Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252141	5	警告	ProFTPD Project	-	ProFTPD の mod_sftp モジュールにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1137	2011-04-27 11:59	2011-01-24	Show	GitHub Exploit DB Packet Storm

252142	6.8	警告	IBM	-	IBM AIX の LDAP ログイン機能における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-1561	2011-04-27 11:57	2011-03-31	Show	GitHub Exploit DB Packet Storm

252143	4.4	警告	ヒューレット・パッカード	-	HP HP-UX の OS-Core.CORE2-KRN ファイルセットにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-0891	2011-04-27 11:56	2011-03-23	Show	GitHub Exploit DB Packet Storm

252144	1.9	注意	Gentoo Linux レッドハット	-	logrotate の logrotate.c 内にある writeState 関数におけるサービス運用妨害 (ローテーションの停止) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1155	2011-04-27 11:41	2011-03-30	Show	GitHub Exploit DB Packet Storm

252145	6.9	警告	Gentoo Linux レッドハット	-	logrotate の shred_file 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1154	2011-04-27 11:40	2011-03-30	Show	GitHub Exploit DB Packet Storm

252146	1.9	注意	Gentoo Linux レッドハット	-	logrotate の createOutputFile 関数におけるログデータを閲覧される脆弱性	CWE-362 競合状態	CVE-2011-1098	2011-04-27 11:39	2011-03-30	Show	GitHub Exploit DB Packet Storm

252147	6.9	警告	サイバートラスト株式会社 libvirt.org レッドハット	-	複数のレッドハット製品などで利用される libvirt の libvirt.c における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1146	2011-04-27 11:34	2011-02-17	Show	GitHub Exploit DB Packet Storm

252148	5.1	警告	rsync.samba.org レッドハット	-	rsync における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1097	2011-04-27 11:32	2011-03-26	Show	GitHub Exploit DB Packet Storm

252149	6.9	警告	GNOME Project レッドハット	-	GNOME Display Manager におけるファイルの所有権を変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-0727	2011-04-27 11:31	2011-03-28	Show	GitHub Exploit DB Packet Storm

252150	7.5	危険	レッドハット	-	Plone における管理者のアクセス権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-0720	2011-04-27 11:30	2011-02-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222991	8.8	HIGH Network	totaljs	total.js_cms	An issue was discovered in Total.js CMS 12.0.0. An authenticated user with limited privileges can get access to a resource that they do not own by calling the associated API. The product correctly ma…	CWE-862 Missing Authorization	CVE-2019-15953	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

222992	9.9	CRITICAL Network	totaljs	total.js_cms	An issue was discovered in Total.js CMS 12.0.0. An authenticated user with the widgets privilege can gain achieve Remote Command Execution (RCE) on the remote server by creating a malicious widget wi…	CWE-862 Missing Authorization	CVE-2019-15954	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

222993	8.8	HIGH Network	totaljs	total.js_cms	An issue was discovered in Total.js CMS 12.0.0. An authenticated user with the Pages privilege can conduct a path traversal attack (../) to include .html files that are outside the permitted director…	CWE-22 Path Traversal	CVE-2019-15952	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

222994	7.5	HIGH Network	bitcoin	bitcoin_core	In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted in memory. Upon a crash, it may dump a core file. If a user were to mishandle a core file, an attacker can reconstruct the user's…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2019-15947	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

222995	6.4	MEDIUM Physics	opensc_project debian fedoraproject	opensc debian_linux fedora	OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry in libopensc/asn1.c.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-15946	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

222996	6.4	MEDIUM Physics	opensc_project debian fedoraproject	opensc debian_linux fedora	OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-15945	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

222997	8.8	HIGH Network	ffmpeg	ffmpeg	FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer.	CWE-252 Unchecked Return Value	CVE-2019-15942	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

222998	5.9	MEDIUM Network	opencv opensuse debian	opencv leap debian_linux	An issue was discovered in OpenCV 4.1.0. There is a divide-by-zero error in cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp.	CWE-369 Divide By Zero	CVE-2019-15939	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

222999	9.8	CRITICAL Network	pengutronix	barebox	Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_req in fs/nfs.c because a length field is directly used for a memcpy.	CWE-787 Out-of-bounds Write	CVE-2019-15938	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

223000	9.8	CRITICAL Network	pengutronix	barebox	Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_reply in net/nfs.c because a length field is directly used for a memcpy.	CWE-787 Out-of-bounds Write	CVE-2019-15937	2024-11-21 13:29	2019-09-6	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed