Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252891	9.3	危険	アップル	-	Windows 上で稼動する Apple QuickTime の QuickTime ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0248	2011-08-19 11:45	2011-08-4	Show	GitHub Exploit DB Packet Storm

252892	9.3	危険	アップル	-	Windows 上で稼動する Apple QuickTime におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0247	2011-08-19 11:44	2011-08-4	Show	GitHub Exploit DB Packet Storm

252893	9.3	危険	アップル	-	Windows 上で稼動する Apple QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0246	2011-08-18 09:03	2011-08-4	Show	GitHub Exploit DB Packet Storm

252894	9.3	危険	アップル	-	Apple QuickTime におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0245	2011-08-18 09:02	2011-08-4	Show	GitHub Exploit DB Packet Storm

252895	5	警告	アバイア	-	Secure Access Link (SAL) Gateway に情報漏えいの脆弱性	CWE-16 環境設定	CVE-2011-3008	2011-08-18 08:58	2011-08-1	Show	GitHub Exploit DB Packet Storm

252896	4.3	警告	PNG Development Group レッドハット	-	libpng の pngerror.c 内にある png_format_buffer 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2011-2501	2011-08-17 13:34	2011-07-7	Show	GitHub Exploit DB Packet Storm

252897	1.2	注意	サイバートラスト株式会社 VMware Linux レッドハット	-	Linux kernel の net/core/ethtool.c における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-4655	2011-08-17 13:30	2011-03-1	Show	GitHub Exploit DB Packet Storm

252898	6.9	警告	レッドハット	-	Linux-HA の SAPDatabase および SAPInstance スクリプトにおける権限を取得される脆弱性	CWE-DesignError	CVE-2010-3389	2011-08-17 13:29	2010-10-20	Show	GitHub Exploit DB Packet Storm

252899	6.5	警告	エイムラック	-	Aipo における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-1342	2011-08-16 12:02	2011-08-16	Show	GitHub Exploit DB Packet Storm

252900	2.6	注意	エイムラック	-	Aipo におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1341	2011-08-16 12:01	2011-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224871	7.5	HIGH Network	k-takata	onigmo	Onigmo through 6.2.0 has an out-of-bounds read in parse_char_class because of missing codepoint validation in regenc.c.	CWE-125 Out-of-bounds Read	CVE-2019-16162	2024-11-21 13:30	2019-09-10	Show	GitHub Exploit DB Packet Storm

224872	6.5	MEDIUM Network	sqlite netapp canonical fedoraproject debian tenable oracle mcafee	sqlite steelstore_cloud_integrated_storage oncommand_workflow_automation oncommand_insight ontap_select_deploy_administration_utility active_iq_unified_manager santricity_unified_ma…	In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the …	CWE-369 Divide By Zero	CVE-2019-16168	2024-11-21 13:30	2019-09-10	Show	GitHub Exploit DB Packet Storm

224873	7.5	HIGH Network	k-takata	onigmo	Onigmo through 6.2.0 has a NULL pointer dereference in onig_error_code_to_str because of fetch_token in regparse.c.	CWE-476 NULL Pointer Dereference	CVE-2019-16161	2024-11-21 13:30	2019-09-10	Show	GitHub Exploit DB Packet Storm

224874	7.5	HIGH Network	nic opensuse fedoraproject debian	bird backports_sle fedora debian_linux	BIRD Internet Routing Daemon 1.6.x through 1.6.7 and 2.x through 2.0.5 has a stack-based buffer overflow. The BGP daemon's support for RFC 8203 administrative shutdown communication messages included…	CWE-787 Out-of-bounds Write	CVE-2019-16159	2024-11-21 13:30	2019-09-10	Show	GitHub Exploit DB Packet Storm

224875	6.1	MEDIUM Network	sakailms	sakai	Sakai through 12.6 allows XSS via a chat user name.	CWE-79 Cross-site Scripting	CVE-2019-16148	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224876	4.8	MEDIUM Network	getgophish	gophish	Gophish through 0.8.0 allows XSS via a username.	CWE-79 Cross-site Scripting	CVE-2019-16146	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224877	9.8	CRITICAL Network	atutor	atutor	In ATutor 2.2.4, an unauthenticated attacker can change the application settings and force it to use his crafted database, which allows him to gain access to the application. Next, he can change the …	CWE-863 Incorrect Authorization	CVE-2019-16114	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224878	7.5	HIGH Network	generator-rs_project	generator-rs	An issue was discovered in the generator crate before 0.6.18 for Rust. Uninitialized memory is used by Scope, done, and yield_ during API calls.	CWE-908 Use of Uninitialized Resource	CVE-2019-16144	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224879	9.8	CRITICAL Network	blake2	blake2-rust	An issue was discovered in the blake2 crate before 0.8.1 for Rust. The BLAKE2b and BLAKE2s algorithms, when used with HMAC, produce incorrect results because the block sizes are half of the required …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-16143	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224880	9.8	CRITICAL Network	renderdocs-rs_project	renderdocs-rs	An issue was discovered in the renderdoc crate before 0.5.0 for Rust. Multiple exposed methods take self by immutable reference, which is incompatible with a multi-threaded application.	CWE-20 Improper Input Validation	CVE-2019-16142	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm