Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254411 6.8 警告 アップル
GNU Project
サン・マイクロシステムズ
サイバートラスト株式会社
レッドハット		 - GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4131 2010-01-18 12:21 2007-08-23 Show GitHub Exploit DB Packet Storm
254412 4.6 警告 IBM - IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4150 2010-01-15 14:10 2009-12-2 Show GitHub Exploit DB Packet Storm
254413 2.1 注意 サン・マイクロシステムズ - Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4080 2010-01-15 14:10 2009-11-24 Show GitHub Exploit DB Packet Storm
254414 5 警告 サン・マイクロシステムズ - Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4075 2010-01-15 14:09 2009-11-23 Show GitHub Exploit DB Packet Storm
254415 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
254416 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
254417 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
254418 10 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の Provider クラスにおける脆弱性 CWE-noinfo
情報不足 		CVE-2009-2721 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
254419 5 警告 有限会社シースリー - WebCalenderC3 におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0348 2010-01-12 15:01 2010-01-12 Show GitHub Exploit DB Packet Storm
254420 4.3 警告 有限会社シースリー - WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0349 2010-01-12 15:00 2010-01-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224061 5.4 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.837, XSS in the domain parameter allows a low-privilege user to achieve root access via the email list page. CWE-79
Cross-site Scripting 		CVE-2019-13476 2024-11-21 13:24 2019-08-22 Show GitHub Exploit DB Packet Storm
224062 8.8 HIGH
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.837, CSRF in the forgot password function allows an attacker to change the password for the root account. CWE-352
 Origin Validation Error 		CVE-2019-13477 2024-11-21 13:24 2019-08-22 Show GitHub Exploit DB Packet Storm
224063 6.5 MEDIUM
Network 		otrs
debian 		otrs
debian_linux 		An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.8, and Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. An attacker who is logged into OTRS as an agent … NVD-CWE-noinfo
CVE-2019-13458 2024-11-21 13:24 2019-08-21 Show GitHub Exploit DB Packet Storm
224064 7.8 HIGH
Local 		extenua silvershield extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an a… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13069 2024-11-21 13:24 2019-08-18 Show GitHub Exploit DB Packet Storm
224065 5.9 MEDIUM
Network 		w1.fi
fedoraproject
canonical
debian 		hostapd
fedora
ubuntu_linux
debian_linux 		The implementations of SAE and EAP-pwd in hostapd and wpa_supplicant 2.x through 2.8 are vulnerable to side-channel attacks as a result of observable timing differences and cache access patterns when… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-13377 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224066 5.5 MEDIUM
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		A reachable assertion in the lookup1_values function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file. CWE-617
 Reachable Assertion 		CVE-2019-13223 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224067 7.1 HIGH
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		An out-of-bounds read of a global buffer in the draw_line function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a craf… CWE-125
Out-of-bounds Read 		CVE-2019-13222 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224068 7.8 HIGH
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		A stack buffer overflow in the compute_codewords function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or execute arbitrary code by opening a crafted Ogg Vorbis fi… CWE-787
 Out-of-bounds Write 		CVE-2019-13221 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224069 7.1 HIGH
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		Use of uninitialized stack variables in the start_decoder function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a craf… CWE-908
 Use of Uninitialized Resource 		CVE-2019-13220 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224070 5.5 MEDIUM
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		A NULL pointer dereference in the get_window function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file. CWE-476
 NULL Pointer Dereference 		CVE-2019-13219 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm