Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251681	7.5	危険	Nova CMS	-	Nova CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2012-1200	2012-02-21 16:48	2012-02-18	Show	GitHub Exploit DB Packet Storm

251682	7.5	危険	BASE	-	Basic Analysis and Security Engine における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2012-1199	2012-02-21 16:48	2012-02-18	Show	GitHub Exploit DB Packet Storm

251683	7.5	危険	BASE	-	Basic Analysis and Security Engine の base_ag_main.php における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2012-1198	2012-02-21 16:45	2012-02-18	Show	GitHub Exploit DB Packet Storm

251684	6.8	警告	ACD Systems International	-	ACDSee の IDE_ACDStd.apl モジュールにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-1197	2012-02-21 16:44	2012-02-18	Show	GitHub Exploit DB Packet Storm

251685	5	警告	LANDesk	-	Lenovo ThinkManagement Console におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-1196	2012-02-21 16:44	2012-02-18	Show	GitHub Exploit DB Packet Storm

251686	7.5	危険	LANDesk	-	Lenovo ThinkManagement Console の ServerSetup web サービスにおける任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1195	2012-02-21 16:43	2012-02-18	Show	GitHub Exploit DB Packet Storm

251687	4.3	警告	Craig Barratt	-	BackupPC の RestoreFile.pm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5081	2012-02-21 16:42	2012-02-18	Show	GitHub Exploit DB Packet Storm

251688	4.3	警告	Craig Barratt	-	BackupPC の View.pm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4923	2012-02-21 16:41	2012-02-18	Show	GitHub Exploit DB Packet Storm

251689	9.3	危険	TYPO3 Association	-	TYPO3 の workspaces system エクステンションにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2011-4614	2012-02-21 16:40	2011-12-16	Show	GitHub Exploit DB Packet Storm

251690	4.3	警告	Craig Barratt	-	BackupPC の CGI/Browse.pm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-3361	2012-02-21 16:34	2012-02-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224351	5.4	MEDIUM Network	jetbrains	ktor	JetBrains Ktor framework before version 1.2.6 was vulnerable to HTTP Response Splitting.	CWE-74 Injection	CVE-2019-19389	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

224352	9.8	CRITICAL Network	huawei	m5_lite_10_firmware	M5 lite 10 with versions of 8.0.0.182(C00) have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to modify th…	CWE-20 Improper Input Validation	CVE-2019-19398	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

224353	5.4	MEDIUM Network	cridio	listingpro	The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Good For field on the new listing submit page.	CWE-79 Cross-site Scripting	CVE-2019-19542	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

224354	5.4	MEDIUM Network	cridio	listingpro	The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Best Day/Night field on the new listing submit page.	CWE-79 Cross-site Scripting	CVE-2019-19541	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

224355	6.1	MEDIUM Network	cridio	listingpro	The ListingPro theme before v2.0.14.2 for WordPress has Reflected XSS via the What field on the homepage.	CWE-79 Cross-site Scripting	CVE-2019-19540	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

224356	5.5	MEDIUM Local	f5	big-iq_centralized_management big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_access_policy_manager big…	On BIG-IP versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IQ versions 7.0.0, 6.0.0-6.1.0, and 5.0.0-5.4.0, iWorkflow version 2.3.0, and Enterprise Ma…	CWE-269 Improper Privilege Management	CVE-2019-19151	2024-11-21 13:34	2019-12-24	Show	GitHub Exploit DB Packet Storm

224357	4.9	MEDIUM Network	f5	big-ip_access_policy_manager	On versions 15.0.0-15.0.1.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, the BIG-IP APM system logs the client-session-id when a per-session policy is attached …	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2019-19150	2024-11-21 13:34	2019-12-24	Show	GitHub Exploit DB Packet Storm

224358	6.5	MEDIUM Network	redhat	ceph_storage	A flaw was found in Red Hat Ceph Storage version 3 in the way the Ceph RADOS Gateway daemon handles S3 requests. An authenticated attacker can abuse this flaw by causing a remote denial of service by…	NVD-CWE-noinfo	CVE-2019-19337	2024-11-21 13:34	2019-12-24	Show	GitHub Exploit DB Packet Storm

224359	7.8	HIGH Local	broadcom	ca_client_automation	An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local attacker to gain escalated privileges.	NVD-CWE-Other	CVE-2019-19231	2024-11-21 13:34	2019-12-21	Show	GitHub Exploit DB Packet Storm

224360	8.8	HIGH Network	plex	media_server	The Camera Upload functionality in Plex Media Server through 1.18.2.2029 allows remote authenticated users to write files anywhere the user account running the Plex Media Server has permissions. This…	CWE-22 Path Traversal	CVE-2019-19141	2024-11-21 13:34	2019-12-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed