Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256461	6.8	警告	アップル	-	Apple Mac OS X の PS Normalizer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0513	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

256462	9.3	危険	アップル	-	Apple Mac OS X のアカウント環境設定の実装におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0512	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

256463	5	警告	アップル	-	Apple Mac OS X の Podcast プロデューサーにおけるワークフローにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0511	2010-04-15 18:38	2010-03-29	Show	GitHub Exploit DB Packet Storm

256464	9	危険	アップル	-	Apple Mac OS X のパスワードサーバにおけるログインアクセスを取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-0510	2010-04-15 18:37	2010-03-29	Show	GitHub Exploit DB Packet Storm

256465	7.2	危険	アップル	-	Apple Mac OS X の SFLServer における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0509	2010-04-15 18:37	2010-03-29	Show	GitHub Exploit DB Packet Storm

256466	7.8	危険	アップル	-	Apple Mac OS X の Mail における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2010-0525	2010-04-15 18:36	2010-03-29	Show	GitHub Exploit DB Packet Storm

256467	4	警告	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL の mysqld におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2009-4019	2010-04-15 18:16	2009-11-30	Show	GitHub Exploit DB Packet Storm

256468	6.8	警告	The PHP Group アップル	-	PHP の posix_mkfifo 関数における open_basedir の制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-3558	2010-04-15 18:16	2009-11-23	Show	GitHub Exploit DB Packet Storm

256469	4.4	警告	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL における権限チェックを回避される脆弱性	CWE-59 リンク解釈の問題	CVE-2009-4030	2010-04-15 18:16	2009-11-5	Show	GitHub Exploit DB Packet Storm

256470	2.6	注意	アップルサイバートラスト株式会社 MySQL AB レッドハット	-	MySQL のコマンドラインクライアントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4456	2010-04-15 18:15	2008-10-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221611	8.8	HIGH Network	ajenti	ajenti	A vulnerability has been found in ajenti 2.1.31 and classified as critical. This vulnerability affects unknown code of the component API. The manipulation leads to privilege escalation. The attack ca…	CWE-78 OS Command	CVE-2019-25066	2024-11-21 13:39	2022-06-10	Show	GitHub Exploit DB Packet Storm

221612	9.8	CRITICAL Network	opennetadmin	opennetadmin	A vulnerability was found in OpenNetAdmin 18.1.1. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to privilege escalation. The attack may b…	CWE-78 OS Command	CVE-2019-25065	2024-11-21 13:39	2022-06-10	Show	GitHub Exploit DB Packet Storm

221613	8.8	HIGH Network	theaccessgroup	corehr_core_portal	A vulnerability was found in CoreHR Core Portal up to 27.0.7. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site request forgery. It is possi…	CWE-352 Origin Validation Error	CVE-2019-25064	2024-11-21 13:39	2022-06-10	Show	GitHub Exploit DB Packet Storm

221614	7.8	HIGH Local	sricam	deviceviewer	A vulnerability was found in Sricam IP CCTV Camera. It has been classified as critical. Affected is an unknown function of the component Device Viewer. The manipulation leads to memory corruption. Lo…	CWE-787 Out-of-bounds Write	CVE-2019-25063	2024-11-21 13:39	2022-06-8	Show	GitHub Exploit DB Packet Storm

221615	7.8	HIGH Local	sricam	deviceviewer	A vulnerability was found in Sricam IP CCTV Camera and classified as critical. This issue affects some unknown processing of the component Device Viewer. The manipulation leads to memory corruption. …	CWE-787 Out-of-bounds Write	CVE-2019-25062	2024-11-21 13:39	2022-06-8	Show	GitHub Exploit DB Packet Storm

221616	7.5	HIGH Network	random_password_generator_project	random_password_generator	The random_password_generator (aka RandomPasswordGenerator) gem through 1.0.0 for Ruby uses Kernel#rand to generate passwords, which, due to its cyclic nature, can facilitate password prediction.	CWE-335 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)	CVE-2019-25061	2024-11-21 13:39	2022-05-18	Show	GitHub Exploit DB Packet Storm

221617	5.3	MEDIUM Network	wpgraphql	wpgraphql	The WPGraphQL WordPress plugin before 0.3.5 doesn't properly restrict access to information about other users' roles on the affected site. Because of this, a remote attacker could forge a GraphQL que…	-	CVE-2019-25060	2024-11-21 13:39	2022-05-10	Show	GitHub Exploit DB Packet Storm

221618	7.8	HIGH Local	artifex debian	ghostscript debian_linux	Artifex Ghostscript through 9.26 mishandles .completefont. NOTE: this issue exists because of an incomplete fix for CVE-2019-3839.	NVD-CWE-noinfo	CVE-2019-25059	2024-11-21 13:39	2022-04-25	Show	GitHub Exploit DB Packet Storm

221619	7.8	HIGH Local	usbguard_project fedoraproject debian	usbguard fedora debian_linux	An issue was discovered in USBGuard before 1.1.0. On systems with the usbguard-dbus daemon running, an unprivileged user could make USBGuard allow all USB devices to be connected in the future.	CWE-863 Incorrect Authorization	CVE-2019-25058	2024-11-21 13:39	2022-02-25	Show	GitHub Exploit DB Packet Storm

221620	7.5	HIGH Network	r3	corda	In Corda before 4.1, the meaning of serialized data can be modified via an attacker-controlled CustomSerializer.	NVD-CWE-noinfo	CVE-2019-25057	2024-11-21 13:39	2022-02-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed