Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256901	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

256902	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

256903	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

256904	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219571	6.1	MEDIUM Network	arubanetworks	arubaos	Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker would be able to accomplish this by sending certain URL parameter…	CWE-74 Injection	CVE-2019-5314	2024-11-21 13:44	2019-09-14	Show	GitHub Exploit DB Packet Storm

219572	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon (hostapd) on the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) wireless router. A SOAP request sent in…	CWE-476 NULL Pointer Dereference	CVE-2019-5055	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

219573	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the session handling functionality of the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) HTTP server. An HTTP request with an empty …	CWE-476 NULL Pointer Dereference	CVE-2019-5054	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

219574	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab email notification feature which could result in a persistent XSS. This was addressed in GitLab 12.1.2, 12.0.4, and 11.11.6.	CWE-79 Cross-site Scripting	CVE-2019-5471	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

219575	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.…	CWE-79 Cross-site Scripting	CVE-2019-5467	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

219576	5.3	MEDIUM Network	gitlab	gitlab	An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.…	CWE-200 CWE-862 Information Exposure Missing Authorization	CVE-2019-5463	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

219577	3.5	LOW Adjacent	gitlab	gitlab	An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This…	CWE-20 Improper Input Validation	CVE-2019-5461	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

219578	6.5	MEDIUM Network	epignosishq	efront_lms	An exploitable SQL injection vulnerability exists in the unauthenticated portion of eFront LMS, versions v5.2.12 and earlier. Specially crafted web request to login page can cause SQL injections, res…	CWE-89 SQL Injection	CVE-2019-5070	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm

219579	8.8	HIGH Network	epignosishq	efront_lms	A code execution vulnerability exists in Epignosis eFront LMS v5.2.12. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker c…	CWE-502 Deserialization of Untrusted Data	CVE-2019-5069	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm

219580	5.3	MEDIUM Network	blynk	blynk-library	An exploitable information disclosure vulnerability exists in the packet-parsing functionality of Blynk-Library v0.6.1. A specially crafted packet can cause an unterminated strncpy, resulting in info…	CWE-125 Out-of-bounds Read	CVE-2019-5065	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm