Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219371 7.5 危険 Novell
Canonical
LibRaw		 - LibRaw の libraw_cxx.cpp 内の LibRaw::unpack 関数におけるメモリ二重解放の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2126 2013-08-15 18:01 2013-05-26 Show GitHub Exploit DB Packet Storm
219372 9.3 危険 マイクロソフト - Microsoft Internet Explorer 6 から 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3199 2013-08-15 15:54 2013-08-13 Show GitHub Exploit DB Packet Storm
219373 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3194 2013-08-15 15:51 2013-08-13 Show GitHub Exploit DB Packet Storm
219374 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3193 2013-08-15 15:50 2013-08-13 Show GitHub Exploit DB Packet Storm
219375 4.3 警告 マイクロソフト - Microsoft Internet Explorer 6 から 10 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3192 2013-08-15 15:48 2013-08-13 Show GitHub Exploit DB Packet Storm
219376 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3191 2013-08-15 15:46 2013-08-13 Show GitHub Exploit DB Packet Storm
219377 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 から 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3190 2013-08-15 15:45 2013-08-13 Show GitHub Exploit DB Packet Storm
219378 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 および 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3189 2013-08-15 15:44 2013-08-13 Show GitHub Exploit DB Packet Storm
219379 9.3 危険 マイクロソフト - Microsoft Internet Explorer 8 および 9 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3188 2013-08-15 15:43 2013-08-13 Show GitHub Exploit DB Packet Storm
219380 9.3 危険 マイクロソフト - Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-3187 2013-08-15 15:41 2013-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278371 - xpdf xpdf Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDe… NVD-CWE-noinfo
CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-3627 2018-10-20 00:37 2005-12-31 Show GitHub Exploit DB Packet Storm
278372 - easy_software_products
kde
libextractor
poppler
sgi
tetex
xpdf
conectiva
debian
gentoo
mandrakesoft
redhat
sco
slackware
suse
trustix
turbolinux
ubuntu 		cups
kdegraphics
koffice
kpdf
kword
libextractor
poppler
propack
tetex
xpdf
linux
debian_linux
mandrake_linux
mandrake_linux_corporate_server
enterprise_linu… 		Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely… CWE-399
 Resource Management Errors 		CVE-2005-3625 2018-10-20 00:37 2005-12-31 Show GitHub Exploit DB Packet Storm
278373 - easy_software_products
kde
libextractor
poppler
sgi
tetex
xpdf
conectiva
debian
gentoo
mandrakesoft
redhat
sco
slackware
suse
trustix
turbolinux
ubuntu 		cups
kdegraphics
koffice
kpdf
kword
libextractor
poppler
propack
tetex
xpdf
linux
debian_linux
mandrake_linux
mandrake_linux_corporate_server
enterprise_linu… 		Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that tr… CWE-399
 Resource Management Errors 		CVE-2005-3626 2018-10-20 00:37 2005-12-31 Show GitHub Exploit DB Packet Storm
278374 - saphp saphplesson SQL injection vulnerability in Saphp Lesson, possibly saphp Lesson1.1 and saphpLesson2.0, allows remote attackers to execute arbitrary SQL commands via the forumid parameter in (1) showcat.php and (2… NVD-CWE-Other
CVE-2005-3363 2018-10-20 00:36 2005-10-30 Show GitHub Exploit DB Packet Storm
278375 - codeworx_technologies dcp-portal Multiple SQL injection vulnerabilities in DCP-Portal 6 and earlier allow remote attackers to execute arbitrary SQL commands, possibly requiring encoded characters, via (1) the name parameter in regis… CWE-89
SQL Injection 		CVE-2005-3365 2018-10-20 00:36 2005-10-30 Show GitHub Exploit DB Packet Storm
278376 - trend_micro officescan
pc-cillin_2005 		Multiple interpretation error in Trend Micro (1) PC-Cillin 2005 12.0.1244 with the 7.510.1002 engine and (2) OfficeScan 7.0 with the 7.510.1002 engine allows remote attackers to bypass virus scanning… NVD-CWE-Other
CVE-2005-3379 2018-10-20 00:36 2005-10-30 Show GitHub Exploit DB Packet Storm
278377 - oaboard oaboard Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) channel parameter in the topics module and (2) topic para… NVD-CWE-Other
CVE-2005-3394 2018-10-20 00:36 2005-11-1 Show GitHub Exploit DB Packet Storm
278378 - invision_power_services invision_gallery SQL injection vulnerability in Invision Gallery 2.0.3 allows remote attackers to execute arbitrary SQL commands via the st parameter. NVD-CWE-Other
CVE-2005-3395 2018-10-20 00:36 2005-11-1 Show GitHub Exploit DB Packet Storm
278379 - elite_forum elite_forum Cross-site scripting (XSS) vulnerability in Elite Forum 1.0.0.0 allows remote attackers to inject arbitrary web script or HTML via a Post Reply to a topic, in which the reply contains a javascript: U… NVD-CWE-Other
CVE-2005-3412 2018-10-20 00:36 2005-11-2 Show GitHub Exploit DB Packet Storm
278380 - alexander_palmo simple_php_blog Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog 0.4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) entry, (2) blog_subject, and (3) blo… NVD-CWE-Other
CVE-2005-3473 2018-10-20 00:36 2005-11-3 Show GitHub Exploit DB Packet Storm