	2011-12-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223411	6.6	MEDIUM Physics	barco	clickshare_button_r9861500d01_firmware	Barco ClickShare Button R9861500D01 devices before 1.10.0.13 have Missing Support for Integrity Check. The ClickShare Button does not verify the integrity of the mutable content on the UBIFS partitio…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-18824	2024-11-21 13:33	2019-12-17	Show	GitHub Exploit DB Packet Storm

223412	6.8	MEDIUM Physics	dell	xps_7390_firmware	Settings for the Dell XPS 13 2-in-1 (7390) BIOS versions prior to 1.1.3 contain a configuration vulnerability. The BIOS configuration for the "Enable Thunderbolt (and PCIe behind TBT) pre-boot module…	NVD-CWE-Other	CVE-2019-18579	2024-11-21 13:33	2019-12-17	Show	GitHub Exploit DB Packet Storm

223413	5.3	MEDIUM Network	barco	clickshare_cs-100_firmware clickshare_cse-200_firmware clickshare_cse-200\+_firmware clickshare_cse-800_firmware	Barco ClickShare Button R9861500D01 devices before 1.9.0 allow Information Exposure. The encrypted ClickShare Button firmware contains the private key of a test device-certificate.	CWE-798 Use of Hard-coded Credentials	CVE-2019-18831	2024-11-21 13:33	2019-12-17	Show	GitHub Exploit DB Packet Storm

223414	9.8	CRITICAL Network	barco	clickshare_cs-100_firmware clickshare_cse-200_firmware clickshare_cse-200\+_firmware clickshare_cse-800_firmware	Barco ClickShare Button R9861500D01 devices before 1.9.0 allow OS Command Injection. The embedded 'dongle_bridge' program used to expose the functionalities of the ClickShare Button to a USB host, is…	CWE-78 OS Command	CVE-2019-18830	2024-11-21 13:33	2019-12-17	Show	GitHub Exploit DB Packet Storm

223415	6.8	MEDIUM Physics	barco	clickshare_cs-100_firmware clickshare_cse-200_firmware clickshare_cse-200\+_firmware clickshare_cse-800_firmware	Barco ClickShare Button R9861500D01 devices before 1.9.0 have Insufficiently Protected Credentials. The root account (present for access via debug interfaces, which are by default not enabled on prod…	CWE-521 Weak Password Requirements	CVE-2019-18828	2024-11-21 13:33	2019-12-17	Show	GitHub Exploit DB Packet Storm

223416	5.9	MEDIUM Network	barco	clickshare_cs-100_firmware clickshare_cse-200_firmware clickshare_cse-200\+_firmware clickshare_cse-800_firmware	On Barco ClickShare Button R9861500D01 devices (before firmware version 1.9.0) JTAG access is disabled after ROM code execution. This means that JTAG access is possible when the system is running cod…	CWE-362 CWE-285 Race Condition Improper Authorization	CVE-2019-18827	2024-11-21 13:33	2019-12-17	Show	GitHub Exploit DB Packet Storm

223417	9.8	CRITICAL Network	barco	clickshare_cs-100_firmware clickshare_cse-200_firmware clickshare_cse-200\+_firmware clickshare_cse-800_firmware	Barco ClickShare Button R9861500D01 devices before 1.9.0 have Improper Following of a Certificate's Chain of Trust. The embedded 'dongle_bridge' program used to expose the functionalities of the Clic…	CWE-295 Improper Certificate Validation	CVE-2019-18826	2024-11-21 13:33	2019-12-17	Show	GitHub Exploit DB Packet Storm

223418	7.5	HIGH Network	envoyproxy	envoy	An issue was discovered in Envoy 1.12.0. Upon receipt of a malformed HTTP request without a Host header, it sends an internally generated "Invalid request" response. This internally generated respons…	CWE-476 NULL Pointer Dereference	CVE-2019-18838	2024-11-21 13:33	2019-12-13	Show	GitHub Exploit DB Packet Storm

223419	9.8	CRITICAL Network	envoyproxy	envoy	An issue was discovered in Envoy 1.12.0. An untrusted remote client may send an HTTP header (such as Host) with whitespace after the header content. Envoy will treat "header-value " as a different st…	NVD-CWE-noinfo	CVE-2019-18802	2024-11-21 13:33	2019-12-13	Show	GitHub Exploit DB Packet Storm

223420	9.8	CRITICAL Network	envoyproxy	envoy	An issue was discovered in Envoy 1.12.0. An untrusted remote client may send HTTP/2 requests that write to the heap outside of the request buffers when the upstream is HTTP/1. This may be used to cor…	CWE-787 Out-of-bounds Write	CVE-2019-18801	2024-11-21 13:33	2019-12-13	Show	GitHub Exploit DB Packet Storm