Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251711	4	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0495	2012-01-23 16:11	2012-01-17	Show	GitHub Exploit DB Packet Storm

251712	4	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0491	2012-01-23 16:01	2012-01-17	Show	GitHub Exploit DB Packet Storm

251713	4	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0489	2012-01-23 15:58	2012-01-17	Show	GitHub Exploit DB Packet Storm

251714	4	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0488	2012-01-23 15:57	2012-01-17	Show	GitHub Exploit DB Packet Storm

251715	4	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0487	2012-01-23 15:55	2012-01-17	Show	GitHub Exploit DB Packet Storm

251716	5	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0486	2012-01-23 15:54	2012-01-17	Show	GitHub Exploit DB Packet Storm

251717	4	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0485	2012-01-23 15:52	2012-01-17	Show	GitHub Exploit DB Packet Storm

251718	4	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0120	2012-01-23 15:50	2012-01-17	Show	GitHub Exploit DB Packet Storm

251719	4	警告	オラクル	-	Oracle MySQL の MySQL Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-0119	2012-01-23 15:48	2012-01-17	Show	GitHub Exploit DB Packet Storm

251720	4.3	警告	株式会社グルコース	-	glucose 2 において任意のスクリプトが実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-0313	2012-01-23 12:41	2012-01-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247701	9.1	CRITICAL Network	varnish-cache varnish_cache_project debian	varnish varnish_cache debian_linux	vbf_stp_error in bin/varnishd/cache/cache_fetch.c in Varnish HTTP Cache 4.1.x before 4.1.9 and 5.x before 5.2.1 allows remote attackers to obtain sensitive information from process memory because a V…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8807	2024-11-21 12:34	2017-11-16	Show	GitHub Exploit DB Packet Storm

247702	7.5	HIGH Network	mediawiki debian	mediawiki debian_linux	The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attribute injection attacks via glossary rules.	CWE-20 Improper Input Validation	CVE-2017-8815	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

247703	7.5	HIGH Network	mediawiki debian	mediawiki debian_linux	The language converter in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows attackers to replace text inside tags via a rule definition followed by "a lot of junk."	CWE-20 Improper Input Validation	CVE-2017-8814	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

247704	5.3	MEDIUM Network	mediawiki debian	mediawiki debian_linux	MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows remote attackers to inject > (greater than) characters via the id attribute of a headline.	NVD-CWE-noinfo	CVE-2017-8812	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

247705	6.1	MEDIUM Network	mediawiki debian	mediawiki debian_linux	The implementation of raw message parameter expansion in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 allows HTML mangling attacks.	CWE-20 Improper Input Validation	CVE-2017-8811	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

247706	7.5	HIGH Network	mediawiki debian	mediawiki debian_linux	MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2, when a private wiki is configured, provides different error messages for failed login attempts depending on whether the userna…	CWE-200 Information Exposure	CVE-2017-8810	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

247707	9.8	CRITICAL Network	mediawiki debian	mediawiki debian_linux	api.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected File Download vulnerability.	CWE-74 Injection	CVE-2017-8809	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

247708	6.1	MEDIUM Network	mediawiki debian	mediawiki debian_linux	MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has XSS when the $wgShowExceptionDetails setting is false and the browser sends non-standard URL escaping.	CWE-79 Cross-site Scripting	CVE-2017-8808	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

247709	7.5	HIGH Network	microsoft	asp.net_core	ASP.NET Core 1.0, 1.1, and 2.0 allow an attacker to bypass Cross-origin Resource Sharing (CORS) configurations and retrieve normally restricted content from a web application, aka "ASP.NET Core Infor…	NVD-CWE-noinfo	CVE-2017-8700	2024-11-21 12:34	2017-11-15	Show	GitHub Exploit DB Packet Storm

247710	5.5	MEDIUM Local	postgresql	postgresql	The Debian pg_ctlcluster, pg_createcluster, and pg_upgradecluster scripts, as distributed in the Debian postgresql-common package before 181+deb9u1 for PostgreSQL (and other packages related to Debia…	CWE-59 Link Following	CVE-2017-8806	2024-11-21 12:34	2017-11-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed