Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255221	7.8	危険	マイクロソフト	-	Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1928	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255222	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255223	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255224	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255225	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

255226	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

255227	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

255228	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222201	9.8	CRITICAL Network	idreamsoft	icms	An issue was discovered in idreamsoft iCMS v7.0.14. There is a spider_project.admincp.php SQL injection vulnerability in the 'upload spider project scheme' feature via a two-dimensional payload.	CWE-89 SQL Injection	CVE-2019-17552	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222202	9.8	CRITICAL Network	zzzcms	zzzphp	parserIfLabel in inc/zzz_template.php in ZZZCMS zzzphp 1.7.3 allows remote attackers to execute arbitrary code because the danger_key function can be bypassed via manipulations such as strtr.	CWE-94 Code Injection	CVE-2019-17408	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222203	8.8	HIGH Network	imagemagick	imagemagick	In ImageMagick before 7.0.8-62, TraceBezier in MagickCore/draw.c has a use-after-free.	CWE-416 Use After Free	CVE-2019-17547	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222204	8.8	HIGH Network	libtiff osgeo	libtiff gdal	tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, rela…	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2019-17546	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222205	9.8	CRITICAL Network	osgeo oracle debian fedoraproject opensuse	gdal spatial_and_graph debian_linux fedora leap backports_sle	GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp when the 10MB threshold is exceeded.	CWE-415 Double Free	CVE-2019-17545	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222206	9.1	CRITICAL Network	gnu canonical	aspell ubuntu_linux	libaspell.a in GNU Aspell before 0.60.8 has a stack-based buffer over-read in acommon::unescape in common/getdata.cpp via an isolated \ character.	CWE-125 Out-of-bounds Read	CVE-2019-17544	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222207	8.1	HIGH Network	lz4_project	lz4	LZ4 before 1.9.2 has a heap-based buffer overflow in LZ4_write32 (related to LZ4_compress_destSize), affecting applications that call LZ4_compress_fast with a large input. (This issue can also lead t…	CWE-787 Out-of-bounds Write	CVE-2019-17543	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222208	9.8	CRITICAL Network	ffmpeg canonical debian	ffmpeg ubuntu_linux debian_linux	FFmpeg before 4.2 has a heap-based buffer overflow in vqa_decode_chunk because of an out-of-array access in vqa_decode_init in libavcodec/vqavideo.c.	CWE-787 Out-of-bounds Write	CVE-2019-17542	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222209	8.8	HIGH Network	imagemagick	imagemagick	ImageMagick before 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c.	CWE-416 Use After Free	CVE-2019-17541	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm

222210	8.8	HIGH Network	imagemagick debian	imagemagick debian_linux	ImageMagick before 7.0.8-54 has a heap-based buffer overflow in ReadPSInfo in coders/ps.c.	CWE-787 Out-of-bounds Write	CVE-2019-17540	2024-11-21 13:32	2019-10-14	Show	GitHub Exploit DB Packet Storm