Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253301	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の Windows OpenType Compact Font Format ドライバにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-0033	2011-03-4 15:00	2011-02-8	Show	GitHub Exploit DB Packet Storm

253302	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 8 における権限昇格の脆弱性	CWE-Other その他	CVE-2011-0038	2011-03-4 14:53	2011-02-8	Show	GitHub Exploit DB Packet Storm

253303	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0036	2011-03-4 14:50	2011-02-8	Show	GitHub Exploit DB Packet Storm

253304	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-0035	2011-03-4 14:30	2011-02-8	Show	GitHub Exploit DB Packet Storm

253305	5	警告	日立	-	Hitachi Tuning Manager Software におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2011-03-4 14:24	2011-02-7	Show	GitHub Exploit DB Packet Storm

253306	10	危険	IntelliCom Innovation AB	-	IntelliCom NetBiter NB100 および NB200 プラットフォームに複数の脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-4733	2011-03-4 14:21	2011-02-7	Show	GitHub Exploit DB Packet Storm

253307	4.3	警告	IBM サイバートラスト株式会社ヒューレット・パッカードターボリナックス OpenSSL Project VMware レッドハット	-	OpenSSL の kssl_keytab_is_available 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0433	2011-03-4 10:48	2010-03-24	Show	GitHub Exploit DB Packet Storm

253308	5.1	警告	アップルサイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカード VMware レッドハット	-	複数の Oracle 製品の Java Runtime Environment コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0085	2011-03-4 10:45	2010-03-30	Show	GitHub Exploit DB Packet Storm

253309	5	警告	アップルサイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカード VMware レッドハット	-	複数の Oracle 製品の Java Runtime Environment コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0084	2011-03-4 10:44	2010-03-30	Show	GitHub Exploit DB Packet Storm

253310	5.1	警告	アップルサイバートラスト株式会社サン・マイクロシステムズヒューレット・パッカード VMware レッドハット	-	複数の Oracle 製品の HotSpot Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0082	2011-03-4 10:43	2010-03-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224781	6.5	MEDIUM Network	mikrotik	routeros	MikroTik RouterOS through 6.44.5 and 6.45.x through 6.45.3 improperly handles the disk name, which allows authenticated users to delete arbitrary files. Attackers can exploit this vulnerability to re…	CWE-22 Path Traversal	CVE-2019-15055	2024-11-21 13:27	2019-08-27	Show	GitHub Exploit DB Packet Storm

224782	4.3	MEDIUM Network	atlassian	universal_plugin_manager	The Uninstall REST endpoint in Atlassian Universal Plugin Manager before version 2.22.19, from version 3.0.0 before version 3.0.3 and from version 4.0.0 before version 4.0.3 allows remote attackers t…	CWE-352 Origin Validation Error	CVE-2019-14999	2024-11-21 13:27	2019-08-23	Show	GitHub Exploit DB Packet Storm

224783	8.8	HIGH Network	tp-link	tl-wr840n_firmware	The traceroute function on the TP-Link TL-WR840N v4 router with firmware through 0.9.1 3.16 is vulnerable to remote code execution via a crafted payload in an IP address input field.	CWE-78 OS Command	CVE-2019-15060	2024-11-21 13:27	2019-08-23	Show	GitHub Exploit DB Packet Storm

224784	7.5	HIGH Network	nltk	nltk	NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in an NLTK package (ZIP archive) that is mishandled during e…	CWE-22 Path Traversal	CVE-2019-14751	2024-11-21 13:27	2019-08-23	Show	GitHub Exploit DB Packet Storm

224785	7.8	HIGH Local	trendmicro	antivirus_\+_security_2019 internet_security_2019 maximum_security_2019 premium_security_2019 ransom_buster	A DLL hijacking vulnerability exists in the Trend Micro Security's 2019 consumer family of products (v15) Folder Shield component and the standalone Trend Micro Ransom Buster (1.0) tool in which, if …	CWE-427 Uncontrolled Search Path Element	CVE-2019-14686	2024-11-21 13:27	2019-08-22	Show	GitHub Exploit DB Packet Storm

224786	7.8	HIGH Local	trendmicro	antivirus_\+_security_2019 internet_security_2019 maximum_security_2019 premium_security_2019	A local privilege escalation vulnerability exists in Trend Micro Security 2019 (v15.0) in which, if exploited, would allow an attacker to manipulate a specific product feature to load a malicious ser…	CWE-428 Unquoted Search Path or Element	CVE-2019-14685	2024-11-21 13:27	2019-08-22	Show	GitHub Exploit DB Packet Storm

224787	5.3	MEDIUM Network	zohocorp	manageengine_servicedesk_plus	AjaxDomainServlet in Zoho ManageEngine ServiceDesk Plus 10 allows User Enumeration. NOTE: the vendor's position is that this is intended functionality	CWE-200 Information Exposure	CVE-2019-15045	2024-11-21 13:27	2019-08-22	Show	GitHub Exploit DB Packet Storm

224788	7.8	HIGH Local	trendmicro	password_manager	A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an attacker to load an arbitrary unsigned DLL into the signed service's process. This proc…	CWE-427 Uncontrolled Search Path Element	CVE-2019-14687	2024-11-21 13:27	2019-08-20	Show	GitHub Exploit DB Packet Storm

224789	7.8	HIGH Local	trendmicro	password_manager	A DLL hijacking vulnerability exists in Trend Micro Password Manager 5.0 in which, if exploited, would allow an attacker to load an arbitrary unsigned DLL into the signed service's process. This proc…	CWE-427 Uncontrolled Search Path Element	CVE-2019-14684	2024-11-21 13:27	2019-08-20	Show	GitHub Exploit DB Packet Storm

224790	7.5	HIGH Network	vanderbilt	redcap	REDCap before 9.3.0 allows time-based SQL injection in the edit calendar event via the cal_id parameter, such as cal_id=55 and sleep(3) to Calendar/calendar_popup_ajax.php. The attacker can obtain a …	CWE-89 SQL Injection	CVE-2019-14937	2024-11-21 13:27	2019-08-18	Show	GitHub Exploit DB Packet Storm