Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254581 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0244 2010-02-22 12:15 2010-01-21 Show GitHub Exploit DB Packet Storm
254582 9.3 危険 マイクロソフト - Microsoft Internet Explorer の URL 検証における任意のローカルプログラムを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0027 2010-02-22 12:15 2010-01-21 Show GitHub Exploit DB Packet Storm
254583 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0247 2010-02-22 12:14 2010-01-21 Show GitHub Exploit DB Packet Storm
254584 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0246 2010-02-22 12:14 2010-01-21 Show GitHub Exploit DB Packet Storm
254585 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0245 2010-02-22 12:13 2010-01-21 Show GitHub Exploit DB Packet Storm
254586 4.3 警告 マイクロソフト - Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性 CWE-DesignError
CVE-2009-4074 2010-02-22 12:13 2009-11-25 Show GitHub Exploit DB Packet Storm
254587 6.6 警告 マイクロソフト - Microsoft Windows の kernel における権限昇格の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0232 2010-02-22 12:12 2010-01-20 Show GitHub Exploit DB Packet Storm
254588 10 危険 Rockwell Automation - Rockwell Automation Allen-Bradley MicroLogix PLC に複数の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3739 2010-02-19 14:22 2010-01-21 Show GitHub Exploit DB Packet Storm
254589 9.3 危険 マイクロソフト - Microsoft Internet Explorer において任意のコードが実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0249 2010-02-19 14:21 2010-01-15 Show GitHub Exploit DB Packet Storm
254590 7.5 危険 アップル
MySQL AB		 - MySQL で使用される yaSSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2008-0227 2010-02-19 11:37 2008-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222291 7.8 HIGH
Local 		pam-python_project
debian
canonical 		pam-python
debian_linux
ubuntu_linux 		pam-python before 1.0.7-1 has an issue in regard to the default environment variable handling of Python, which could allow for local root escalation in certain PAM setups. NVD-CWE-noinfo
CVE-2019-16729 2024-11-21 13:31 2019-09-24 Show GitHub Exploit DB Packet Storm
222292 6.1 MEDIUM
Network 		cure53
debian 		dompurify
debian_linux 		DOMPurify before 2.0.1 allows XSS because of innerHTML mutation XSS (mXSS) for an SVG element or a MATH element, as demonstrated by Chrome and Safari. CWE-79
Cross-site Scripting 		CVE-2019-16728 2024-11-21 13:31 2019-09-24 Show GitHub Exploit DB Packet Storm
222293 4.3 MEDIUM
Network 		cacti cacti In Cacti through 1.2.6, authenticated users may bypass authorization checks (for viewing a graph) via a direct graph_json.php request with a modified local_graph_id parameter. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-16723 2024-11-21 13:31 2019-09-24 Show GitHub Exploit DB Packet Storm
222294 9.8 CRITICAL
Network 		zzzcms zzzphp ZZZCMS zzzphp v1.7.2 has an insufficient protection mechanism against PHP Code Execution, because passthru bypasses an str_ireplace operation. NVD-CWE-noinfo
CVE-2019-16722 2024-11-21 13:31 2019-09-23 Show GitHub Exploit DB Packet Storm
222295 6.5 MEDIUM
Network 		5none nonecms NoneCMS v1.3 has CSRF in public/index.php/admin/admin/dele.html, as demonstrated by deleting the admin user. CWE-352
 Origin Validation Error 		CVE-2019-16721 2024-11-21 13:31 2019-09-23 Show GitHub Exploit DB Packet Storm
222296 7.5 HIGH
Network 		zzzcms zzzphp ZZZCMS zzzphp v1.7.2 does not properly restrict file upload in plugins/ueditor/php/controller.php?upfolder=news&action=catchimage, as demonstrated by uploading a .htaccess or .php5 file. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-16720 2024-11-21 13:31 2019-09-23 Show GitHub Exploit DB Packet Storm
222297 6.5 MEDIUM
Network 		wtcms_project wtcms WTCMS 1.0 allows index.php?g=admin&m=index&a=index CSRF with resultant XSS. CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2019-16719 2024-11-21 13:31 2019-09-23 Show GitHub Exploit DB Packet Storm
222298 7.8 HIGH
Local 		radare radare2 In radare2 before 3.9.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. By using a crafted executable file, it's possible to execute arbitrary shell commands with the … CWE-78
OS Command  		CVE-2019-16718 2024-11-21 13:31 2019-09-23 Show GitHub Exploit DB Packet Storm
222299 7.5 HIGH
Network 		linux
canonical
f5 		linux_kernel
ubuntu_linux
traffix_signaling_delivery_controller 		In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized. CWE-909
 Missing Initialization of Resource 		CVE-2019-16714 2024-11-21 13:31 2019-09-23 Show GitHub Exploit DB Packet Storm
222300 6.5 MEDIUM
Network 		imagemagick
canonical
opensuse
debian 		imagemagick
ubuntu_linux
leap
debian_linux 		ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-16713 2024-11-21 13:31 2019-09-23 Show GitHub Exploit DB Packet Storm