Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252831	9.3	危険	アップル	-	Apple Mac OS X の Disk Image における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2010-1841	2010-11-29 15:45	2010-11-15	Show	GitHub Exploit DB Packet Storm

252832	7.5	危険	アップル	-	Apple Mac OS X の password-validation 機能におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1840	2010-11-29 15:43	2010-11-15	Show	GitHub Exploit DB Packet Storm

252833	4.4	警告	アップル	-	Apple Mac OS X の Directory Services における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-1838	2010-11-29 15:41	2010-11-15	Show	GitHub Exploit DB Packet Storm

252834	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2174	2010-11-29 15:33	2010-06-10	Show	GitHub Exploit DB Packet Storm

252835	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2173	2010-11-29 15:26	2010-06-10	Show	GitHub Exploit DB Packet Storm

252836	4.3	警告	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2010-2172	2010-11-29 15:25	2010-06-10	Show	GitHub Exploit DB Packet Storm

252837	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2171	2010-11-29 15:24	2010-06-10	Show	GitHub Exploit DB Packet Storm

252838	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-2170	2010-11-29 15:21	2010-06-10	Show	GitHub Exploit DB Packet Storm

252839	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2169	2010-11-29 15:18	2010-06-10	Show	GitHub Exploit DB Packet Storm

252840	9.3	危険	アップルアドビシステムズターボリナックスレッドハット	-	Adobe Flash Player および Adobe AIR におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2167	2010-11-29 15:17	2010-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224051	6.1	MEDIUM Network	alkacon	opencms	In system/workplace/ in Alkacon OpenCms 10.5.4 and 10.5.5, there are multiple Reflected and Stored XSS issues in the management interface.	CWE-79 Cross-site Scripting	CVE-2019-13236	2024-11-21 13:24	2019-08-27	Show	GitHub Exploit DB Packet Storm

224052	6.1	MEDIUM Network	alkacon	opencms_apollo_template	In the Alkacon OpenCms Apollo Template 10.5.4 and 10.5.5, there is XSS in the Login form.	CWE-79 Cross-site Scripting	CVE-2019-13235	2024-11-21 13:24	2019-08-27	Show	GitHub Exploit DB Packet Storm

224053	6.1	MEDIUM Network	alkacon	opencms_apollo_template	In the Alkacon OpenCms Apollo Template 10.5.4 and 10.5.5, there is XSS in the search engine.	CWE-79 Cross-site Scripting	CVE-2019-13234	2024-11-21 13:24	2019-08-27	Show	GitHub Exploit DB Packet Storm

224054	10.0	CRITICAL Network	trms	tightrope_media_carousel	The fetch API in Tightrope Media Carousel before 7.1.3 has CarouselAPI/v0/fetch?url= SSRF. This has two potential areas for abuse. First, a specially crafted URL could be used in a phishing attack to…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-13020	2024-11-21 13:24	2019-08-27	Show	GitHub Exploit DB Packet Storm

224055	5.5	MEDIUM Local	obdev	little_snitch	Little Snitch versions 4.4.0 fixes a vulnerability in a privileged helper tool. However, the operating system may have made a copy of the privileged helper which is not removed or updated immediately…	CWE-459 Incomplete Cleanup	CVE-2019-13014	2024-11-21 13:24	2019-08-24	Show	GitHub Exploit DB Packet Storm

224056	5.5	MEDIUM Local	obdev	little_snitch	Little Snitch versions 4.3.0 to 4.3.2 have a local privilege escalation vulnerability in their privileged helper tool. The privileged helper tool implements an XPC interface which is available to any…	CWE-862 Missing Authorization	CVE-2019-13013	2024-11-21 13:24	2019-08-24	Show	GitHub Exploit DB Packet Storm

224057	8.8	HIGH Network	search-guard	search_guard	Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all …	NVD-CWE-noinfo	CVE-2019-13423	2024-11-21 13:24	2019-08-23	Show	GitHub Exploit DB Packet Storm

224058	6.1	MEDIUM Network	search-guard	search_guard	Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an attacker can redirect the user to a potentially malicious site upon Kibana login.	CWE-601 Open Redirect	CVE-2019-13422	2024-11-21 13:24	2019-08-23	Show	GitHub Exploit DB Packet Storm

224059	4.9	MEDIUM Network	search-guard	search_guard	Search Guard versions before 23.1 had an issue that an administrative user is able to retrieve bcrypt password hashes of other users configured in the internal user database.	CWE-200 Information Exposure	CVE-2019-13421	2024-11-21 13:24	2019-08-23	Show	GitHub Exploit DB Packet Storm

224060	8.4	HIGH Local	docker	docker	In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the "docker build" command would be able to gain command execution. An issue exists in the way "do…	CWE-78 OS Command	CVE-2019-13139	2024-11-21 13:24	2019-08-23	Show	GitHub Exploit DB Packet Storm