Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255391 2.6 注意 オラクル - Oracle E-Business Suite の Oracle Knowledge Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0836 2010-08-5 16:36 2010-07-13 Show GitHub Exploit DB Packet Storm
255392 3.5 注意 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0909 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
255393 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0913 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
255394 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0905 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
255395 4.3 警告 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0912 2010-08-5 16:35 2010-07-13 Show GitHub Exploit DB Packet Storm
255396 5.5 警告 オラクル - Oracle E-Business Suite の Oracle Advanced Product Catalog コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0915 2010-08-5 16:34 2010-07-13 Show GitHub Exploit DB Packet Storm
255397 7.5 危険 オラクル - Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0908 2010-08-5 16:34 2010-07-13 Show GitHub Exploit DB Packet Storm
255398 4.3 警告 オラクル - Oracle Enterprise Manager Grid Control の Console コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2373 2010-08-5 16:33 2010-07-13 Show GitHub Exploit DB Packet Storm
255399 4.3 警告 オラクル - Oracle Fusion Middleware の Oracle Business Process Management コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-2370 2010-08-5 16:33 2010-07-13 Show GitHub Exploit DB Packet Storm
255400 5 警告 オラクル - Oracle Secure Backup における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0904 2010-08-5 16:33 2010-07-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223551 6.1 MEDIUM
Network 		microstrategy microstrategy_library Microstrategy Library in MicroStrategy before 2019 before 11.1.3 has reflected XSS. CWE-79
Cross-site Scripting 		CVE-2019-18957 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223552 7.8 HIGH
Local 		scanguard scanguard_antivirus Scanguard through 2019-11-12 on Windows has Insecure Permissions for the installation directory, leading to privilege escalation via a Trojan horse executable file. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-18895 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223553 5.5 MEDIUM
Local 		linux linux_kernel fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer dereference via a crafted btrfs image because fs_devices->devices is mishandled within find_device, ak… CWE-476
 NULL Pointer Dereference 		CVE-2019-18885 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223554 7.5 HIGH
Network 		snowhaze snowhaze SnowHaze before 2.6.6 is sometimes too late to honor a per-site JavaScript blocking setting, which leads to unintended JavaScript execution via a chain of webpage redirections targeted to the user's … CWE-863
 Incorrect Authorization 		CVE-2019-18949 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223555 5.3 MEDIUM
Network 		netease pomelo Pomelo v2.2.5 allows external control of critical state data. A malicious user input can corrupt arbitrary methods and attributes in template/game-server/app/servers/connector/handler/entryHandler.js… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2019-18954 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223556 9.8 CRITICAL
Network 		sibsoft xfilesharing SibSoft Xfilesharing through 2.5.1 allows cgi-bin/up.cgi arbitrary file upload. This can be combined with CVE-2019-18951 to achieve remote code execution via a .html file, containing short codes, tha… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-18952 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223557 7.5 HIGH
Network 		sibsoft xfilesharing SibSoft Xfilesharing through 2.5.1 allows op=page&tmpl=../ directory traversal to read arbitrary files. CWE-22
Path Traversal 		CVE-2019-18951 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223558 6.1 MEDIUM
Network 		go-camo_project go-camo Insufficient content type validation of proxied resources in go-camo before 2.1.1 allows a remote attacker to serve arbitrary content from go-camo's origin. CWE-79
Cross-site Scripting 		CVE-2019-18923 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223559 8.8 HIGH
Network 		fairsketch rise_-_ultimate_project_manager index.php/team_members/add_team_member in RISE Ultimate Project Manager 2.3 has CSRF for adding authorized users. CWE-352
 Origin Validation Error 		CVE-2019-18884 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm
223560 6.1 MEDIUM
Network 		lavalite lavalite XSS exists in Lavalite CMS 5.7 via the admin/profile name or designation field. CWE-79
Cross-site Scripting 		CVE-2019-18883 2024-11-21 13:33 2019-11-14 Show GitHub Exploit DB Packet Storm