Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253931 5 警告 Mozilla Foundation - 複数の Mozilla 製品における同一生成元ポリシーを回避される脆弱性 CWE-200
情報漏えい 		CVE-2011-2986 2011-09-6 10:54 2011-08-16 Show GitHub Exploit DB Packet Storm
253932 5 警告 Mozilla Foundation - Mozilla Firefox および SeaMonkey の CSP violation reports 実装における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-2990 2011-09-6 10:53 2011-08-16 Show GitHub Exploit DB Packet Storm
253933 10 危険 Mozilla Foundation - 複数の Mozilla 製品の WebGL 実装で使用される ANGLE におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2987 2011-09-6 10:52 2011-08-16 Show GitHub Exploit DB Packet Storm
253934 10 危険 Mozilla Foundation - 複数の Mozilla 製品の WebGL shader 実装におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-2988 2011-09-6 10:51 2011-08-16 Show GitHub Exploit DB Packet Storm
253935 9.3 危険 Mozilla Foundation - Mozilla Firefox および SeaMonkey における同一生成元ポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-2993 2011-09-6 10:50 2011-08-16 Show GitHub Exploit DB Packet Storm
253936 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2011-2985 2011-09-5 10:54 2011-08-16 Show GitHub Exploit DB Packet Storm
253937 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンの Ogg reader におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2992 2011-09-5 10:53 2011-08-16 Show GitHub Exploit DB Packet Storm
253938 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2991 2011-09-5 10:51 2011-08-16 Show GitHub Exploit DB Packet Storm
253939 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-2989 2011-09-5 10:39 2011-08-16 Show GitHub Exploit DB Packet Storm
253940 6.9 警告 サイバートラスト株式会社
シトリックス・システムズ
レッドハット		 - Xen の tools/libxc/xc_dom_bzimageloader.c における複数の整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-1583 2011-09-2 14:27 2011-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
225691 9.1 CRITICAL
Network 		nopcommerce nopcommerce RoxyFileman, as shipped with nopCommerce v4.2.0, is vulnerable to ../ path traversal via d or f to Admin/RoxyFileman/ProcessRequest because of Libraries/Nop.Services/Media/RoxyFileman/FileRoxyFileman… CWE-22
Path Traversal 		CVE-2019-19683 2024-11-21 13:35 2019-12-10 Show GitHub Exploit DB Packet Storm
225692 4.8 MEDIUM
Network 		nopcommerce nopcommerce nopCommerce through 4.20 allows XSS in the SaveStoreMappings of the components \Presentation\Nop.Web\Areas\Admin\Controllers\NewsController.cs and \Presentation\Nop.Web\Areas\Admin\Controllers\BlogCo… CWE-79
Cross-site Scripting 		CVE-2019-19682 2024-11-21 13:35 2019-12-10 Show GitHub Exploit DB Packet Storm
225693 5.4 MEDIUM
Network 		xpand-it xray_test_mangaement In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the Pre-Condition Summary entry point via the summary field of a Create Pre-Condition action… CWE-79
Cross-site Scripting 		CVE-2019-19679 2024-11-21 13:35 2019-12-10 Show GitHub Exploit DB Packet Storm
225694 5.4 MEDIUM
Network 		xpand-it xray_test_mangaement In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the generic field entry point via the Generic Test Definition field of a new Generic Test is… CWE-79
Cross-site Scripting 		CVE-2019-19678 2024-11-21 13:35 2019-12-10 Show GitHub Exploit DB Packet Storm
225695 5.5 MEDIUM
Local 		sqlite
netapp
oracle
tenable
siemens 		sqlite
cloud_backup
ontap_select_deploy_administration_utility
mysql_workbench
tenable.sc
sinec_infrastructure_network_services 		alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements. CWE-674
 Uncontrolled Recursion 		CVE-2019-19645 2024-11-21 13:35 2019-12-10 Show GitHub Exploit DB Packet Storm
225696 7.8 HIGH
Local 		virustotal
fedoraproject 		yara
fedora 		In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, re… CWE-125
Out-of-bounds Read 		CVE-2019-19648 2024-11-21 13:35 2019-12-9 Show GitHub Exploit DB Packet Storm
225697 7.8 HIGH
Local 		radare
fedoraproject 		radare2
fedora 		radare2 through 4.0.0 lacks validation of the content variable in the function r_asm_pseudo_incbin at libr/asm/asm.c, ultimately leading to an arbitrary write. This allows remote attackers to cause a… CWE-476
 NULL Pointer Dereference 		CVE-2019-19647 2024-11-21 13:35 2019-12-9 Show GitHub Exploit DB Packet Storm
225698 8.8 HIGH
Network 		supermicro x8sti-f_bios
x8sti-f_firmware 		On SuperMicro X8STi-F motherboards with IPMI firmware 2.06 and BIOS 02.68, the Virtual Media feature allows OS Command Injection by authenticated attackers who can send HTTP requests to the IPMI IP a… CWE-78
OS Command  		CVE-2019-19642 2024-11-21 13:35 2019-12-8 Show GitHub Exploit DB Packet Storm
225699 7.8 HIGH
Local 		htmldoc_project
debian
fedoraproject 		htmldoc
debian_linux
fedora 		HTMLDOC 1.9.7 allows a stack-based buffer overflow in the hd_strlcpy() function in string.c (when called from render_contents in ps-pdf.cxx) via a crafted HTML document. CWE-787
 Out-of-bounds Write 		CVE-2019-19630 2024-11-21 13:35 2019-12-8 Show GitHub Exploit DB Packet Storm
225700 5.3 MEDIUM
Network 		ros sros2 SROS 2 0.8.1 (after CVE-2019-19625 is mitigated) leaks ROS 2 node-related information regardless of the rtps_protection_kind configuration. (SROS2 provides the tools to generate and distribute keys f… CWE-200
Information Exposure 		CVE-2019-19627 2024-11-21 13:35 2019-12-7 Show GitHub Exploit DB Packet Storm