Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 13, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 254811 | 5.5 | 警告 | オラクル | - | Oracle Database の XML DB コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0852 | 2010-05-12 15:17 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 254812 | 6.5 | 警告 | オラクル | - | Oracle Database の JavaVM コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0866 | 2010-05-12 15:17 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 254813 | 7.1 | 危険 | オラクル | - | Oracle Database の Core RDBMS コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0860 | 2010-05-12 15:16 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 254814 | 7.5 | 危険 | オラクル | - | 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0853 | 2010-05-12 15:16 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 254815 | 2.6 | 注意 | シックス・アパート株式会社 | - | Movable Type におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1985 | 2010-05-12 12:01 | 2010-05-12 | Show | GitHub Exploit DB Packet Storm |
| 254816 | 10 | 危険 | 日立 | - | 複数の EUR Form 製品 および EUR 製品における任意のコードが実行される脆弱性 |
CWE-noinfo
情報不足 |
- | 2010-05-11 15:16 | 2010-03-31 | Show | GitHub Exploit DB Packet Storm |
| 254817 | 6.4 | 警告 | マイクロソフト | - | Microsoft Windows における ISATAP パケットの処理に関する IPv4 ソースアドレスの制限を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0812 | 2010-05-11 15:16 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 254818 | 7.6 | 危険 | マイクロソフト | - | Microsoft Office Visio における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0256 | 2010-05-11 15:16 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 254819 | 7.6 | 危険 | マイクロソフト | - | Microsoft Office Visio における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2010-0254 | 2010-05-11 15:15 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
| 254820 | 5 | 警告 | マイクロソフト | - | Microsoft Windows の SMTP コンポーネントにおける情報漏えいの脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0025 | 2010-05-11 15:15 | 2010-04-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 13, 2026, 5:05 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 223651 | 5.4 |
MEDIUM
Network |
limesurvey | limesurvey | LimeSurvey before v3.17.14 allows reflected XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. This occurs in application/core/Survey_Common_Action.php, |
CWE-79
Cross-site Scripting |
CVE-2019-16173 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223652 | 5.4 |
MEDIUM
Network |
limesurvey | limesurvey | LimeSurvey before v3.17.14 allows stored XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. The attack uses a survey group in which the title contains JavaScript… |
CWE-79
Cross-site Scripting |
CVE-2019-16172 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223653 | 5.5 |
MEDIUM
Local |
sysstat_project fedoraproject opensuse canonical debian |
sysstat fedora leap ubuntu_linux debian_linux |
sysstat before 12.1.6 has memory corruption due to an Integer Overflow in remap_struct() in sa_common.c. |
CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound |
CVE-2019-16167 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223654 | 6.5 |
MEDIUM
Network |
gnu | cflow | GNU cflow through 1.6 has a heap-based buffer over-read in the nexttoken function in parser.c. |
CWE-125
Out-of-bounds Read |
CVE-2019-16166 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223655 | 6.5 |
MEDIUM
Network |
gnu | cflow | GNU cflow through 1.6 has a use-after-free in the reference function in parser.c. |
CWE-416
Use After Free |
CVE-2019-16165 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223656 | 6.5 |
MEDIUM
Network |
myhtml_project | myhtml | MyHTML through 4.0.5 has a NULL pointer dereference in myhtml_tree_node_remove in tree.c. |
CWE-476
NULL Pointer Dereference |
CVE-2019-16164 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223657 | 7.5 |
HIGH
Network |
oniguruma_project fedoraproject debian canonical |
oniguruma fedora debian_linux ubuntu_linux |
Oniguruma before 6.9.3 allows Stack Exhaustion in regcomp.c because of recursion in regparse.c. |
CWE-674
Uncontrolled Recursion |
CVE-2019-16163 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223658 | 7.5 |
HIGH
Network |
k-takata | onigmo | Onigmo through 6.2.0 has an out-of-bounds read in parse_char_class because of missing codepoint validation in regenc.c. |
CWE-125
Out-of-bounds Read |
CVE-2019-16162 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223659 | 6.5 |
MEDIUM
Network |
sqlite netapp canonical fedoraproject debian tenable oracle mcafee |
sqlite steelstore_cloud_integrated_storage oncommand_workflow_automation oncommand_insight ontap_select_deploy_administration_utility active_iq_unified_manager santricity_unified_ma… |
In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the … |
CWE-369
Divide By Zero |
CVE-2019-16168 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |
| 223660 | 7.5 |
HIGH
Network |
k-takata | onigmo | Onigmo through 6.2.0 has a NULL pointer dereference in onig_error_code_to_str because of fetch_token in regparse.c. |
CWE-476
NULL Pointer Dereference |
CVE-2019-16161 | 2024-11-21 13:30 | 2019-09-10 | Show | GitHub Exploit DB Packet Storm |