Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251681 4.9 警告 アップル
FreeBSD
NetBSD		 - NetBSD などの製品で使用されるカーネルの smb_subr.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-2530 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
251682 10 危険 Linux - Linux kernel の pppol2tp_xmit 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2495 2012-03-27 18:42 2010-09-8 Show GitHub Exploit DB Packet Storm
251683 4.3 警告 Roundup - Roundup の cgi/client.py におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2491 2012-03-27 18:42 2010-09-24 Show GitHub Exploit DB Packet Storm
251684 7.2 危険 Linux - Linux kernel の ethtool_get_rxnfc 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2478 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
251685 4.3 警告 Python Paste - Paste の paste.httpexceptions 実装におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2477 2012-03-27 18:42 2010-06-24 Show GitHub Exploit DB Packet Storm
251686 4.3 警告 Synology Inc. - Synology Disk Station におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2453 2012-03-27 18:42 2010-09-29 Show GitHub Exploit DB Packet Storm
251687 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Territory Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2418 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
251688 4 警告 オラクル - Oracle Supply Chain Products Suite の Agile PLM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2417 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
251689 4.3 警告 オラクル - Oracle E-Business Suite の Oracle E-Business Intelligence コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2416 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
251690 2.6 注意 オラクル - Oracle Sun Products Suite の Sun Convergence および Sun Java Communications Suite コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2414 2012-03-27 18:42 2010-10-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224851 9.8 CRITICAL
Network 		nlnetlabs
debian 		unbound
debian_linux 		Unbound before 1.9.5 allows an out-of-bounds write in sldns_bget_token_par. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Unbound installation… CWE-787
 Out-of-bounds Write 		CVE-2019-25035 2024-11-21 13:39 2021-04-27 Show GitHub Exploit DB Packet Storm
224852 9.8 CRITICAL
Network 		nlnetlabs
debian 		unbound
debian_linux 		Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write. NOTE: The vendor disputes that this is a vulnerability. Although the code may be… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-25034 2024-11-21 13:39 2021-04-27 Show GitHub Exploit DB Packet Storm
224853 9.8 CRITICAL
Network 		nlnetlabs
debian 		unbound
debian_linux 		Unbound before 1.9.5 allows an integer overflow in the regional allocator via the ALIGN_UP macro. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a runnin… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-25033 2024-11-21 13:39 2021-04-27 Show GitHub Exploit DB Packet Storm
224854 9.8 CRITICAL
Network 		nlnetlabs
debian 		unbound
debian_linux 		Unbound before 1.9.5 allows an integer overflow in the regional allocator via regional_alloc. NOTE: The vendor disputes that this is a vulnerability. Although the code may be vulnerable, a running Un… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-25032 2024-11-21 13:39 2021-04-27 Show GitHub Exploit DB Packet Storm
224855 5.9 MEDIUM
Network 		nlnetlabs
debian 		unbound
debian_linux 		Unbound before 1.9.5 allows configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session. NOTE: The vendor does not consider thi… CWE-74
Injection 		CVE-2019-25031 2024-11-21 13:39 2021-04-27 Show GitHub Exploit DB Packet Storm
224856 6.1 MEDIUM
Network 		vaadin vaadin Missing variable sanitization in Grid component in com.vaadin:vaadin-server versions 7.4.0 through 7.7.19 (Vaadin 7.4.0 through 7.7.19), and 8.0.0 through 8.8.4 (Vaadin 8.0.0 through 8.8.4) allows at… CWE-79
Cross-site Scripting 		CVE-2019-25028 2024-11-21 13:39 2021-04-24 Show GitHub Exploit DB Packet Storm
224857 6.1 MEDIUM
Network 		vaadin flow
vaadin 		Missing output sanitization in default RouteNotFoundError view in com.vaadin:flow-server versions 1.0.0 through 1.0.10 (Vaadin 10.0.0 through 10.0.13), and 1.1.0 through 1.4.2 (Vaadin 11.0.0 through … CWE-79
Cross-site Scripting 		CVE-2019-25027 2024-11-21 13:39 2021-04-24 Show GitHub Exploit DB Packet Storm
224858 5.3 MEDIUM
Network 		redmine
debian 		redmine
debian_linux 		Redmine before 3.4.13 and 4.x before 4.0.6 mishandles markup data during Textile formatting. NVD-CWE-noinfo
CVE-2019-25026 2024-11-21 13:39 2021-04-6 Show GitHub Exploit DB Packet Storm
224859 5.3 MEDIUM
Network 		rubyonrails active_record_session_store The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed se… NVD-CWE-Other
CVE-2019-25025 2024-11-21 13:39 2021-03-5 Show GitHub Exploit DB Packet Storm
224860 6.5 MEDIUM
Network 		scytl secure_vote An issue was discovered in Scytl sVote 2.1. Because the IP address from an X-Forwarded-For header (which can be manipulated client-side) is used for the internal application logs, an attacker can inj… CWE-290
 Authentication Bypass by Spoofing 		CVE-2019-25023 2024-11-21 13:39 2021-02-27 Show GitHub Exploit DB Packet Storm