Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256131	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0246	2010-02-22 12:14	2010-01-21	Show	GitHub Exploit DB Packet Storm

256132	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-0245	2010-02-22 12:13	2010-01-21	Show	GitHub Exploit DB Packet Storm

256133	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer の XSS フィルタにおけるクロスサイトスクリプティングの脆弱性	CWE-DesignError	CVE-2009-4074	2010-02-22 12:13	2009-11-25	Show	GitHub Exploit DB Packet Storm

256134	6.6	警告	マイクロソフト	-	Microsoft Windows の kernel における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2010-0232	2010-02-22 12:12	2010-01-20	Show	GitHub Exploit DB Packet Storm

256135	10	危険	Rockwell Automation	-	Rockwell Automation Allen-Bradley MicroLogix PLC に複数の脆弱性	CWE-noinfo 情報不足	CVE-2009-3739	2010-02-19 14:22	2010-01-21	Show	GitHub Exploit DB Packet Storm

256136	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer において任意のコードが実行される脆弱性	CWE-399 リソース管理の問題	CVE-2010-0249	2010-02-19 14:21	2010-01-15	Show	GitHub Exploit DB Packet Storm

256137	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-0227	2010-02-19 11:37	2008-01-10	Show	GitHub Exploit DB Packet Storm

256138	7.5	危険	アップル MySQL AB	-	MySQL で使用される yaSSL における複数のバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0226	2010-02-19 11:32	2008-01-10	Show	GitHub Exploit DB Packet Storm

256139	7.5	危険	Linux レッドハット	-	Linux kernel の do_coredump 関数における任意のファイルを改ざんされる脆弱性	-	CVE-2006-6304	2010-02-18 14:28	2006-12-14	Show	GitHub Exploit DB Packet Storm

256140	7.8	危険	Linux レッドハット	-	Linux kernel の net/ipv4/route.c 用の特定のレッドハットパッチにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-4272	2010-02-18 14:28	2010-01-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218961	5.5	MEDIUM Local	huawei	honor_magic_2_firmware	There is an information disclosure vulnerability on Secure Input of certain Huawei smartphones in Versions earlier than Tony-AL00B 9.1.0.216(C00E214R2P1). The Secure Input does not properly limit cer…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-5222	2024-11-21 13:44	2019-07-18	Show	GitHub Exploit DB Packet Storm

218962	5.3	MEDIUM Network	http-file-server_project	http-file-server	A path traversal vulnerability in <= v0.2.6 of http-file-server npm module allows attackers to list files in arbitrary folders.	CWE-22 Path Traversal	CVE-2019-5447	2024-11-21 13:44	2019-07-16	Show	GitHub Exploit DB Packet Storm

218963	7.2	HIGH Network	ui	edgeswitch_firmware	Command Injection in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to execute commands as root.	CWE-77 Command Injection	CVE-2019-5446	2024-11-21 13:44	2019-07-11	Show	GitHub Exploit DB Packet Storm

218964	4.9	MEDIUM Network	ui	edgeswitch_firmware	DoS in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to Crash the SSH CLI interface by using crafted commands.	CWE-400 Uncontrolled Resource Consumption	CVE-2019-5445	2024-11-21 13:44	2019-07-11	Show	GitHub Exploit DB Packet Storm

218965	5.3	MEDIUM Network	serve-here.js_project	serve-here.js	Path traversal vulnerability in version up to v1.1.3 in serve-here.js npm module allows attackers to list any file in arbitrary folder.	CWE-22 Path Traversal	CVE-2019-5444	2024-11-21 13:44	2019-07-11	Show	GitHub Exploit DB Packet Storm

218966	6.5	MEDIUM Adjacent	huawei	mate_20_x_firmware	There is a path traversal vulnerability on Huawei Share. The software does not properly validate the path, an attacker could crafted a file path when transporting file through Huawei Share, successfu…	CWE-22 Path Traversal	CVE-2019-5221	2024-11-21 13:44	2019-07-11	Show	GitHub Exploit DB Packet Storm

218967	4.6	MEDIUM Physics	huawei	mate_20_x_firmware mate_20_firmware honor_magic_2_firmware	There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker could do a certain operation on certain step…	CWE-863 Incorrect Authorization	CVE-2019-5220	2024-11-21 13:44	2019-07-11	Show	GitHub Exploit DB Packet Storm

218968	8.8	HIGH Network	libsdl debian opensuse canonical	sdl2_image debian_linux leap backports_sle ubuntu_linux	An exploitable integer overflow vulnerability exists when loading a PCX file in SDL2_image 2.0.4. A specially crafted file can cause an integer overflow, resulting in too little memory being allocate…	CWE-190 Integer Overflow or Wraparound	CVE-2019-5052	2024-11-21 13:44	2019-07-4	Show	GitHub Exploit DB Packet Storm

218969	8.8	HIGH Network	libsdl debian opensuse canonical	sdl2_image debian_linux leap backports_sle ubuntu_linux	An exploitable heap-based buffer overflow vulnerability exists when loading a PCX file in SDL2_image, version 2.0.4. A missing error handler can lead to a buffer overflow and potential code execution…	CWE-787 CWE-755 Out-of-bounds Write Improper Handling of Exceptional Conditions	CVE-2019-5051	2024-11-21 13:44	2019-07-4	Show	GitHub Exploit DB Packet Storm

218970	7.8	HIGH Local	haxx oracle netapp	curl http_server enterprise_manager_ops_center oss_support_tools mysql_server snapcenter oncommand_unified_manager oncommand_workflow_automation oncommand_insight	A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") …	CWE-427 Uncontrolled Search Path Element	CVE-2019-5443	2024-11-21 13:44	2019-07-3	Show	GitHub Exploit DB Packet Storm