Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254681	5	警告	日立	-	HiRDB におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	-	2010-08-4 16:23	2010-06-30	Show	GitHub Exploit DB Packet Storm

254682	9.3	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0177	2010-08-4 15:25	2010-03-30	Show	GitHub Exploit DB Packet Storm

254683	4.7	警告	オラクル	-	Oracle Solaris における TCP/IP の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2394	2010-08-3 19:20	2010-07-13	Show	GitHub Exploit DB Packet Storm

254684	4.9	警告	オラクル	-	Oracle Solaris における GigaSwift Ethernet ドライバの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2386	2010-08-3 19:20	2010-07-13	Show	GitHub Exploit DB Packet Storm

254685	5.6	警告	オラクル	-	Oracle Solaris における ZFS の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-2392	2010-08-3 19:20	2010-07-13	Show	GitHub Exploit DB Packet Storm

254686	6.2	警告	オラクル	-	Oracle Solaris における rdist の処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-0916	2010-08-3 19:20	2010-07-13	Show	GitHub Exploit DB Packet Storm

254687	7.5	危険	OpenBSD FreeBSD オラクル NetBSD	-	複数の製品の ftpd におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-4247	2010-08-3 19:19	2008-09-25	Show	GitHub Exploit DB Packet Storm

254688	7.5	危険	ターボリナックス MySQL AB	-	MySQL で使用される yaSSL における複数のスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4484	2010-08-3 18:59	2009-12-30	Show	GitHub Exploit DB Packet Storm

254689	2.1	注意	オラクル	-	Oracle Database Server の Export コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0901	2010-08-2 19:32	2010-07-13	Show	GitHub Exploit DB Packet Storm

254690	2.6	注意	オラクル	-	Windows 上で稼働する Oracle Database Server の Network Layer コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0900	2010-08-2 19:32	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219141	8.8	HIGH Network	wallaceit	wallacepos	Cross-site request forgery in WallacePOS 1.4.3 allows a remote attacker to perform sensitive application actions by tricking legitimate users into clicking a crafted link.	CWE-352 Origin Validation Error	CVE-2019-3959	2024-11-21 13:42	2019-08-1	Show	GitHub Exploit DB Packet Storm

219142	5.4	MEDIUM Network	wallaceit	wallacepos	Insufficient output sanitization in WallacePOS 1.4.3 allows a remote, authenticated attacker to conduct persistent cross-site scripting (XSS) attacks via a crafted sales transaction.	CWE-79 Cross-site Scripting	CVE-2019-3958	2024-11-21 13:42	2019-08-1	Show	GitHub Exploit DB Packet Storm

219143	7.5	HIGH Network	amcrest dahua	ip2m-841b_firmware ipc-xxbxx dh-ipc-hx863x dh-ipc-hx883x dh-sd4xxxxx dh-sd5xxxxx dh-sd6xxxxx ipc-hx4x3x ipc-hx5x3x nvr2xxx-4ks2 nvr4xxx-4ks2 nvr5xxx-4ks2	The Amcrest IP2M-841B V2.520.AC00.18.R, Dahua IPC-XXBXX V2.622.0000000.9.R, Dahua IPC HX5X3X and HX4X3X V2.800.0000008.0.R, Dahua DH-IPC HX883X and DH-IPC-HX863X V2.622.0000000.7.R, Dahua DH-SD4XXXXX…	CWE-306 Missing Authentication for Critical Function	CVE-2019-3948	2024-11-21 13:42	2019-07-30	Show	GitHub Exploit DB Packet Storm

219144	6.2	MEDIUM Physics	mcafee	data_loss_prevention_endpoint	Authentication protection bypass vulnerability in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows physical local user to bypass the Windows lock screen via DLPe processes b…	NVD-CWE-noinfo	CVE-2019-3621	2024-11-21 13:42	2019-07-26	Show	GitHub Exploit DB Packet Storm

219145	6.1	MEDIUM Network	hp	arcsight_management_center	Mitigates a stored cross site scripting issue in ArcSight Security Management Center versions prior to 2.9.1	CWE-79 Cross-site Scripting	CVE-2019-3486	2024-11-21 13:42	2019-07-26	Show	GitHub Exploit DB Packet Storm

219146	8.2	HIGH Local	mcafee	data_loss_prevention_endpoint	Files or Directories Accessible to External Parties in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows authenticated user to redirect DLPe log files to arbitrary locations …	CWE-552 Files or Directories Accessible to External Parties	CVE-2019-3622	2024-11-21 13:42	2019-07-25	Show	GitHub Exploit DB Packet Storm

219147	6.1	MEDIUM Network	hp	arcsight_logger	Mitigates a stored cross site scripting issue in ArcSight Logger versions prior to 6.7.1	CWE-79 Cross-site Scripting	CVE-2019-3485	2024-11-21 13:42	2019-07-25	Show	GitHub Exploit DB Packet Storm

219148	6.5	MEDIUM Local	mcafee	data_loss_prevention_endpoint	Improper Neutralization of Special Elements used in a Command ('Command Injection') in ePO extension in McAfee Data Loss Prevention (DLP) 11.x prior to 11.3.0 allows Authenticated Adminstrator to exe…	CWE-78 OS Command	CVE-2019-3595	2024-11-21 13:42	2019-07-25	Show	GitHub Exploit DB Packet Storm

219149	6.1	MEDIUM Network	mcafee	data_loss_prevention_endpoint	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in ePO extension in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows unauthenticated rem…	CWE-79 Cross-site Scripting	CVE-2019-3591	2024-11-21 13:42	2019-07-25	Show	GitHub Exploit DB Packet Storm

219150	4.8	MEDIUM Adjacent	zte	otcp_firmware	All versions up to V1.19.20.02 of ZTE OTCP product are impacted by XSS vulnerability. Due to XSS, when an attacker invokes the security management to obtain the resources of the specified operation c…	CWE-79 Cross-site Scripting	CVE-2019-3414	2024-11-21 13:42	2019-07-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed