Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252331	6.2	警告	オラクル	-	Oracle VM VirtualBox の脆弱性	CWE-noinfo 情報不足	CVE-2011-2305	2011-09-9 09:54	2011-07-19	Show	GitHub Exploit DB Packet Storm

252332	3.5	注意	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2274	2011-09-9 09:52	2011-07-19	Show	GitHub Exploit DB Packet Storm

252333	3.5	注意	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2282	2011-09-9 09:51	2011-07-19	Show	GitHub Exploit DB Packet Storm

252334	4	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2280	2011-09-9 09:50	2011-07-19	Show	GitHub Exploit DB Packet Storm

252335	4.3	警告	オラクル	-	Oracle PeopleSoft Products の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-2275	2011-09-9 09:49	2011-07-19	Show	GitHub Exploit DB Packet Storm

252336	4.3	警告	リアルネットワークス	-	RealNetworks RealPlayer の ActiveX コントロールにおけるクロスゾーンスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-2947	2011-09-8 13:36	2011-08-16	Show	GitHub Exploit DB Packet Storm

252337	10	危険	リアルネットワークス	-	RealNetworks RealPlayer および RealPlayer Enterprise の ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2011-2946	2011-09-8 13:35	2011-08-16	Show	GitHub Exploit DB Packet Storm

252338	9.3	危険	リアルネットワークス	-	RealNetworks RealPlayer におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-2945	2011-09-8 13:34	2011-08-16	Show	GitHub Exploit DB Packet Storm

252339	10	危険	Mozilla Foundation レッドハット	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0084	2011-09-8 13:33	2011-08-16	Show	GitHub Exploit DB Packet Storm

252340	4.3	警告	Mozilla Foundation レッドハット	-	複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性	CWE-200 情報漏えい	CVE-2011-2983	2011-09-8 13:32	2011-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222191	5.5	MEDIUM Local	gonitro	nitro_free_pdf_reader	The JBIG2Decode library in npdf.dll in Nitro Free PDF Reader 12.0.0.112 has a CAPPDAnnotHandlerUtils::PDAnnotHandlerDestroyData2+0xa08a Out-of-Bounds Read via crafted Unicode content.	CWE-125 Out-of-bounds Read	CVE-2019-19818	2024-11-21 13:35	2019-12-17	Show	GitHub Exploit DB Packet Storm

222192	6.5	MEDIUM Network	dlink	dir-615_t1_firmware	On D-Link DIR-615 devices, a normal user is able to create a root(admin) user from the D-Link portal.	NVD-CWE-noinfo	CVE-2019-19743	2024-11-21 13:35	2019-12-17	Show	GitHub Exploit DB Packet Storm

222193	7.5	HIGH Network	roxyfileman	roxy_fileman	Roxy Fileman 1.4.5 for .NET is vulnerable to path traversal. A remote attacker can write uploaded files to arbitrary locations via the RENAMEFILE action. This can be leveraged for code execution by u…	CWE-22 Path Traversal	CVE-2019-19731	2024-11-21 13:35	2019-12-17	Show	GitHub Exploit DB Packet Storm

222194	6.5	MEDIUM Network	cyrus debian fedoraproject canonical	imap debian_linux fedora ubuntu_linux	An issue was discovered in Cyrus IMAP before 2.5.15, 3.0.x before 3.0.13, and 3.1.x through 3.1.8. If sieve script uploading is allowed (3.x) or certain non-default sieve options are enabled (2.x), a…	CWE-269 Improper Privilege Management	CVE-2019-19783	2024-11-21 13:35	2019-12-16	Show	GitHub Exploit DB Packet Storm

222195	7.8	HIGH Local	linux canonical	linux_kernel ubuntu_linux	In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to snd_timer_open and snd_timer_close_locked. Th…	CWE-416 Use After Free	CVE-2019-19807	2024-11-21 13:35	2019-12-16	Show	GitHub Exploit DB Packet Storm

222196	5.5	MEDIUM Local	xfig_project fedoraproject debian	fig2dev fedora debian_linux	read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.	CWE-787 Out-of-bounds Write	CVE-2019-19797	2024-11-21 13:35	2019-12-16	Show	GitHub Exploit DB Packet Storm

222197	7.8	HIGH Local	yabasic	yabasic	Yabasic 2.86.2 has a heap-based buffer overflow in myformat in function.c via a crafted BASIC source file.	CWE-787 Out-of-bounds Write	CVE-2019-19796	2024-11-21 13:35	2019-12-14	Show	GitHub Exploit DB Packet Storm

222198	7.8	HIGH Local	samurai_project	samurai	samurai 0.7 has a heap-based buffer overflow in canonpath in util.c via a crafted build file.	CWE-787 Out-of-bounds Write	CVE-2019-19795	2024-11-21 13:35	2019-12-14	Show	GitHub Exploit DB Packet Storm

222199	5.9	MEDIUM Network	miekg-dns_project	miekg-dns	The miekg Go DNS package before 1.1.25, as used in CoreDNS before 1.6.6 and other products, improperly generates random numbers because math/rand is used. The TXID becomes predictable, leading to res…	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2019-19794	2024-11-21 13:35	2019-12-14	Show	GitHub Exploit DB Packet Storm

222200	8.8	HIGH Network	cyxtera	appgate_sdp	In Cyxtera AppGate SDP Client 4.1.x through 4.3.x before 4.3.2 on Windows, a local or remote user from the same domain can gain privileges.	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2019-19793	2024-11-21 13:35	2019-12-14	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed