Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255341	2.6	注意	アップル	-	Apple Safari の AutoFill 機能におけるアドレスブックカードの情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1796	2010-08-20 18:24	2010-07-30	Show	GitHub Exploit DB Packet Storm

255342	4.3	警告	アップル	-	Apple Safari におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1778	2010-08-20 18:24	2010-07-30	Show	GitHub Exploit DB Packet Storm

255343	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

255344	7.5	危険	金子勇	-	Winny におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2360	2010-08-20 12:02	2010-08-20	Show	GitHub Exploit DB Packet Storm

255345	5	警告	金子勇	-	Winny におけるノード情報の処理に関する脆弱性	CWE-Other その他	CVE-2010-2362	2010-08-20 12:01	2010-08-20	Show	GitHub Exploit DB Packet Storm

255346	5	警告	金子勇	-	Winny における BBS 情報の処理に関する脆弱性	CWE-Other その他	CVE-2010-2361	2010-08-20 12:01	2010-08-20	Show	GitHub Exploit DB Packet Storm

255347	10	危険	シマンテック IBM	-	Autonomy KeyView Filter SDK の kvolefio.dll における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-3032	2010-08-19 18:22	2010-03-5	Show	GitHub Exploit DB Packet Storm

255348	5	警告	The PHP Group	-	PHP の phar 拡張における重要な情報を取得される脆弱性	CWE-134 書式文字列の問題	CVE-2010-2094	2010-08-18 18:26	2010-05-14	Show	GitHub Exploit DB Packet Storm

255349	7.5	危険	The PHP Group	-	PHP の sqlite_single_query および sqlite_array_query 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1868	2010-08-18 18:26	2010-05-7	Show	GitHub Exploit DB Packet Storm

255350	7.5	危険	The PHP Group	-	PHP の dechunk フィルタにおけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2010-1866	2010-08-18 18:26	2010-05-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218811	9.8	CRITICAL Network	aspose	aspose.pdf_for_c\+\+	An exploitable use-after-free vulnerability exists in the way LZW-compressed streams are processed in Aspose.PDF 19.2 for C++. A specially crafted PDF can cause a dangling heap pointer, resulting in …	CWE-416 Use After Free	CVE-2019-5066	2024-11-21 13:44	2019-09-19	Show	GitHub Exploit DB Packet Storm

218812	8.8	HIGH Network	aspose	aspose.pdf_for_c\+\+	An exploitable Use-After-Free vulnerability exists in the way FunctionType 0 PDF elements are processed in Aspose.PDF 19.2 for C++. A specially crafted PDF can cause a dangling heap pointer, resultin…	CWE-416 Use After Free	CVE-2019-5042	2024-11-21 13:44	2019-09-19	Show	GitHub Exploit DB Packet Storm

218813	7.2	HIGH Network	arubanetworks	arubaos	A command injection vulnerability is present in the web management interface of ArubaOS that permits an authenticated user to execute arbitrary commands on the underlying operating system. A maliciou…	CWE-78 OS Command	CVE-2019-5315	2024-11-21 13:44	2019-09-14	Show	GitHub Exploit DB Packet Storm

218814	6.1	MEDIUM Network	arubanetworks	arubaos	Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker would be able to accomplish this by sending certain URL parameter…	CWE-74 Injection	CVE-2019-5314	2024-11-21 13:44	2019-09-14	Show	GitHub Exploit DB Packet Storm

218815	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon (hostapd) on the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) wireless router. A SOAP request sent in…	CWE-476 NULL Pointer Dereference	CVE-2019-5055	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

218816	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the session handling functionality of the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) HTTP server. An HTTP request with an empty …	CWE-476 NULL Pointer Dereference	CVE-2019-5054	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

218817	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab email notification feature which could result in a persistent XSS. This was addressed in GitLab 12.1.2, 12.0.4, and 11.11.6.	CWE-79 Cross-site Scripting	CVE-2019-5471	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

218818	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.…	CWE-79 Cross-site Scripting	CVE-2019-5467	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

218819	5.3	MEDIUM Network	gitlab	gitlab	An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.…	CWE-200 CWE-862 Information Exposure Missing Authorization	CVE-2019-5463	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

218820	3.5	LOW Adjacent	gitlab	gitlab	An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This…	CWE-20 Improper Input Validation	CVE-2019-5461	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm