Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252161	4	警告	アップルサイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	Oracle MySQL におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-3682	2011-06-29 10:14	2010-07-9	Show	GitHub Exploit DB Packet Storm

252162	4	警告	アップルサイバートラスト株式会社 MySQL AB ターボリナックスレッドハット	-	Oracle MySQL におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-3677	2011-06-29 10:13	2010-07-9	Show	GitHub Exploit DB Packet Storm

252163	7.5	危険	Samba Project アップルサイバートラスト株式会社ヒューレット・パッカードターボリナックスオラクル VMware レッドハット	-	Samba の sid_parse および dom_sid_parse 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3069	2011-06-29 10:11	2010-09-14	Show	GitHub Exploit DB Packet Storm

252164	7.8	危険	アップルオラクル	-	Oracle Solaris の FTB サーバにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2632	2011-06-29 10:10	2011-01-18	Show	GitHub Exploit DB Packet Storm

252165	5	警告	アップル VMware OpenSSL Project IBM ヒューレット・パッカード	-	OpenSSL の ssl3_get_record 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0740	2011-06-29 10:08	2010-03-24	Show	GitHub Exploit DB Packet Storm

252166	9.3	危険	アドビシステムズターボリナックス	-	Adobe Reader および Acrobat におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2094	2011-06-28 12:25	2011-06-14	Show	GitHub Exploit DB Packet Storm

252167	5	警告	アドビシステムズ	-	Adobe ColdFusion におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-2091	2011-06-28 12:23	2011-06-14	Show	GitHub Exploit DB Packet Storm

252168	6.8	警告	アドビシステムズ	-	Adobe ColdFusion におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-0629	2011-06-28 12:22	2011-06-14	Show	GitHub Exploit DB Packet Storm

252169	10	危険	アドビシステムズターボリナックス	-	Adobe Flash Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-2110	2011-06-28 12:21	2011-06-14	Show	GitHub Exploit DB Packet Storm

252170	5	警告	ISC, Inc. ターボリナックス	-	ISC DHCP の dhcpd におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性	CWE-16 環境設定	CVE-2009-1892	2011-06-28 12:19	2009-10-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222561	4.7	MEDIUM Local	osisoft	pi_vision	In OSIsoft PI System multiple products and versions, a local attacker could view sensitive information in log files when service accounts are customized during installation or upgrade of PI Vision. T…	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2019-18244	2024-11-21 13:32	2020-01-16	Show	GitHub Exploit DB Packet Storm

222562	7.8	HIGH Local	totalav	totalav_2020	TotalAV 2020 4.14.31 has a quarantine flaw that allows privilege escalation. Exploitation uses an NTFS directory junction to restore a malicious DLL from quarantine into the system32 folder.	NVD-CWE-noinfo	CVE-2019-18194	2024-11-21 13:32	2020-01-11	Show	GitHub Exploit DB Packet Storm

222563	4.3	MEDIUM Network	otrs debian opensuse	otrs debian_linux leap backports_sle	An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.12, and Community Edition 5.0.x through 5.0.38 and 6.0.x through 6.0.23. An attacker who is logged into OTRS as an agent…	NVD-CWE-noinfo	CVE-2019-18179	2024-11-21 13:32	2020-01-7	Show	GitHub Exploit DB Packet Storm

222564	9.8	CRITICAL Network	dlink	dir-859_firmware dir-822_firmware dir-823_firmware dir-865l_firmware dir-868l_firmware dir-869_firmware dir-880l_firmware dir-890l_firmware dir-890r_firmware dir-885l_firmw…	The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted…	CWE-78 OS Command	CVE-2019-17621	2024-11-21 13:32	2019-12-31	Show	GitHub Exploit DB Packet Storm

222565	6.1	MEDIUM Network	reliablecontrols	mach-prowebsys_firmware mach-prowebcom_firmware	Reliable Controls MACH-ProWebCom/Sys, all versions prior to 2.15 (Firmware versions prior to 8.26.4), may allow attacker to execute commands on behalf of the user when an authenticated user clicks on…	CWE-79 Cross-site Scripting	CVE-2019-18249	2024-11-21 13:32	2019-12-25	Show	GitHub Exploit DB Packet Storm

222566	8.8	HIGH Network	orckestra	c1_cms	An issue was discovered in Orckestra C1 CMS through 6.6. The EntityTokenSerializer class in Composite.dll is prone to unvalidated deserialization of wrapped BinaryFormatter payloads, leading to arbit…	CWE-502 Deserialization of Untrusted Data	CVE-2019-18211	2024-11-21 13:32	2019-12-24	Show	GitHub Exploit DB Packet Storm

222567	7.8	HIGH Local	we-con	plc_editor	Multiple buffer overflow vulnerabilities exist when the PLC Editor Version 1.3.5_20190129 processes project files. An attacker could use a specially crafted project file to exploit and execute code u…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-18236	2024-11-21 13:32	2019-12-24	Show	GitHub Exploit DB Packet Storm

222568	9.8	CRITICAL Network	equinoxce	control_expert	Equinox Control Expert all versions, is vulnerable to an SQL injection attack, which may allow an attacker to remotely execute arbitrary code.	CWE-89 SQL Injection	CVE-2019-18234	2024-11-21 13:32	2019-12-24	Show	GitHub Exploit DB Packet Storm

222569	7.5	HIGH Network	apache debian opensuse canonical oracle	tomcat debian_linux leap ubuntu_linux transportation_management retail_order_broker micros_relate_crm_software instantis_enterprisetrack hyperion_infrastructure_technology …	When using FORM authentication with Apache Tomcat 9.0.0.M1 to 9.0.29, 8.5.0 to 8.5.49 and 7.0.0 to 7.0.98 there was a narrow window where an attacker could perform a session fixation attack. The wind…	CWE-384 Session Fixation	CVE-2019-17563	2024-11-21 13:32	2019-12-24	Show	GitHub Exploit DB Packet Storm

222570	9.8	CRITICAL Network	apache debian canonical opensuse netapp oracle	log4j debian_linux ubuntu_linux leap oncommand_workflow_automation oncommand_system_manager retail_service_backbone weblogic_server application_testing_suite endeca_informa…	Included in Log4j 1.2 is a SocketServer class that is vulnerable to deserialization of untrusted data which can be exploited to remotely execute arbitrary code when combined with a deserialization ga…	CWE-502 Deserialization of Untrusted Data	CVE-2019-17571	2024-11-21 13:32	2019-12-21	Show	GitHub Exploit DB Packet Storm