Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252281	10	危険	フレクセラ・ソフトウェア合同会社	-	Flexera FlexNet Publisher の lmgrd におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2011-4135	2012-01-24 16:02	2011-08-16	Show	GitHub Exploit DB Packet Storm

252282	10	危険	フレクセラ・ソフトウェア合同会社	-	Flexera FlexNet Publisher の lmadmin におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-4134	2012-01-24 15:42	2011-08-3	Show	GitHub Exploit DB Packet Storm

252283	2.1	注意	フレクセラ・ソフトウェア合同会社	-	Flexera Macrovision InstallShield における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2007-6744	2012-01-24 15:32	2007-05-23	Show	GitHub Exploit DB Packet Storm

252284	9	危険	シスコシステムズ	-	Cisco Digital Media Manager における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0329	2012-01-24 15:22	2012-01-18	Show	GitHub Exploit DB Packet Storm

252285	5.1	警告	Yahoo!	-	Yahoo! Messenger の YImage.dll の CYImage::LoadJPG メソッドにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2012-0268	2012-01-24 15:13	2012-01-19	Show	GitHub Exploit DB Packet Storm

252286	5	警告	Certec EDV	-	Certec EDV atvise におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性	CWE-noinfo 情報不足	CVE-2011-4873	2012-01-24 15:11	2012-01-19	Show	GitHub Exploit DB Packet Storm

252287	10	危険	シスコシステムズ	-	Cisco TelePresence Software における設定を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-4659	2012-01-24 15:09	2012-01-18	Show	GitHub Exploit DB Packet Storm

252288	9.3	危険	IBM	-	IBM SPSS Dimensions および SPSS Data Collection における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-0188	2012-01-23 17:54	2012-01-18	Show	GitHub Exploit DB Packet Storm

252289	9.3	危険	マイクロソフト	-	複数の Microsoft Windows 製品の Windows Object Packager 設定における権限昇格の脆弱性	CWE-Other その他	CVE-2012-0009	2012-01-23 17:52	2012-01-10	Show	GitHub Exploit DB Packet Storm

252290	9.3	危険	IBM	-	IBM SPSS SamplePower の VsVIEW6.ocx における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2012-0189	2012-01-23 16:33	2012-01-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225091	7.8	HIGH Local	tinywall	tinywall	Unsafe usage of .NET deserialization in Named Pipe message processing allows privilege escalation to NT AUTHORITY\SYSTEM for a local attacker. Affected product is TinyWall, all versions up to and inc…	CWE-502 Deserialization of Untrusted Data	CVE-2019-19470	2024-11-21 13:34	2019-12-31	Show	GitHub Exploit DB Packet Storm

225092	5.4	MEDIUM Network	jetbrains	ktor	JetBrains Ktor framework before version 1.2.6 was vulnerable to HTTP Response Splitting.	CWE-74 Injection	CVE-2019-19389	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

225093	9.8	CRITICAL Network	huawei	m5_lite_10_firmware	M5 lite 10 with versions of 8.0.0.182(C00) have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to modify th…	CWE-20 Improper Input Validation	CVE-2019-19398	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

225094	5.4	MEDIUM Network	cridio	listingpro	The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Good For field on the new listing submit page.	CWE-79 Cross-site Scripting	CVE-2019-19542	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

225095	5.4	MEDIUM Network	cridio	listingpro	The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Best Day/Night field on the new listing submit page.	CWE-79 Cross-site Scripting	CVE-2019-19541	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

225096	6.1	MEDIUM Network	cridio	listingpro	The ListingPro theme before v2.0.14.2 for WordPress has Reflected XSS via the What field on the homepage.	CWE-79 Cross-site Scripting	CVE-2019-19540	2024-11-21 13:34	2019-12-27	Show	GitHub Exploit DB Packet Storm

225097	5.5	MEDIUM Local	f5	big-iq_centralized_management big-ip_local_traffic_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_analytics big-ip_access_policy_manager big…	On BIG-IP versions 15.0.0-15.1.0, 14.0.0-14.1.2.3, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IQ versions 7.0.0, 6.0.0-6.1.0, and 5.0.0-5.4.0, iWorkflow version 2.3.0, and Enterprise Ma…	CWE-269 Improper Privilege Management	CVE-2019-19151	2024-11-21 13:34	2019-12-24	Show	GitHub Exploit DB Packet Storm

225098	4.9	MEDIUM Network	f5	big-ip_access_policy_manager	On versions 15.0.0-15.0.1.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, the BIG-IP APM system logs the client-session-id when a per-session policy is attached …	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2019-19150	2024-11-21 13:34	2019-12-24	Show	GitHub Exploit DB Packet Storm

225099	6.5	MEDIUM Network	redhat	ceph_storage	A flaw was found in Red Hat Ceph Storage version 3 in the way the Ceph RADOS Gateway daemon handles S3 requests. An authenticated attacker can abuse this flaw by causing a remote denial of service by…	NVD-CWE-noinfo	CVE-2019-19337	2024-11-21 13:34	2019-12-24	Show	GitHub Exploit DB Packet Storm

225100	7.8	HIGH Local	broadcom	ca_client_automation	An insecure file access vulnerability exists in CA Client Automation 14.0, 14.1, 14.2, and 14.3 Agent for Windows that can allow a local attacker to gain escalated privileges.	NVD-CWE-Other	CVE-2019-19231	2024-11-21 13:34	2019-12-21	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed