Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252351 4.3 警告 マイクロソフト - Microsoft Forefront Unified Access Gateway の Web Monitor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2733 2010-12-7 16:44 2010-11-9 Show GitHub Exploit DB Packet Storm
252352 5.8 警告 マイクロソフト - Microsoft Forefront Unified Access Gateway の Web インターフェースにおける任意の Web サイトへリダイレクトされる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2732 2010-12-7 16:44 2010-11-9 Show GitHub Exploit DB Packet Storm
252353 10 危険 アップル
サイバートラスト株式会社
MIT Kerberos
サン・マイクロシステムズ
VMware
レッドハット		 - MIT Kerberos の AES および RC4 の復号化機能における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-4212 2010-12-7 16:40 2010-01-12 Show GitHub Exploit DB Packet Storm
252354 10 危険 アップル
サイバートラスト株式会社
MIT Kerberos
サン・マイクロシステムズ
ヒューレット・パッカード
VMware
レッドハット		 - MIT Kerberos の asn1_decode_generaltime 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0846 2010-12-7 16:39 2009-04-7 Show GitHub Exploit DB Packet Storm
252355 5 警告 アップル
サイバートラスト株式会社
MIT Kerberos
サン・マイクロシステムズ
VMware
レッドハット		 - MIT Kerberos の spnego_gss_accept_sec_context 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0845 2010-12-7 16:38 2009-03-27 Show GitHub Exploit DB Packet Storm
252356 5.8 警告 アップル
サイバートラスト株式会社
MIT Kerberos
サン・マイクロシステムズ
VMware
レッドハット		 - MIT Kerberos の SPNEGO 実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-0844 2010-12-7 16:38 2009-04-7 Show GitHub Exploit DB Packet Storm
252357 4 警告 Pidgin
レッドハット		 - Pidgin の libpurple におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-3711 2010-12-7 15:44 2010-05-12 Show GitHub Exploit DB Packet Storm
252358 9.3 危険 マイクロソフト - 複数の Microsoft 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-3336 2010-12-6 16:51 2010-11-9 Show GitHub Exploit DB Packet Storm
252359 9.3 危険 マイクロソフト - 複数の Microsoft 製品における整数アンダーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2573 2010-12-6 16:30 2010-11-9 Show GitHub Exploit DB Packet Storm
252360 9.3 危険 マイクロソフト - Microsoft Office における権限昇格の脆弱性 CWE-Other
その他 		CVE-2010-3337 2010-12-6 15:44 2010-08-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223601 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition and Community Edition 1.10 through 12.0.2. The GitLab graphql service was vulnerable to multiple authorization issues that disclosed restricted us… NVD-CWE-noinfo
CVE-2019-13005 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223602 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. When specific encoded characters were added to comments, the comments section would become inaccessible. It ha… NVD-CWE-Other
CVE-2019-13004 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223603 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 12.0.3. One of the parsers used by Gilab CI was vulnerable to a resource exhaustion attack. It allows Uncontrolled Resource C… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13003 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223604 8.8 HIGH
Network 		mi mi_browser This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability in that … CWE-20
 Improper Input Validation  		CVE-2019-13322 2024-11-21 13:24 2020-02-11 Show GitHub Exploit DB Packet Storm
223605 8.0 HIGH
Adjacent 		mi mi_browser This vulnerability allows network adjacent attackers to execute arbitrary code on affected installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability … CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13321 2024-11-21 13:24 2020-02-11 Show GitHub Exploit DB Packet Storm
223606 7.8 HIGH
Local 		foxitsoftware phantompdf This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the … CWE-787
 Out-of-bounds Write 		CVE-2019-13334 2024-11-21 13:24 2020-02-8 Show GitHub Exploit DB Packet Storm
223607 7.8 HIGH
Local 		foxitsoftware phantompdf This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the … CWE-787
 Out-of-bounds Write 		CVE-2019-13333 2024-11-21 13:24 2020-02-8 Show GitHub Exploit DB Packet Storm
223608 5.9 MEDIUM
Network 		fujitsu gp7000f_firmware
primepower_firmware
gps_firmware
sparc_enterprise_m3000_firmware
sparc_enterprise_m4000_firmware
sparc_enterprise_m5000_firmware
sparc_enterprise_m8000_firmware
 The Fujitsu TLS library allows a man-in-the-middle attack. This affects Interstage Application Development Cycle Manager V10 and other versions, Interstage Application Server V12 and other versions, … CWE-326
Inadequate Encryption Strength 		CVE-2019-13163 2024-11-21 13:24 2020-02-8 Show GitHub Exploit DB Packet Storm
223609 8.6 HIGH
Network 		ros ros-comm An issue was discovered in the ROS communications-related packages (aka ros_comm or ros-melodic-ros-comm) through 1.14.3. ROS_ASSERT_MSG only works when ROS_ASSERT_ENABLED is defined. This leads to a… NVD-CWE-noinfo
CVE-2019-13465 2024-11-21 13:24 2019-12-31 Show GitHub Exploit DB Packet Storm
223610 9.8 CRITICAL
Network 		ros ros-comm An issue was discovered in the ROS communications-related packages (aka ros_comm or ros-melodic-ros-comm) through 1.14.3. parseOptions() in tools/rosbag/src/record.cpp has an integer overflow when a … CWE-190
 Integer Overflow or Wraparound 		CVE-2019-13445 2024-11-21 13:24 2019-12-31 Show GitHub Exploit DB Packet Storm