Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254221	5	警告	The PHP Group アップル	-	PHP にサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-4409	2011-04-4 14:32	2010-12-1	Show	GitHub Exploit DB Packet Storm

254222	5	警告	The PHP Group アップル	-	PHP の IMAP 拡張 (ext/imap/php_imap.c) における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-4150	2011-04-4 14:31	2010-12-7	Show	GitHub Exploit DB Packet Storm

254223	6.8	警告	The PHP Group アップルサイバートラスト株式会社レッドハット	-	PHP の utf8_decode 関数におけるクロスサイトスクリプティングおよび SQL インジェクションに対する保護メカニズムを回避される脆弱性	CWE-20 不適切な入力確認	CVE-2010-3870	2011-04-4 14:29	2009-09-27	Show	GitHub Exploit DB Packet Storm

254224	9.3	危険	アップル	-	Apple QuickTime における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-4009	2011-04-4 14:28	2010-12-9	Show	GitHub Exploit DB Packet Storm

254225	6.8	警告	アップル FreeType Project オラクル	-	FreeType の ttinterp.c 内にある Ins_SHZ 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3814	2011-04-4 14:27	2010-11-26	Show	GitHub Exploit DB Packet Storm

254226	9.3	危険	アップル	-	Apple QuickTime における整数符号エラーの脆弱性	CWE-189 数値処理の問題	CVE-2010-3802	2011-04-4 14:23	2010-12-9	Show	GitHub Exploit DB Packet Storm

254227	9.3	危険	アップル	-	Apple QuickTime における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3801	2011-04-4 14:22	2010-12-9	Show	GitHub Exploit DB Packet Storm

254228	4.3	警告	The PHP Group アップルレッドハット	-	PHP の filter_var 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-3710	2011-04-4 14:20	2010-10-25	Show	GitHub Exploit DB Packet Storm

254229	4.3	警告	The PHP Group アップルレッドハット	-	PHP の ZipArchive::getArchiveComment 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-3709	2011-04-4 14:18	2010-11-9	Show	GitHub Exploit DB Packet Storm

254230	7.6	危険	アップル	-	複数の Apple 製品の WebKit における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-0150	2011-04-1 15:32	2011-03-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220061	6.2	MEDIUM Physics	mcafee	data_loss_prevention_endpoint	Authentication protection bypass vulnerability in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows physical local user to bypass the Windows lock screen via DLPe processes b…	NVD-CWE-noinfo	CVE-2019-3621	2024-11-21 13:42	2019-07-26	Show	GitHub Exploit DB Packet Storm

220062	6.1	MEDIUM Network	hp	arcsight_management_center	Mitigates a stored cross site scripting issue in ArcSight Security Management Center versions prior to 2.9.1	CWE-79 Cross-site Scripting	CVE-2019-3486	2024-11-21 13:42	2019-07-26	Show	GitHub Exploit DB Packet Storm

220063	8.2	HIGH Local	mcafee	data_loss_prevention_endpoint	Files or Directories Accessible to External Parties in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows authenticated user to redirect DLPe log files to arbitrary locations …	CWE-552 Files or Directories Accessible to External Parties	CVE-2019-3622	2024-11-21 13:42	2019-07-25	Show	GitHub Exploit DB Packet Storm

220064	6.1	MEDIUM Network	hp	arcsight_logger	Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1	CWE-79 Cross-site Scripting	CVE-2019-3485	2024-11-21 13:42	2019-07-25	Show	GitHub Exploit DB Packet Storm

220065	6.5	MEDIUM Local	mcafee	data_loss_prevention_endpoint	Improper Neutralization of Special Elements used in a Command ('Command Injection') in ePO extension in McAfee Data Loss Prevention (DLP) 11.x prior to 11.3.0 allows Authenticated Adminstrator to exe…	CWE-78 OS Command	CVE-2019-3595	2024-11-21 13:42	2019-07-25	Show	GitHub Exploit DB Packet Storm

220066	6.1	MEDIUM Network	mcafee	data_loss_prevention_endpoint	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in ePO extension in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows unauthenticated rem…	CWE-79 Cross-site Scripting	CVE-2019-3591	2024-11-21 13:42	2019-07-25	Show	GitHub Exploit DB Packet Storm

220067	4.8	MEDIUM Adjacent	zte	otcp_firmware	All versions up to V1.19.20.02 of ZTE OTCP product are impacted by XSS vulnerability. Due to XSS, when an attacker invokes the security management to obtain the resources of the specified operation c…	CWE-79 Cross-site Scripting	CVE-2019-3414	2024-11-21 13:42	2019-07-23	Show	GitHub Exploit DB Packet Storm

220068	6.7	MEDIUM Local	mcafee	agent	Privilege escalation vulnerability in McAfee Agent (MA) before 5.6.1 HF3, allows local administrator users to potentially disable some McAfee processes by manipulating the MA directory control and pl…	NVD-CWE-noinfo	CVE-2019-3592	2024-11-21 13:42	2019-07-19	Show	GitHub Exploit DB Packet Storm

220069	5.4	MEDIUM Network	pivotal_software	cloud_foundry_uaa	Cloud Foundry UAA, versions prior to v73.4.0, does not set an X-FRAME-OPTIONS header on various endpoints. A remote user can perform clickjacking attacks on UAA's frontend sites.	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2019-3794	2024-11-21 13:42	2019-07-19	Show	GitHub Exploit DB Packet Storm

220070	7.8	HIGH Local	dell	emc_unity_operating_environment emc_unityvsa_operating_environment	Dell EMC Unity and UnityVSA versions prior to 5.0.0.0.5.116 contain a plain-text password storage vulnerability. A Unisphere user’s (including the admin privilege user) password is stored in a plain …	CWE-693 Protection Mechanism Failure	CVE-2019-3741	2024-11-21 13:42	2019-07-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed