Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252331 4.3 警告 ModSecurity - ModSecurity の PDF XSS 保護機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2009-1903 2011-06-7 10:13 2009-03-12 Show GitHub Exploit DB Packet Storm
252332 7.8 危険 ModSecurity - ModSecurity の multipart processor におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-1902 2011-06-7 10:11 2009-03-12 Show GitHub Exploit DB Packet Storm
252333 5 警告 ModSecurity - ModSecurity モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-5676 2011-06-7 10:08 2010-08-1 Show GitHub Exploit DB Packet Storm
252334 7.5 危険 Ecava - Ecava IntegraXor HMI における認証を回避される脆弱性 CWE-89
SQLインジェクション 		CVE-2011-1562 2011-06-6 14:47 2011-04-5 Show GitHub Exploit DB Packet Storm
252335 6.8 警告 IntelliCom Innovation AB - 複数の IntelliCom 製品の cgi-bin/read.cgi における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4731 2011-06-6 14:46 2011-02-15 Show GitHub Exploit DB Packet Storm
252336 9 危険 IntelliCom Innovation AB - 複数の IntelliCom 製品の cgi-bin/read.cgi における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4732 2011-06-6 14:44 2011-02-15 Show GitHub Exploit DB Packet Storm
252337 6.8 警告 IntelliCom Innovation AB - 複数の IntelliCom 製品の cgi-bin/read.cgi におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-4730 2011-06-6 14:34 2011-02-15 Show GitHub Exploit DB Packet Storm
252338 7.8 危険 Imperva Inc. - Imperva SecureSphere の Web Application Firewall および Database Firewall における intrusion-prevention 機能を回避される脆弱性 CWE-noinfo
情報不足 		CVE-2010-1329 2011-06-6 14:29 2010-04-5 Show GitHub Exploit DB Packet Storm
252339 4.3 警告 Imperva Inc. - Imperva SecureSphere MX Management Server の management GUI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1463 2011-06-6 14:27 2008-03-18 Show GitHub Exploit DB Packet Storm
252340 6.5 警告 バラクーダネットワークス - Barracuda Spam Firewall の Account View ページ内にある index.cgi における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1094 2011-06-6 14:23 2008-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255111 9.8 CRITICAL
Network 		sam2p_project sam2p In sam2p 0.49.3, there is an invalid read of size 2 in the parse_rgb function in in_xpm.cpp. However, this can also cause a write to an illegal address. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14637 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255112 9.8 CRITICAL
Network 		sam2p_project sam2p Because of an integer overflow in sam2p 0.49.3, a loop executes 0xffffffff times, ending with an invalid read of size 1 in the Image::Indexed::sortPal function in image.cpp. However, this also causes… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-14636 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255113 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection st… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14687 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255114 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to execute arbitrary code or cause a denial of service via a crafted .xps file, related to a "User Mode Write AV near NULL starting at wow64!Wow64NotifyDebugger+0x… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14686 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255115 7.8 HIGH
Local 		artifex mupdf Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection st… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14685 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255116 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.7-4 Q16, a memory leak vulnerability was found in the function ReadVIPSImage in coders/vips.c, which allows attackers to cause a denial of service (memory consumption in ResizeMagi… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-14684 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255117 8.8 HIGH
Network 		imagemagick imagemagick GetNextToken in MagickCore/token.c in ImageMagick 7.0.6 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impa… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14682 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255118 5.5 MEDIUM
Local 		p3scan_project p3scan The daemon in P3Scan 3.0_rc1 and earlier creates a p3scan.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to t… CWE-665
 Improper Initialization 		CVE-2017-14681 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255119 7.5 HIGH
Network 		zkteco zktime_web ZKTeco ZKTime Web 2.0.1.12280 allows remote attackers to obtain sensitive employee metadata via a direct request for a PDF document. CWE-200
Information Exposure 		CVE-2017-14680 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm
255120 9.8 CRITICAL
Network 		tapatalk tapatalk SQL Injection vulnerability in mobiquo/lib/classTTForum.php in the Tapatalk plugin before 4.5.8 for MyBB allows an unauthenticated remote attacker to inject arbitrary SQL commands via an XML-RPC enco… CWE-89
SQL Injection 		CVE-2017-14652 2024-11-21 12:13 2017-09-22 Show GitHub Exploit DB Packet Storm