Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251701	6.4	警告	Daniel J. Bernstein	-	Daniel J. Bernstein djbdns における無効なドメイン名の継続的な名前解決を可能にされる脆弱性	CWE-20 CWE-DesignError	CVE-2012-1191	2012-02-21 16:20	2012-02-17	Show	GitHub Exploit DB Packet Storm

251702	5	警告	PowerDNS	-	PowerDNS Authoritative Server の common_startup.cc におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0206	2012-02-21 15:50	2012-01-10	Show	GitHub Exploit DB Packet Storm

251703	7.2	危険	マイクロソフト	-	Microsoft Windows のカーネルモードドライバにおける権限昇格の脆弱性	CWE-399 リソース管理の問題	CVE-2012-0154	2012-02-20 18:30	2012-02-14	Show	GitHub Exploit DB Packet Storm

251704	7.2	危険	マイクロソフト	-	Microsoft Windows の afd.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0148	2012-02-20 18:28	2012-02-14	Show	GitHub Exploit DB Packet Storm

251705	7.2	危険	マイクロソフト	-	Microsoft Windows Server 2003 の afd.sys における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2012-0149	2012-02-20 18:27	2012-02-14	Show	GitHub Exploit DB Packet Storm

251706	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 6 から 9 におけるコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2012-0010	2012-02-20 18:24	2012-02-14	Show	GitHub Exploit DB Packet Storm

251707	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 7 から 9 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0011	2012-02-20 18:22	2012-02-14	Show	GitHub Exploit DB Packet Storm

251708	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 9 におけるデータを読まれる脆弱性	CWE-200 情報漏えい	CVE-2012-0012	2012-02-20 18:20	2012-02-14	Show	GitHub Exploit DB Packet Storm

251709	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0155	2012-02-20 18:18	2012-02-14	Show	GitHub Exploit DB Packet Storm

251710	4.3	警告	マイクロソフト	-	Microsoft SharePoint Foundation 2010 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0017	2012-02-20 18:16	2012-02-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258531	7.5	HIGH Network	htacg	tidy	In Tidy 5.5.31, the IsURLCodePoint function in attrs.c allows attackers to cause a denial of service (Segmentation Fault), as demonstrated by an invalid ISALNUM argument.	CWE-20 Improper Input Validation	CVE-2017-13692	2024-11-21 12:11	2017-08-25	Show	GitHub Exploit DB Packet Storm

258532	7.8	HIGH Local	linux	linux_kernel	net/ipv4/route.c in the Linux kernel 4.13-rc1 through 4.13-rc6 is too late to check for a NULL fi field when RTM_F_FIB_MATCH is set, which allows local users to cause a denial of service (NULL pointe…	CWE-476 NULL Pointer Dereference	CVE-2017-13686	2024-11-21 12:11	2017-08-25	Show	GitHub Exploit DB Packet Storm

258533	6.1	MEDIUM Network	misp	misp	app/View/Helper/CommandHelper.php in MISP before 2.4.79 has persistent XSS via comments. It only impacts the users of the same instance because the comment field is not part of the MISP synchronisati…	CWE-79 Cross-site Scripting	CVE-2017-13671	2024-11-21 12:11	2017-08-25	Show	GitHub Exploit DB Packet Storm

258534	9.8	CRITICAL Network	nexusphp	nexusphp	SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the setanswered parameter to staffbox.php.	CWE-89 SQL Injection	CVE-2017-13669	2024-11-21 12:11	2017-08-25	Show	GitHub Exploit DB Packet Storm

258535	5.5	MEDIUM Local	multicorewareinc	x265	An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax() in MulticoreWare x265 through 2.5, as used in libbpg and other products. A small height value can…	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2017-13666	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

258536	6.5	MEDIUM Network	imagemagick	imagemagick	In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the ReadMATImage function in coders/mat.c, leading to a denial of service (assertion failure and application exi…	CWE-617 Reachable Assertion	CVE-2017-13658	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

258537	5.5	MEDIUM Local	unrealircd	unrealircd	UnrealIRCd 4.0.13 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root accou…	CWE-665 Improper Initialization	CVE-2017-13649	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

258538	6.5	MEDIUM Network	graphicsmagick	graphicsmagick	In GraphicsMagick 1.3.26, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-13648	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

258539	8.8	HIGH Network	graphicsmagick	graphicsmagick	In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value.	CWE-20 Improper Input Validation	CVE-2017-13147	2024-11-21 12:11	2017-08-24	Show	GitHub Exploit DB Packet Storm

258540	6.1	MEDIUM Network	qodeinteractive	bridge	DOM based Cross-site scripting (XSS) vulnerability in the Bridge theme before 11.2 for WordPress allows remote attackers to inject arbitrary JavaScript.	CWE-79 Cross-site Scripting	CVE-2017-13138	2024-11-21 12:11	2017-08-23	Show	GitHub Exploit DB Packet Storm