Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252741 5.1 警告 rsync.samba.org
レッドハット		 - rsync における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2011-1097 2011-04-27 11:32 2011-03-26 Show GitHub Exploit DB Packet Storm
252742 6.9 警告 GNOME Project
レッドハット		 - GNOME Display Manager におけるファイルの所有権を変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-0727 2011-04-27 11:31 2011-03-28 Show GitHub Exploit DB Packet Storm
252743 7.5 危険 レッドハット - Plone における管理者のアクセス権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2011-0720 2011-04-27 11:30 2011-02-3 Show GitHub Exploit DB Packet Storm
252744 7.5 危険 CA Technologies - 複数の CA 製品の mng_core_com.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-3984 2011-04-27 11:29 2010-12-9 Show GitHub Exploit DB Packet Storm
252745 2.1 注意 freedesktop.org
サイバートラスト株式会社
レッドハット		 - D-Bus におけるサービス運用妨害 (デーモンクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-4352 2011-04-27 11:26 2010-12-30 Show GitHub Exploit DB Packet Storm
252746 - - foolabs - Foolabs Xpdf にサービス運用妨害 (DoS) の脆弱性 - - 2011-04-26 12:35 2011-03-22 Show GitHub Exploit DB Packet Storm
252747 4.3 警告 サイバートラスト株式会社
Wireshark
レッドハット		 - Wireshark におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1141 2011-04-26 12:28 2011-02-28 Show GitHub Exploit DB Packet Storm
252748 9.3 危険 サイバートラスト株式会社
Wireshark
レッドハット		 - Wireshark の wiretap/pcapng.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0024 2011-04-26 12:25 2010-08-29 Show GitHub Exploit DB Packet Storm
252749 4.3 警告 サイバートラスト株式会社
Wireshark
レッドハット		 - Wireshark の NTLMSSP 解析部におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2011-1143 2011-04-26 12:24 2010-08-29 Show GitHub Exploit DB Packet Storm
252750 4.3 警告 サイバートラスト株式会社
Wireshark
レッドハット		 - Wireshark の dissect_ms_compressed_string および dissect_mscldap_string 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-1140 2011-04-26 12:23 2011-02-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222001 6.1 MEDIUM
Network 		fusionpbx fusionpbx A cross-site scripting (XSS) vulnerability in app/fax/fax_files.php in FusionPBX 4.4.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. CWE-79
Cross-site Scripting 		CVE-2019-19367 2024-11-21 13:34 2019-11-28 Show GitHub Exploit DB Packet Storm
222002 6.1 MEDIUM
Network 		fusionpbx fusionpbx A cross-site scripting (XSS) vulnerability in app/xml_cdr/xml_cdr_search.php in FusionPBX 4.4.1 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter. CWE-79
Cross-site Scripting 		CVE-2019-19366 2024-11-21 13:34 2019-11-28 Show GitHub Exploit DB Packet Storm
222003 5.9 MEDIUM
Network 		sqlite
canonical
redhat
oracle
siemens 		sqlite
ubuntu_linux
enterprise_linux
mysql_workbench
sinec_infrastructure_network_services 		SQLite 3.30.1 mishandles pExpr->y.pTab, as demonstrated by the TK_COLUMN case in sqlite3ExprCodeTarget in expr.c. CWE-476
 NULL Pointer Dereference 		CVE-2019-19242 2024-11-21 13:34 2019-11-28 Show GitHub Exploit DB Packet Storm
222004 9.8 CRITICAL
Network 		haproxy
canonical
debian 		haproxy
ubuntu_linux
debian_linux 		The HTTP/2 implementation in HAProxy before 2.0.10 mishandles headers, as demonstrated by carriage return (CR, ASCII 0xd), line feed (LF, ASCII 0xa), and the zero character (NUL, ASCII 0x0), aka Inte… CWE-74
Injection 		CVE-2019-19330 2024-11-21 13:34 2019-11-28 Show GitHub Exploit DB Packet Storm
222005 6.1 MEDIUM
Network 		wikimedia wikidata_query_gui In Wikibase Wikidata Query Service GUI before 0.3.6-SNAPSHOT 2019-11-07, when mathematical expressions in results are displayed directly, arbitrary JavaScript execution can occur, aka XSS. This was a… CWE-79
Cross-site Scripting 		CVE-2019-19329 2024-11-21 13:34 2019-11-28 Show GitHub Exploit DB Packet Storm
222006 6.1 MEDIUM
Network 		wikimedia wikidata_query_gui ui/editor/tooltip/Rdf.js in Wikibase Wikidata Query Service GUI before 0.3.6-SNAPSHOT 2019-11-07 allows HTML injection in tooltips for entities. NOTE: this GUI code is no longer bundled with the Wiki… CWE-79
Cross-site Scripting 		CVE-2019-19328 2024-11-21 13:34 2019-11-28 Show GitHub Exploit DB Packet Storm
222007 6.1 MEDIUM
Network 		wikimedia wikidata_query_gui ui/ResultView.js in Wikibase Wikidata Query Service GUI before 0.3.6-SNAPSHOT 2019-11-07 allows HTML injection when reporting the number of results and number of milliseconds. NOTE: this GUI code is … CWE-79
Cross-site Scripting 		CVE-2019-19327 2024-11-21 13:34 2019-11-28 Show GitHub Exploit DB Packet Storm
222008 5.5 MEDIUM
Local 		gnome gnome-font-viewer In text_to_glyphs in sushi-font-widget.c in gnome-font-viewer 3.34.0, there is a NULL pointer dereference while parsing a TTF font file that lacks a name section (due to a g_strconcat call that retur… CWE-476
 NULL Pointer Dereference 		CVE-2019-19308 2024-11-21 13:34 2019-11-28 Show GitHub Exploit DB Packet Storm
222009 9.8 CRITICAL
Network 		cesanta mongoose An integer overflow in parse_mqtt in mongoose.c in Cesanta Mongoose 6.16 allows an attacker to achieve remote DoS (infinite loop), or possibly cause an out-of-bounds write, by sending a crafted MQTT … CWE-125
CWE-787
CWE-190
CWE-835
Out-of-bounds Read
 Out-of-bounds Write
 Integer Overflow or Wraparound
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-19307 2024-11-21 13:34 2019-11-27 Show GitHub Exploit DB Packet Storm
222010 6.1 MEDIUM
Network 		afterlogic aurora
webmail_pro 		Afterlogic WebMail Pro 8.3.11, and WebMail in Afterlogic Aurora 8.3.11, allows Remote Stored XSS via an attachment name. CWE-79
Cross-site Scripting 		CVE-2019-19129 2024-11-21 13:34 2019-11-27 Show GitHub Exploit DB Packet Storm