Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255021	4	警告	オラクル	-	Oracle iPlanet Web Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3544	2010-10-18 12:03	2010-10-18	Show	GitHub Exploit DB Packet Storm

255022	5	警告	ISC, Inc.	-	BIND の ACL の処理に問題	CWE-264 認可・権限・アクセス制御	CVE-2010-0218	2010-10-15 13:24	2010-10-1	Show	GitHub Exploit DB Packet Storm

255023	5.1	警告	K2 Software	-	K2Editor における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3156	2010-10-15 11:22	2010-10-15	Show	GitHub Exploit DB Packet Storm

255024	6.8	警告	kMonos.NET	-	XacRett における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3157	2010-10-15 11:22	2010-10-15	Show	GitHub Exploit DB Packet Storm

255025	5	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2101	2010-10-14 16:20	2010-05-26	Show	GitHub Exploit DB Packet Storm

255026	9.3	危険	レッドハット	-	Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3996	2010-10-14 16:19	2009-12-18	Show	GitHub Exploit DB Packet Storm

255027	9.3	危険	レッドハット	-	Winamp および libmikmod の IN_MOD.DLL におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3995	2010-10-14 16:19	2009-12-18	Show	GitHub Exploit DB Packet Storm

255028	4.3	警告	レッドハット	-	libmikmod におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-6720	2010-10-14 16:19	2009-01-20	Show	GitHub Exploit DB Packet Storm

255029	7.8	危険	シスコシステムズ	-	Cisco IOS の SSL VPN 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2836	2010-10-13 17:00	2010-09-22	Show	GitHub Exploit DB Packet Storm

255030	7.8	危険	シスコシステムズ	-	複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-2051	2010-10-13 16:59	2010-09-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218901	6.1	MEDIUM Network	arubanetworks	arubaos	Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker would be able to accomplish this by sending certain URL parameter…	CWE-74 Injection	CVE-2019-5314	2024-11-21 13:44	2019-09-14	Show	GitHub Exploit DB Packet Storm

218902	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon (hostapd) on the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) wireless router. A SOAP request sent in…	CWE-476 NULL Pointer Dereference	CVE-2019-5055	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

218903	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the session handling functionality of the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) HTTP server. An HTTP request with an empty …	CWE-476 NULL Pointer Dereference	CVE-2019-5054	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

218904	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab email notification feature which could result in a persistent XSS. This was addressed in GitLab 12.1.2, 12.0.4, and 11.11.6.	CWE-79 Cross-site Scripting	CVE-2019-5471	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

218905	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.…	CWE-79 Cross-site Scripting	CVE-2019-5467	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

218906	5.3	MEDIUM Network	gitlab	gitlab	An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.…	CWE-200 CWE-862 Information Exposure Missing Authorization	CVE-2019-5463	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

218907	3.5	LOW Adjacent	gitlab	gitlab	An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This…	CWE-20 Improper Input Validation	CVE-2019-5461	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

218908	6.5	MEDIUM Network	epignosishq	efront_lms	An exploitable SQL injection vulnerability exists in the unauthenticated portion of eFront LMS, versions v5.2.12 and earlier. Specially crafted web request to login page can cause SQL injections, res…	CWE-89 SQL Injection	CVE-2019-5070	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm

218909	8.8	HIGH Network	epignosishq	efront_lms	A code execution vulnerability exists in Epignosis eFront LMS v5.2.12. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker c…	CWE-502 Deserialization of Untrusted Data	CVE-2019-5069	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm

218910	5.3	MEDIUM Network	blynk	blynk-library	An exploitable information disclosure vulnerability exists in the packet-parsing functionality of Blynk-Library v0.6.1. A specially crafted packet can cause an unterminated strncpy, resulting in info…	CWE-125 Out-of-bounds Read	CVE-2019-5065	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm