Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252161 10 危険 IBM - IBM Lotus Domino の POP3 および IMAP サービスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0919 2011-04-26 11:45 2011-02-8 Show GitHub Exploit DB Packet Storm
252162 10 危険 IBM - IBM Lotus Domino の NRouter サービスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0918 2011-04-26 11:44 2011-02-8 Show GitHub Exploit DB Packet Storm
252163 10 危険 IBM - IBM Lotus Domino の nLDAP.exe におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0917 2011-04-26 11:07 2011-02-8 Show GitHub Exploit DB Packet Storm
252164 10 危険 IBM - IBM Lotus Domino の SMTP サービスにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0916 2011-04-26 11:06 2011-02-8 Show GitHub Exploit DB Packet Storm
252165 10 危険 IBM - IBM Lotus Domino の nrouter.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0915 2011-04-26 11:05 2011-02-8 Show GitHub Exploit DB Packet Storm
252166 10 危険 IBM - IBM Lotus Domino の ndiiop.exe における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0914 2011-04-26 11:04 2011-02-8 Show GitHub Exploit DB Packet Storm
252167 10 危険 IBM - IBM Lotus Domino の ndiiop.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0913 2011-04-26 11:03 2011-02-8 Show GitHub Exploit DB Packet Storm
252168 9.3 危険 IBM - IBM Lotus Notes における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0912 2011-04-26 11:02 2010-07-26 Show GitHub Exploit DB Packet Storm
252169 6.8 警告 アップル - Apple Mac OS X の ImageIO における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0194 2011-04-26 10:58 2011-03-23 Show GitHub Exploit DB Packet Storm
252170 6.8 警告 アップル - Apple Mac OS X の Image RAW におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0193 2011-04-26 10:57 2011-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223421 8.8 HIGH
Network 		webkul bagisto Bagisto 0.1.5 allows CSRF under /admin URIs. CWE-352
 Origin Validation Error 		CVE-2019-14933 2024-11-21 13:27 2019-08-12 Show GitHub Exploit DB Packet Storm
223422 7.5 HIGH
Network 		gcdwebserver_project gcdwebserver An issue was discovered in GCDWebServer before 3.5.3. The method moveItem in the GCDWebUploader class checks the FileExtension of newAbsolutePath but not oldAbsolutePath. By leveraging this vulnerabi… CWE-863
 Incorrect Authorization 		CVE-2019-14924 2024-11-21 13:27 2019-08-11 Show GitHub Exploit DB Packet Storm
223423 6.1 MEDIUM
Network 		mediawiki mobilefrontend In the MobileFrontend extension 1.31 through 1.33 for MediaWiki, XSS exists within the edit summary field in includes/specials/MobileSpecialPageFeed.php. CWE-79
Cross-site Scripting 		CVE-2019-14807 2024-11-21 13:27 2019-08-10 Show GitHub Exploit DB Packet Storm
223424 7.5 HIGH
Network 		palletsprojects
opensuse 		werkzeug
leap 		Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN randomness because Docker containers share the same machine id. CWE-331
 Insufficient Entropy 		CVE-2019-14806 2024-11-21 13:27 2019-08-10 Show GitHub Exploit DB Packet Storm
223425 4.8 MEDIUM
Network 		una una studio/builder_menu.php?page=sets in UNA 10.0.0-RC1 allows XSS via the System Name field under Sets during set editing. CWE-79
Cross-site Scripting 		CVE-2019-14805 2024-11-21 13:27 2019-08-9 Show GitHub Exploit DB Packet Storm
223426 4.8 MEDIUM
Network 		una una studio/polyglot.php?page=etemplates in UNA 10.0.0-RC1 allows XSS via the System Name field under Emails during template editing. CWE-79
Cross-site Scripting 		CVE-2019-14804 2024-11-21 13:27 2019-08-9 Show GitHub Exploit DB Packet Storm
223427 9.8 CRITICAL
Network 		foliovision fv_flowplayer_video_player The FV Flowplayer Video Player plugin before 7.3.15.727 for WordPress allows email subscription SQL injection. CWE-89
SQL Injection 		CVE-2019-14801 2024-11-21 13:27 2019-08-9 Show GitHub Exploit DB Packet Storm
223428 4.9 MEDIUM
Network 		10web photo_gallery The 10Web Photo Gallery plugin before 1.5.25 for WordPress has Authenticated Local File Inclusion via directory traversal in the wp-admin/admin-ajax.php?action=shortcode_bwg tagtext parameter. CWE-22
Path Traversal 		CVE-2019-14798 2024-11-21 13:27 2019-08-9 Show GitHub Exploit DB Packet Storm
223429 5.4 MEDIUM
Network 		10web photo_gallery The 10Web Photo Gallery plugin before 1.5.23 for WordPress has authenticated stored XSS. CWE-79
Cross-site Scripting 		CVE-2019-14797 2024-11-21 13:27 2019-08-9 Show GitHub Exploit DB Packet Storm
223430 5.4 MEDIUM
Network 		mq-woocommerce-products-price-bulk-edit_project mq-woocommerce-products-price-bulk-edit The mq-woocommerce-products-price-bulk-edit (aka Woocommerce Products Price Bulk Edit) plugin 2.0 for WordPress allows XSS via the wp-admin/admin-ajax.php?action=update_options show_products_page_lim… CWE-79
Cross-site Scripting 		CVE-2019-14796 2024-11-21 13:27 2019-08-9 Show GitHub Exploit DB Packet Storm