Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253761 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
253762 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
253763 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
253764 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
253765 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223391 4.1 MEDIUM
Local 		linux
redhat
canonical
opensuse
fedoraproject 		linux_kernel
enterprise_linux
ubuntu_linux
leap
fedora 		An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attac… CWE-476
 NULL Pointer Dereference 		CVE-2019-12614 2024-11-21 13:23 2019-06-4 Show GitHub Exploit DB Packet Storm
223392 8.8 HIGH
Network 		bludit bludit Bludit before 3.9.0 allows remote code execution for an authenticated user by uploading a php file while changing the logo through /admin/ajax/upload-logo. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-12548 2024-11-21 13:23 2019-06-4 Show GitHub Exploit DB Packet Storm
223393 7.5 HIGH
Network 		icewarp mail_server IceWarp Mail Server through 10.4.4 is prone to a local file inclusion vulnerability via webmail/calendar/minimizer/index.php?style=..%5c directory traversal. CWE-22
Path Traversal 		CVE-2019-12593 2024-11-21 13:23 2019-06-4 Show GitHub Exploit DB Packet Storm
223394 7.6 HIGH
Network 		netgear insight NETGEAR Insight Cloud with firmware before Insight 5.6 allows remote authenticated users to achieve command injection. CWE-77
Command Injection 		CVE-2019-12591 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223395 8.8 HIGH
Local 		firejail_project firejail In Firejail before 0.9.60, seccomp filters are writable inside the jail, leading to a lack of intended seccomp restrictions for a process that is joined to the jail after a filter has been modified b… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-12589 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223396 9.8 CRITICAL
Network 		apcupsd
netgate 		apcupsd
pfsense 		Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcupsd_status.php. CWE-78
OS Command  		CVE-2019-12585 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223397 6.1 MEDIUM
Network 		apcupsd
netgate 		apcupsd
pfsense 		Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an XSS issue in apcupsd_status.php. CWE-79
Cross-site Scripting 		CVE-2019-12584 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223398 5.4 MEDIUM
Network 		veronalabs wp_statistics The WP Statistics plugin through 12.6.5 for Wordpress has stored XSS in includes/class-wp-statistics-pages.php. This is related to an account with the Editor role creating a post with a title that co… CWE-79
Cross-site Scripting 		CVE-2019-12566 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223399 9.8 CRITICAL
Network 		douco douphp In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames. CWE-287
Improper Authentication 		CVE-2019-12564 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223400 7.8 HIGH
Local 		rakuten viber A vulnerability in Viber before 10.7.0 for Desktop (Windows) could allow an attacker to execute arbitrary commands on a targeted system. This vulnerability is due to unsafe search paths used by the a… CWE-426
 Untrusted Search Path 		CVE-2019-12569 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm