Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252401 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品の navigator.plugins の実装における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2767 2011-05-16 11:09 2010-09-7 Show GitHub Exploit DB Packet Storm
252402 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品の normalizeDocument 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2766 2011-05-16 11:08 2010-09-7 Show GitHub Exploit DB Packet Storm
252403 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品の FRAMESET 要素の実装における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-2765 2011-05-16 11:07 2010-09-7 Show GitHub Exploit DB Packet Storm
252404 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット
オラクル		 - 複数の Mozilla 製品の nsTreeSelection 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2760 2011-05-16 11:05 2010-09-7 Show GitHub Exploit DB Packet Storm
252405 3.7 注意 オラクル - Oracle Solaris における LOFS の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0839 2011-05-13 11:37 2011-04-19 Show GitHub Exploit DB Packet Storm
252406 4.9 警告 オラクル - Oracle Solaris における Kernel/SPARC の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-0829 2011-05-13 11:36 2011-04-19 Show GitHub Exploit DB Packet Storm
252407 4.3 警告 オラクル - Oracle PeopleSoft Enterprise の Application Portal における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0828 2011-05-13 11:35 2011-04-19 Show GitHub Exploit DB Packet Storm
252408 3.5 注意 オラクル - Oracle PeopleSoft Products の PeopleSoft Enterprise コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-0827 2011-05-13 11:34 2011-04-19 Show GitHub Exploit DB Packet Storm
252409 3.5 注意 オラクル - Oracle PeopleSoft Enterprise の Application Portal における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0826 2011-05-13 11:34 2011-04-19 Show GitHub Exploit DB Packet Storm
252410 6.8 警告 オラクル - Oracle JD Edwards EnterpriseOne Tools および OneWorld Tools における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0825 2011-05-13 11:33 2011-04-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222431 7.5 HIGH
Network 		egain mail The eGain Web Email API 11+ allows spoofed messages because the fromName and message fields (to /system/ws/v11/ss/email) are mishandled, as demonstrated by fromName header injection with a %0a or %0d… CWE-74
Injection 		CVE-2019-17123 2024-11-21 13:31 2019-12-14 Show GitHub Exploit DB Packet Storm
222432 9.8 CRITICAL
Network 		phpfastcache phpfastcache In phpfastcache before 5.1.3, there is a possible object injection vulnerability in cookie driver. CWE-502
 Deserialization of Untrusted Data 		CVE-2019-16774 2024-11-21 13:31 2019-12-13 Show GitHub Exploit DB Packet Storm
222433 6.5 MEDIUM
Network 		npmjs
opensuse
oracle
fedoraproject
redhat 		npm
leap
graalvm
fedora
enterprise_linux
enterprise_linux_eus 		Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For e… CWE-269
 Improper Privilege Management 		CVE-2019-16777 2024-11-21 13:31 2019-12-13 Show GitHub Exploit DB Packet Storm
222434 8.1 HIGH
Network 		npmjs
opensuse
oracle
fedoraproject
redhat 		npm
leap
graalvm
fedora
enterprise_linux
enterprise_linux_eus 		Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It fails to prevent access to folders outside of the intended node_modules folder through the bin field. A properly … CWE-22
Path Traversal 		CVE-2019-16776 2024-11-21 13:31 2019-12-13 Show GitHub Exploit DB Packet Storm
222435 6.5 MEDIUM
Network 		redhat
npmjs
opensuse
oracle
fedoraproject 		enterprise_linux
enterprise_linux_eus
npm
leap
graalvm
fedora 		Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenode_modules folder through the bin field upon… - CVE-2019-16775 2024-11-21 13:31 2019-12-13 Show GitHub Exploit DB Packet Storm
222436 7.5 HIGH
Network 		microfocus acutoweb Unauthorized file download vulnerability in all supported versions of Micro Focus AcuToWeb. The vulnerability could be exploited to enumerate and download files from the filesystem of the system runn… NVD-CWE-noinfo
CVE-2019-17087 2024-11-21 13:31 2019-12-12 Show GitHub Exploit DB Packet Storm
222437 6.1 MEDIUM
Network 		serialize-to-js_project serialize-to-js The serialize-to-js NPM package before version 3.0.1 is vulnerable to Cross-site Scripting (XSS). It does not properly mitigate against unsafe characters in serialized regular expressions. This vulne… CWE-79
Cross-site Scripting 		CVE-2019-16772 2024-11-21 13:31 2019-12-7 Show GitHub Exploit DB Packet Storm
222438 6.5 MEDIUM
Network 		linecorp armeria Versions of Armeria 0.85.0 through and including 0.96.0 are vulnerable to HTTP response splitting, which allows remote attackers to inject arbitrary HTTP headers via CRLF sequences when unsanitized d… CWE-74
Injection 		CVE-2019-16771 2024-11-21 13:31 2019-12-7 Show GitHub Exploit DB Packet Storm
222439 7.5 HIGH
Network 		puma
debian 		puma
debian_linux 		In Puma before versions 3.12.2 and 4.3.1, a poorly-behaved client could use keepalive requests to monopolize Puma's reactor and create a denial of service attack. If more keepalive connections to Pum… - CVE-2019-16770 2024-11-21 13:31 2019-12-6 Show GitHub Exploit DB Packet Storm
222440 4.3 MEDIUM
Network 		sylius sylius In affected versions of Sylius, exception messages from internal exceptions (like database exception) are wrapped by \Symfony\Component\Security\Core\Exception\AuthenticationServiceException and prop… CWE-209
Information Exposure Through an Error Message 		CVE-2019-16768 2024-11-21 13:31 2019-12-6 Show GitHub Exploit DB Packet Storm