Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255031 5.5 警告 オラクル - Oracle Database の XML DB コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0852 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
255032 6.5 警告 オラクル - Oracle Database の JavaVM コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0866 2010-05-12 15:17 2010-04-13 Show GitHub Exploit DB Packet Storm
255033 7.1 危険 オラクル - Oracle Database の Core RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0860 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
255034 7.5 危険 オラクル - 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0853 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
255035 2.6 注意 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1985 2010-05-12 12:01 2010-05-12 Show GitHub Exploit DB Packet Storm
255036 10 危険 日立 - 複数の EUR Form 製品 および EUR 製品における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-11 15:16 2010-03-31 Show GitHub Exploit DB Packet Storm
255037 6.4 警告 マイクロソフト - Microsoft Windows における ISATAP パケットの処理に関する IPv4 ソースアドレスの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0812 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
255038 7.6 危険 マイクロソフト - Microsoft Office Visio における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0256 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
255039 7.6 危険 マイクロソフト - Microsoft Office Visio における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0254 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
255040 5 警告 マイクロソフト - Microsoft Windows の SMTP コンポーネントにおける情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2010-0025 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223301 8.8 HIGH
Network 		nokia impact Nokia IMPACT < 18A: An unrestricted File Upload vulnerability was found that may lead to Remote Code Execution. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-17403 2024-11-21 13:32 2019-11-26 Show GitHub Exploit DB Packet Storm
223302 7.8 HIGH
Local 		eracent epa_agent An issue was discovered in Eracent EPA Agent through 10.2.26. The agent executable, when installed for non-root operations (scanning), can be used to start external programs with elevated permissions… CWE-426
 Untrusted Search Path 		CVE-2019-17446 2024-11-21 13:32 2019-11-23 Show GitHub Exploit DB Packet Storm
223303 5.5 MEDIUM
Local 		eracent eda_agent
epa_agent
epm_agent
eua_agent
flw_agent
sum_agent 		An issue was discovered in Eracent EDA, EPA, EPM, EUA, FLW, and SUM Agent through 10.2.26. The agent executable, when installed for non-root operations (scanning), can be forced to copy files from th… CWE-59
Link Following 		CVE-2019-17445 2024-11-21 13:32 2019-11-23 Show GitHub Exploit DB Packet Storm
223304 7.8 HIGH
Local 		fortinet forticlient An Improper Neutralization of Special Elements used in a Command vulnerability in one of FortiClient for Mac OS root processes, may allow a local user of the system on which FortiClient is running to… CWE-78
OS Command  		CVE-2019-17650 2024-11-21 13:32 2019-11-22 Show GitHub Exploit DB Packet Storm
223305 7.2 HIGH
Network 		netapp ontap_select_deploy_administration_utility All versions of ONTAP Select Deploy administration utility are susceptible to a vulnerability which when successfully exploited could allow an administrative user to escalate their privileges. NVD-CWE-noinfo
CVE-2019-17272 2024-11-21 13:32 2019-11-22 Show GitHub Exploit DB Packet Storm
223306 7.8 HIGH
Local 		zohocorp manageengine_firewall_analyzer
manageengine_opmanager 		Incorrect file permissions on the packaged Nipper executable file in Zoho ManageEngine OpManager 12.4.072 and Firewall Analyzer 12.4.072 allow local users to elevate privileges to root by overwriting… CWE-276
Incorrect Default Permissions  		CVE-2019-17421 2024-11-21 13:32 2019-11-22 Show GitHub Exploit DB Packet Storm
223307 7.8 HIGH
Local 		comodo comodo_internet_security An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially u… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-18215 2024-11-21 13:32 2019-11-19 Show GitHub Exploit DB Packet Storm
223308 4.6 MEDIUM
Physics 		espressif esp32-d0wd_firmware
esp32-d2wd_firmware
esp32-s0wd_firmware
esp32-pico-d4_firmware 		An issue was discovered in the Espressif ESP32 mask ROM code 2016-06-08 0 through 2. Lack of anti-glitch mitigations in the first stage bootloader of the ESP32 chip allows an attacker (with physical … CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-17391 2024-11-21 13:32 2019-11-15 Show GitHub Exploit DB Packet Storm
223309 9.8 CRITICAL
Network 		fujielectric v-server In Fuji Electric V-Server 4.0.6 and prior, several heap-based buffer overflows have been identified, which may allow an attacker to remotely execute arbitrary code. CWE-787
 Out-of-bounds Write 		CVE-2019-18240 2024-11-21 13:32 2019-11-14 Show GitHub Exploit DB Packet Storm
223310 6.1 MEDIUM
Network 		adenion blog2social The Blog2Social plugin before 5.9.0 for WordPress is affected by: Cross Site Scripting (XSS). The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via the b2s_id parameter.… CWE-79
Cross-site Scripting 		CVE-2019-17550 2024-11-21 13:32 2019-11-14 Show GitHub Exploit DB Packet Storm