Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254251 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0246 2010-02-22 12:14 2010-01-21 Show GitHub Exploit DB Packet Storm
254252 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0245 2010-02-22 12:13 2010-01-21 Show GitHub Exploit DB Packet Storm
254253 4.3 警告 マイクロソフト - Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性 CWE-DesignError
CVE-2009-4074 2010-02-22 12:13 2009-11-25 Show GitHub Exploit DB Packet Storm
254254 6.6 警告 マイクロソフト - Microsoft Windows の kernel における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0232 2010-02-22 12:12 2010-01-20 Show GitHub Exploit DB Packet Storm
254255 10 危険 Rockwell Automation - Rockwell Automation Allen-Bradley MicroLogix PLC に複数の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3739 2010-02-19 14:22 2010-01-21 Show GitHub Exploit DB Packet Storm
254256 9.3 危険 マイクロソフト - Microsoft Internet Explorer において任意のコードが実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0249 2010-02-19 14:21 2010-01-15 Show GitHub Exploit DB Packet Storm
254257 7.5 危険 アップル
MySQL AB		 - MySQL で使用される yaSSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2008-0227 2010-02-19 11:37 2008-01-10 Show GitHub Exploit DB Packet Storm
254258 7.5 危険 アップル
MySQL AB		 - MySQL で使用される yaSSL における複数のバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0226 2010-02-19 11:32 2008-01-10 Show GitHub Exploit DB Packet Storm
254259 7.5 危険 Linux
レッドハット		 - Linux kernel の do_coredump 関数における任意のファイルを改ざんされる脆弱性 - CVE-2006-6304 2010-02-18 14:28 2006-12-14 Show GitHub Exploit DB Packet Storm
254260 7.8 危険 Linux
レッドハット		 - Linux kernel の net/ipv4/route.c 用の特定のレッドハットパッチにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4272 2010-02-18 14:28 2010-01-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223661 8.1 HIGH
Network 		netgear mr1100_firmware An issue was discovered on NETGEAR Nighthawk M1 (MR1100) devices before 12.06.03. The web-interface Cross-Site Request Forgery token is stored in a dynamically generated JavaScript file, and therefor… CWE-352
 Origin Validation Error 		CVE-2019-14526 2024-11-21 13:26 2019-08-15 Show GitHub Exploit DB Packet Storm
223662 8.8 HIGH
Network 		wp_svg_icons_project wp_svg_icons An issue was discovered in the svg-vector-icon-plugin (aka WP SVG Icons) plugin through 3.2.1 for WordPress. wp-admin/admin.php?page=wp-svg-icons-custom-set mishandles Custom Icon uploads. CSRF leads… CWE-352
 Origin Validation Error 		CVE-2019-14216 2024-11-21 13:26 2019-08-15 Show GitHub Exploit DB Packet Storm
223663 8.8 HIGH
Network 		open-emr openemr An issue was discovered in custom/ajax_download.php in OpenEMR before 5.0.2 via the fileName parameter. An attacker can download any file (that is readable by the user www-data) from server storage. … CWE-22
Path Traversal 		CVE-2019-14530 2024-11-21 13:26 2019-08-13 Show GitHub Exploit DB Packet Storm
223664 7.4 HIGH
Network 		uidai maadhaar The mAadhaar application 1.2.7 for Android lacks SSL Certificate Validation, leading to man-in-the-middle attacks against requests for FAQs or Help. CWE-295
Improper Certificate Validation  		CVE-2019-14516 2024-11-21 13:26 2019-08-13 Show GitHub Exploit DB Packet Storm
223665 2.4 LOW
Physics 		real-sec bc_vault_firmware On BC Vault devices, a side channel for the row-based SSD1309 OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a par… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-14359 2024-11-21 13:26 2019-08-13 Show GitHub Exploit DB Packet Storm
223666 2.4 LOW
Physics 		mooltipass mooltipass_mini_firmware On Mooltipass Mini devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a part… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-14357 2024-11-21 13:26 2019-08-11 Show GitHub Exploit DB Packet Storm
223667 2.4 LOW
Physics 		shapeshift keepkey_firmware On ShapeShift KeepKey devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a p… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-14355 2024-11-21 13:26 2019-08-11 Show GitHub Exploit DB Packet Storm
223668 2.4 LOW
Physics 		ledger nano_s_firmware
nano_x_firmware 		On Ledger Nano S and Nano X devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowi… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-14354 2024-11-21 13:26 2019-08-11 Show GitHub Exploit DB Packet Storm
223669 6.5 MEDIUM
Network 		openstack
canonical
redhat
debian 		nova
ubuntu_linux
openstack
debian_linux 		An issue was discovered in OpenStack Nova before 17.0.12, 18.x before 18.2.2, and 19.x before 19.0.2. If an API request from an authenticated user ends in a fault condition due to an external excepti… CWE-209
Information Exposure Through an Error Message 		CVE-2019-14433 2024-11-21 13:26 2019-08-10 Show GitHub Exploit DB Packet Storm
223670 6.5 MEDIUM
Network 		aptana jaxer Aptana Jaxer 1.0.3.4547 is vulnerable to a local file inclusion vulnerability in the wikilite source code viewer. This vulnerability allows a remote attacker to read internal files on the server via … CWE-22
Path Traversal 		CVE-2019-14312 2024-11-21 13:26 2019-08-9 Show GitHub Exploit DB Packet Storm