Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
221861 6.8 警告 アップル
Google
xmlsoft.org		 - Google Chrome で使用される libxml2 におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5134 2014-02-3 11:20 2012-11-26 Show GitHub Exploit DB Packet Storm
221862 5 警告 アップル
xmlsoft.org
オラクル		 - ibxml2 におけるサービス運用妨害 (CPU 資源の消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-0841 2014-02-3 11:19 2012-05-23 Show GitHub Exploit DB Packet Storm
221863 7.5 危険 アップル
Google		 - Google Chrome などで使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-2842 2014-02-3 11:18 2013-05-21 Show GitHub Exploit DB Packet Storm
221864 6.8 警告 アップル - Apple Mac OS X の CoreMedia Playback における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-1024 2014-02-3 11:18 2013-06-4 Show GitHub Exploit DB Packet Storm
221865 6.8 警告 アップル - Apple iOS などで使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1037 2014-02-3 11:17 2013-09-18 Show GitHub Exploit DB Packet Storm
221866 6.8 警告 アップル - Apple iOS などで使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1038 2014-02-3 11:17 2013-09-18 Show GitHub Exploit DB Packet Storm
221867 6.8 警告 アップル - Apple iOS などで使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1039 2014-02-3 11:16 2013-09-18 Show GitHub Exploit DB Packet Storm
221868 6.8 警告 アップル - Apple iOS などで使用される WebKit における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1040 2014-02-3 11:15 2013-09-18 Show GitHub Exploit DB Packet Storm
221869 6.8 警告 アップル - Apple iOS などで使用される WebKit におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1041 2014-02-3 11:14 2013-09-18 Show GitHub Exploit DB Packet Storm
221870 6.8 警告 アップル - Apple iOS などで使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1042 2014-02-3 11:14 2013-09-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273351 5.5 MEDIUM
Local 		nullsoft
debian 		nullsoft_scriptable_install_system
debian_linux 		Nullsoft Scriptable Install System (NSIS) before 2.49 uses temporary folder locations that allow unprivileged local users to overwrite files. This allows a local attack in which either a plugin or th… CWE-269
 Improper Privilege Management 		CVE-2015-9267 2024-11-21 11:40 2018-10-1 Show GitHub Exploit DB Packet Storm
273352 9.8 CRITICAL
Network 		ui
ubnt 		airmax_ac_firmware
airmax_m_xm_firmware
airmax_m_xw_firmware
airmax_m_ti_firmware
airgateway_firmware
airfiber_af24_firmware
airfiber_af24hd_firmware
af5x_firmware
af5_firmwar… 		The web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP (formerly TOUGHSwitch) allows an unauthenticated attacker to upload and write arbitrary files using directory t… CWE-22
Path Traversal 		CVE-2015-9266 2024-11-21 11:40 2018-09-6 Show GitHub Exploit DB Packet Storm
273353 9.8 CRITICAL
Network 		lansweeper lansweeper Lansweeper 4.x through 6.x before 6.0.0.48 allows attackers to execute arbitrary code on the administrator's workstation via a crafted Windows service. CWE-20
 Improper Input Validation  		CVE-2015-9264 2024-11-21 11:40 2018-08-27 Show GitHub Exploit DB Packet Storm
273354 9.8 CRITICAL
Network 		idera uptime_infrastructure_monitor An issue was discovered in post2file.php in Up.Time Monitoring Station 7.5.0 (build 16) and 7.4.0 (build 13). It allows an attacker to upload an arbitrary file, such as a .php file that can execute a… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2015-9263 2024-11-21 11:40 2018-08-27 Show GitHub Exploit DB Packet Storm
273355 9.8 CRITICAL
Network 		debian
canonical
x
redhat 		debian_linux
ubuntu_linux
libxcursor
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ansible_tower 		_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-9262 2024-11-21 11:40 2018-08-2 Show GitHub Exploit DB Packet Storm
273356 5.5 MEDIUM
Local 		busybox
debian
canonical 		busybox
debian_linux
ubuntu_linux 		huft_build in archival/libarchive/decompress_gunzip.c in BusyBox before 1.27.2 misuses a pointer, causing segfaults and an application crash during an unzip operation on a specially crafted ZIP file. CWE-476
 NULL Pointer Dereference 		CVE-2015-9261 2024-11-21 11:40 2018-07-27 Show GitHub Exploit DB Packet Storm
273357 5.4 MEDIUM
Network 		bedita bedita An issue was discovered in BEdita before 3.7.0. A cross-site scripting (XSS) attack occurs via a crafted pages/showObjects URI, as demonstrated by appending a payload to a pages/showObjects/2/0/0/lea… CWE-79
Cross-site Scripting 		CVE-2015-9260 2024-11-21 11:40 2018-07-5 Show GitHub Exploit DB Packet Storm
273358 7.5 HIGH
Network 		ansi2html_project ansi2html ansi2html is vulnerable to regular expression denial of service (ReDoS) when certain types of user input is passed in. CWE-20
 Improper Input Validation  		CVE-2015-9239 2024-11-21 11:40 2018-06-1 Show GitHub Exploit DB Packet Storm
273359 5.3 MEDIUM
Network 		secure-compare_project secure-compare secure-compare 3.0.0 and below do not actually compare two strings properly. compare was actually comparing the first argument with itself, meaning the check passed for any two strings of the same le… CWE-134
Use of Externally-Controlled Format String 		CVE-2015-9238 2024-11-21 11:40 2018-06-1 Show GitHub Exploit DB Packet Storm
273360 5.3 MEDIUM
Network 		hapijs hapi Hapi versions less than 11.0.0 implement CORS incorrectly and allowed for configurations that at best returned inconsistent headers and at worst allowed cross-origin activities that were expected to … CWE-200
Information Exposure 		CVE-2015-9236 2024-11-21 11:40 2018-06-1 Show GitHub Exploit DB Packet Storm