Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253171	5.5	警告	Drupal サイバートラスト株式会社	-	Drupal の upload モジュールにおけるファイルのダウンロード制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3092	2010-10-7 16:37	2010-08-11	Show	GitHub Exploit DB Packet Storm

253172	9.3	危険	アップル	-	Apple QuickTime の IPersistPropertyBag2::Read における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1818	2010-10-6 16:57	2010-08-31	Show	GitHub Exploit DB Packet Storm

253173	9.3	危険	IBM	-	IBM Lotus Domino サーバの MailCheck821Address 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3407	2010-10-6 16:57	2010-09-16	Show	GitHub Exploit DB Packet Storm

253174	6.8	警告	マイクロソフト	-	Microsoft Outlook Web Access におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3213	2010-10-6 16:56	2010-09-7	Show	GitHub Exploit DB Packet Storm

253175	6.9	警告	マイクロソフト	-	Microsoft Windows の Win32 サブシステム内にある CSRSS における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1891	2010-10-6 16:56	2010-09-14	Show	GitHub Exploit DB Packet Storm

253176	9	危険	マイクロソフト	-	Microsoft Windows の LSASS におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0820	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

253177	9.3	危険	マイクロソフト	-	Microsoft Windows の WordPad Text Converters における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2563	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

253178	9.3	危険	マイクロソフト	-	Microsoft Windows の RPC クライアント実装における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-2567	2010-10-6 16:55	2010-09-14	Show	GitHub Exploit DB Packet Storm

253179	6.8	警告	マイクロソフト	-	Windows 上で稼働する Microsoft Internet Information Services におけるアクセス制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2010-2731	2010-10-6 16:54	2010-09-14	Show	GitHub Exploit DB Packet Storm

253180	9.3	危険	マイクロソフト	-	Microsoft Internet Information Services におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2730	2010-10-5 19:00	2010-09-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224271	4.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition 9.0 and through 12.0.2. Users with access to issues, but not the repository were able to view the number of related merge requests o…	NVD-CWE-noinfo	CVE-2019-13006	2024-11-21 13:24	2020-03-11	Show	GitHub Exploit DB Packet Storm

224272	4.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Enterprise Edition and Community Edition 1.10 through 12.0.2. The GitLab graphql service was vulnerable to multiple authorization issues that disclosed restricted us…	NVD-CWE-noinfo	CVE-2019-13005	2024-11-21 13:24	2020-03-11	Show	GitHub Exploit DB Packet Storm

224273	5.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. When specific encoded characters were added to comments, the comments section would become inaccessible. It ha…	NVD-CWE-Other	CVE-2019-13004	2024-11-21 13:24	2020-03-11	Show	GitHub Exploit DB Packet Storm

224274	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 12.0.3. One of the parsers used by Gilab CI was vulnerable to a resource exhaustion attack. It allows Uncontrolled Resource C…	CWE-400 Uncontrolled Resource Consumption	CVE-2019-13003	2024-11-21 13:24	2020-03-11	Show	GitHub Exploit DB Packet Storm

224275	8.8	HIGH Network	mi	mi_browser	This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability in that …	CWE-20 Improper Input Validation	CVE-2019-13322	2024-11-21 13:24	2020-02-11	Show	GitHub Exploit DB Packet Storm

224276	8.0	HIGH Adjacent	mi	mi_browser	This vulnerability allows network adjacent attackers to execute arbitrary code on affected installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability …	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-13321	2024-11-21 13:24	2020-02-11	Show	GitHub Exploit DB Packet Storm

224277	7.8	HIGH Local	foxitsoftware	phantompdf	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the …	CWE-787 Out-of-bounds Write	CVE-2019-13334	2024-11-21 13:24	2020-02-8	Show	GitHub Exploit DB Packet Storm

224278	7.8	HIGH Local	foxitsoftware	phantompdf	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the …	CWE-787 Out-of-bounds Write	CVE-2019-13333	2024-11-21 13:24	2020-02-8	Show	GitHub Exploit DB Packet Storm

224279	5.9	MEDIUM Network	fujitsu	gp7000f_firmware primepower_firmware gps_firmware sparc_enterprise_m3000_firmware sparc_enterprise_m4000_firmware sparc_enterprise_m5000_firmware sparc_enterprise_m8000_firmware …	The Fujitsu TLS library allows a man-in-the-middle attack. This affects Interstage Application Development Cycle Manager V10 and other versions, Interstage Application Server V12 and other versions, …	CWE-326 Inadequate Encryption Strength	CVE-2019-13163	2024-11-21 13:24	2020-02-8	Show	GitHub Exploit DB Packet Storm

224280	8.6	HIGH Network	ros	ros-comm	An issue was discovered in the ROS communications-related packages (aka ros_comm or ros-melodic-ros-comm) through 1.14.3. ROS_ASSERT_MSG only works when ROS_ASSERT_ENABLED is defined. This leads to a…	NVD-CWE-noinfo	CVE-2019-13465	2024-11-21 13:24	2019-12-31	Show	GitHub Exploit DB Packet Storm