Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251571 4.3 警告 razorCMS - razorCMS の admin/core/admin_func.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5051 2011-11-25 11:44 2011-11-23 Show GitHub Exploit DB Packet Storm
251572 4.3 警告 Zoho Corporation - ManageEngine ADManager Plus におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5050 2011-11-25 11:43 2011-11-23 Show GitHub Exploit DB Packet Storm
251573 7.5 危険 Zabbix - Zabbix の events.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5049 2011-11-25 11:42 2011-11-23 Show GitHub Exploit DB Packet Storm
251574 4.3 警告 JoomlaTune
Joomla!		 - JoomlaTune JComments におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5048 2011-11-25 11:42 2011-11-23 Show GitHub Exploit DB Packet Storm
251575 7.5 危険 V-EVA - V-EVA Press Release Script における任意の SQL コマンドを実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5047 2011-11-25 11:41 2011-11-23 Show GitHub Exploit DB Packet Storm
251576 4.3 警告 ecoCMS - ecoCMS の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5046 2011-11-25 11:40 2011-11-23 Show GitHub Exploit DB Packet Storm
251577 7.5 危険 Alephsystem - CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5058 2011-11-25 10:14 2011-11-23 Show GitHub Exploit DB Packet Storm
251578 7.5 危険 Alephsystem - CMS Ariadna の detResolucion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5057 2011-11-25 10:13 2011-11-23 Show GitHub Exploit DB Packet Storm
251579 7.5 危険 IXXO Internet Solutions - XOBBIX コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5053 2011-11-25 10:08 2011-11-23 Show GitHub Exploit DB Packet Storm
251580 4.3 警告 Joomla! - Joomla! におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-4332 2011-11-25 09:39 2011-03-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223521 5.5 MEDIUM
Local 		linux linux_kernel A memory leak in the ql_alloc_large_buffers() function in drivers/net/ethernet/qlogic/qla3xxx.c in the Linux kernel before 5.3.5 allows local users to cause a denial of service (memory consumption) b… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-18806 2024-11-21 13:33 2019-11-8 Show GitHub Exploit DB Packet Storm
223522 7.5 HIGH
Network 		djvulibre_project
debian
fedoraproject
canonical
opensuse 		djvulibre
debian_linux
fedora
ubuntu_linux
leap 		DjVuLibre 3.5.27 has a NULL pointer dereference in the function DJVU::filter_fv at IW44EncodeCodec.cpp. CWE-476
 NULL Pointer Dereference 		CVE-2019-18804 2024-11-21 13:33 2019-11-7 Show GitHub Exploit DB Packet Storm
223523 9.8 CRITICAL
Network 		linux
opensuse
redhat
netapp
broadcom 		linux_kernel
leap
enterprise_linux
steelstore_cloud_integrated_storage
data_availability_services
solidfire
hci_management_node
hci_storage_node
active_iq_unified_manager
f… 		An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very l… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-18805 2024-11-21 13:33 2019-11-7 Show GitHub Exploit DB Packet Storm
223524 8.8 HIGH
Network 		zohocorp manageengine_adselfservice_plus Zoho ManageEngine ADSelfService Plus 5.x through 5803 has CSRF on the users' profile information page. Users who are attacked with this vulnerability will be forced to modify their enrolled informati… CWE-352
 Origin Validation Error 		CVE-2019-18411 2024-11-21 13:33 2019-11-7 Show GitHub Exploit DB Packet Storm
223525 6.5 MEDIUM
Network 		sass-lang libsass LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser::parseCompoundSelector in parser_selectors.cpp. CWE-476
 NULL Pointer Dereference 		CVE-2019-18799 2024-11-21 13:33 2019-11-7 Show GitHub Exploit DB Packet Storm
223526 6.5 MEDIUM
Network 		sass-lang libsass LibSass before 3.6.3 allows a heap-based buffer over-read in Sass::weaveParents in ast_sel_weave.cpp. CWE-125
Out-of-bounds Read 		CVE-2019-18798 2024-11-21 13:33 2019-11-7 Show GitHub Exploit DB Packet Storm
223527 6.5 MEDIUM
Network 		sass-lang libsass LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operator()(Sass::Binary_Expression*) in eval.cpp. CWE-674
 Uncontrolled Recursion 		CVE-2019-18797 2024-11-21 13:33 2019-11-7 Show GitHub Exploit DB Packet Storm
223528 8.8 HIGH
Network 		rakuten viber Viber through 11.7.0.5 allows a remote attacker who can capture a victim's internet traffic to steal their Viber account, because not all Viber protocol traffic is encrypted. TCP data packet 9 on por… CWE-311
CWE-319
Missing Encryption of Sensitive Data
Cleartext Transmission of Sensitive Information 		CVE-2019-18800 2024-11-21 13:33 2019-11-7 Show GitHub Exploit DB Packet Storm
223529 5.5 MEDIUM
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitialized in rcar_drif_g_fmt_sdr_cap in drivers/media/platform/rcar_drif.c, which could cause a memory disclosure problem. CWE-908
 Use of Uninitialized Resource 		CVE-2019-18786 2024-11-21 13:33 2019-11-6 Show GitHub Exploit DB Packet Storm
223530 9.8 CRITICAL
Network 		salesagility suitecrm SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 allow SQL Injection. CWE-89
SQL Injection 		CVE-2019-18784 2024-11-21 13:33 2019-11-6 Show GitHub Exploit DB Packet Storm