Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 2:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254441	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223541	7.5	HIGH Network	nevma	adaptive_images	An Arbitrary File Deletion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to delete arbitrary files via the $REQUEST['adaptive-images-settings']…	CWE-22 Path Traversal	CVE-2019-14206	2024-11-21 13:26	2019-07-22	Show	GitHub Exploit DB Packet Storm

223542	7.5	HIGH Network	nevma	adaptive_images	A Local File Inclusion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to retrieve arbitrary files via the $REQUEST['adaptive-images-settings']['…	CWE-22 Path Traversal	CVE-2019-14205	2024-11-21 13:26	2019-07-22	Show	GitHub Exploit DB Packet Storm

223543	9.6	CRITICAL Network	google	chrome	Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. (Chromium security sever…	CWE-269 Improper Privilege Management	CVE-2019-13690	2024-11-21 13:25	2023-08-26	Show	GitHub Exploit DB Packet Storm

223544	7.8	HIGH Local	google	chrome	Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a remote attacker to perform arbitrary read/write via a malicious file. (Chromium security severity: Crit…	CWE-59 Link Following	CVE-2019-13689	2024-11-21 13:25	2023-08-26	Show	GitHub Exploit DB Packet Storm

223545	7.4	HIGH Network	google	chrome	Use after free in FileAPI in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chrome security severity: High)	CWE-416 Use After Free	CVE-2019-13768	2024-11-21 13:25	2023-01-3	Show	GitHub Exploit DB Packet Storm

223546	6.5	MEDIUM Adjacent	sierrawireless	mgos	Sierra Wireless MGOS before 3.15.2 and 4.x before 4.3 allows attackers to read log files via a Direct Request (aka Forced Browsing).	NVD-CWE-noinfo	CVE-2019-13988	2024-11-21 13:25	2022-12-27	Show	GitHub Exploit DB Packet Storm

223547	6.1	MEDIUM Network	blinger	blinger	Blinger.io v.1.0.2519 is vulnerable to Blind/Persistent XSS. An attacker can send arbitrary JavaScript code via a built-in communication channel, such as Telegram, WhatsApp, Viber, Skype, Facebook, V…	CWE-79 Cross-site Scripting	CVE-2019-13633	2024-11-21 13:25	2020-10-20	Show	GitHub Exploit DB Packet Storm

223548	7.8	HIGH Local	qualcomm	kamorta_firmware mdm9150_firmware mdm9205_firmware mdm9607_firmware mdm9650_firmware nicobar_firmware qcs404_firmware qcs405_firmware qcs605_firmware qcs610_firmware ren…	u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, S…	CWE-190 Integer Overflow or Wraparound	CVE-2019-14056	2024-11-21 13:25	2020-09-8	Show	GitHub Exploit DB Packet Storm

223549	9.8	CRITICAL Network	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware apq8098_firmware mdm9150_firmware mdm9206_firmware mdm9607_firmware mdm9615_firmware mdm9625_firmware<…	u'Accessing an uninitialized data structure could result in partially copying of contents and thus incorrect processing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon In…	CWE-908 Use of Uninitialized Resource	CVE-2019-14052	2024-11-21 13:25	2020-09-8	Show	GitHub Exploit DB Packet Storm

223550	5.5	MEDIUM Local	qualcomm	kamorta_firmware qcs404_firmware qcs610_firmware rennell_firmware sc7180_firmware sdx55_firmware sm6150_firmware sm7150_firmware sm8250_firmware sxr2130_firmware	u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' i…	NVD-CWE-noinfo	CVE-2019-14025	2024-11-21 13:25	2020-09-8	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed