Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253501	8.5	危険	VMware	-	複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1141	2010-05-7 17:24	2010-04-9	Show	GitHub Exploit DB Packet Storm

253502	5	警告	アップルサイバートラスト株式会社レッドハットターボリナックス CUPS	-	CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0949	2010-05-7 16:55	2009-06-3	Show	GitHub Exploit DB Packet Storm

253503	6.8	警告	レッドハットサイバートラスト株式会社ターボリナックス CUPS	-	CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0163	2010-05-7 16:51	2009-04-16	Show	GitHub Exploit DB Packet Storm

253504	4.6	警告	GNU Project サイバートラスト株式会社レッドハット	-	GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2005-4268	2010-05-7 16:51	2005-12-15	Show	GitHub Exploit DB Packet Storm

253505	4.3	警告	日本電気 Apache Software Foundation	-	Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-1885	2010-05-6 13:47	2009-08-6	Show	GitHub Exploit DB Packet Storm

253506	6.4	警告	アップルターボリナックス CUPS	-	CUPS における DNS リバインド攻撃を誘導される脆弱性	CWE-20 不適切な入力確認	CVE-2009-0164	2010-05-6 13:46	2009-04-24	Show	GitHub Exploit DB Packet Storm

253507	5	警告	freedesktop.org 日本電気サイバートラスト株式会社レッドハット	-	JBIG2 デコーダにおける SplashBitmap に関連する整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1188	2010-05-6 13:46	2009-04-23	Show	GitHub Exploit DB Packet Storm

253508	5	警告	freedesktop.org 日本電気サイバートラスト株式会社レッドハット	-	JBIG2 デコーダにおける CairoOutputDev に関連する整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-1187	2010-05-6 13:46	2009-04-23	Show	GitHub Exploit DB Packet Storm

253509	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat の custom heap management system におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1241	2010-04-30 10:26	2010-04-5	Show	GitHub Exploit DB Packet Storm

253510	9.3	危険	アドビシステムズレッドハット	-	Adobe Reader および Acrobat における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0204	2010-04-30 10:26	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223041	5.4	MEDIUM Network	firefly-iii	firefly_iii	Firefly III before 4.7.17.1 is vulnerable to stored XSS due to lack of filtration of user-supplied data in a budget name. The JavaScript code is contained in a transaction, and is executed on the tag…	CWE-79 Cross-site Scripting	CVE-2019-13644	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223042	6.1	MEDIUM Network	espocrm	espocrm	Stored XSS in EspoCRM before 5.6.4 allows remote attackers to execute malicious JavaScript and inject arbitrary source code into the target pages. The attack begins by storing a new stream message co…	CWE-79 Cross-site Scripting	CVE-2019-13643	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223043	9.8	CRITICAL Network	qbittorrent	qbittorrent	In qBittorrent before 4.1.7, the function Application::runExternalProgram() located in app/application.cpp allows command injection via shell metacharacters in the torrent name parameter or current t…	CWE-78 OS Command	CVE-2019-13640	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223044	5.9	MEDIUM Network	gnu	patch	In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c.	CWE-59 Link Following	CVE-2019-13636	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223045	8.8	HIGH Network	logmeininc	join.me	In LogMeIn join.me before 3.16.0.5505, an attacker could execute arbitrary commands on a targeted system. This vulnerability is due to unsafe search paths used by the application URI that is defined …	CWE-426 Untrusted Search Path	CVE-2019-13637	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223046	7.5	HIGH Network	wireshark fedoraproject canonical debian opensuse	wireshark fedora ubuntu_linux debian_linux leap	In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer incremen…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-13619	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223047	9.8	CRITICAL Network	computerlab	maple_computer_wbt_snmp_administrator	SnmpAdm.exe in MAPLE WBT SNMP Administrator v2.0.195.15 has an Unauthenticated Remote Buffer Overflow via a long string to the CE Remote feature listening on Port 987.	CWE-787 Out-of-bounds Write	CVE-2019-13577	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223048	5.4	MEDIUM Network	sitecore	experience_platform	In Sitecore 9.0 rev 171002, Persistent XSS exists in the Media Library and File Manager. An authenticated unprivileged user can modify the uploaded file extension parameter to inject arbitrary JavaSc…	CWE-79 Cross-site Scripting	CVE-2019-13493	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223049	6.8	MEDIUM Physics	linux	linux_kernel	In parse_hid_report_descriptor in drivers/input/tablet/gtco.c in the Linux kernel through 5.2.1, a malicious USB device can send an HID report that triggers an out-of-bounds write during generation o…	CWE-787 Out-of-bounds Write	CVE-2019-13631	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm

223050	9.8	CRITICAL Network	fanucamerica	robotics_virtual_robot_controller	The remote admin webserver on FANUC Robotics Virtual Robot Controller 8.23 has a Buffer Overflow via a forged HTTP request.	CWE-787 Out-of-bounds Write	CVE-2019-13585	2024-11-21 13:25	2019-07-18	Show	GitHub Exploit DB Packet Storm