Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255001	9.3	危険	日立	-	XMAP3 における任意のコードが実行される脆弱性	CWE-noinfo 情報不足	-	2010-05-13 15:14	2010-04-12	Show	GitHub Exploit DB Packet Storm

255002	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0863	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

255003	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0864	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

255004	4.3	警告	オラクル	-	Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0862	2010-05-13 15:13	2010-04-13	Show	GitHub Exploit DB Packet Storm

255005	4.3	警告	オラクル	-	Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0875	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

255006	4.3	警告	オラクル	-	Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0876	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

255007	4.3	警告	オラクル	-	Oracle Industry Product Suite の Communications - Oracle Communications Unified Inventory Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0874	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

255008	4	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0879	2010-05-13 15:12	2010-04-13	Show	GitHub Exploit DB Packet Storm

255009	4	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0878	2010-05-13 15:11	2010-04-13	Show	GitHub Exploit DB Packet Storm

255010	5	警告	オラクル	-	複数の Oracle 製品の PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0877	2010-05-13 15:11	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223191	9.8	CRITICAL Network	linux debian canonical opensuse	linux_kernel debian_linux ubuntu_linux leap	In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.	CWE-120 Classic Buffer Overflow	CVE-2019-17133	2024-11-21 13:31	2019-10-4	Show	GitHub Exploit DB Packet Storm

223192	9.8	CRITICAL Network	vbulletin	vbulletin	vBulletin through 5.5.4 mishandles custom avatars.	CWE-94 CWE-20 Code Injection Improper Input Validation	CVE-2019-17132	2024-11-21 13:31	2019-10-4	Show	GitHub Exploit DB Packet Storm

223193	4.3	MEDIUM Network	vbulletin	vbulletin	vBulletin before 5.5.4 allows clickjacking.	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2019-17131	2024-11-21 13:31	2019-10-4	Show	GitHub Exploit DB Packet Storm

223194	6.5	MEDIUM Network	vbulletin	vbulletin	vBulletin through 5.5.4 mishandles external URLs within the /core/vb/vurl.php file and the /core/vb/vurl directories.	CWE-552 Files or Directories Accessible to External Parties	CVE-2019-17130	2024-11-21 13:31	2019-10-4	Show	GitHub Exploit DB Packet Storm

223195	5.4	MEDIUM Network	vanderbilt	redcap	REDCap before 9.3.4 has XSS on the Customize & Manage Locking/E-signatures page via Lock Record Custom Text values.	CWE-79 Cross-site Scripting	CVE-2019-17121	2024-11-21 13:31	2019-10-4	Show	GitHub Exploit DB Packet Storm

223196	9.8	CRITICAL Network	openmpt	libopenmpt	In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API,…	CWE-120 Classic Buffer Overflow	CVE-2019-17113	2024-11-21 13:31	2019-10-4	Show	GitHub Exploit DB Packet Storm

223197	6.1	MEDIUM Network	themeisle	visualizer	A stored XSS vulnerability in the Visualizer plugin 3.3.0 for WordPress allows an unauthenticated attacker to execute arbitrary JavaScript when an admin or other privileged user edits the chart via t…	CWE-79 Cross-site Scripting	CVE-2019-16931	2024-11-21 13:31	2019-10-4	Show	GitHub Exploit DB Packet Storm

223198	7.5	HIGH Network	nlnetlabs canonical	unbound ubuntu_linux	Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash via a crafted NOTIFY query. The source IP address of the query must match an access-control rule.	CWE-755 CWE-908 Improper Handling of Exceptional Conditions Use of Uninitialized Resource	CVE-2019-16866	2024-11-21 13:31	2019-10-4	Show	GitHub Exploit DB Packet Storm

223199	7.8	HIGH Local	linuxmint	mintinstall	mintinstall (aka Software Manager) 7.9.9 for Linux Mint allows code execution if a REVIEWS_CACHE file is controlled by an attacker, because an unpickle occurs. This is resolved in 8.0.0 and backports.	CWE-502 Deserialization of Untrusted Data	CVE-2019-17080	2024-11-21 13:31	2019-10-2	Show	GitHub Exploit DB Packet Storm

223200	7.5	HIGH Network	linux	linux_kernel	An issue was discovered in write_tpt_entry in drivers/infiniband/hw/cxgb4/mem.c in the Linux kernel through 5.3.2. The cxgb4 driver is directly calling dma_map_single (a DMA function) from a stack va…	NVD-CWE-noinfo	CVE-2019-17075	2024-11-21 13:31	2019-10-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed