Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252421 6.8 警告 Redback
Apache Software Foundation		 - Apache Archiva および Apache Continuum におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-3449 2011-06-10 09:53 2010-11-24 Show GitHub Exploit DB Packet Storm
252422 5 警告 JSecurity
Apache Software Foundation		 - Apache Shiro および JSecurity におけるアクセス制限を回避される脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-3863 2011-06-10 09:52 2010-11-5 Show GitHub Exploit DB Packet Storm
252423 4.3 警告 Apache Software Foundation - Apache CouchDB の Web 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-3854 2011-06-10 09:52 2011-01-28 Show GitHub Exploit DB Packet Storm
252424 4.3 警告 The Dojo Foundation
Apache Software Foundation		 - Apache Struts などで利用される Dojo におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6726 2011-06-10 09:51 2009-04-9 Show GitHub Exploit DB Packet Storm
252425 4.3 警告 Apache Software Foundation - Apache Struts の LookupDispatchAction、DispatchAction および ActionDispatcher におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-1548 2011-06-10 09:50 2006-03-30 Show GitHub Exploit DB Packet Storm
252426 7.8 危険 Apache Software Foundation - Apache Struts (with BeanUtils) の ActionForm におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-1547 2011-06-10 09:50 2006-03-30 Show GitHub Exploit DB Packet Storm
252427 4.3 警告 Apache Software Foundation
レッドハット		 - Apache Struts におけるクロスサイトスクリプティングの脆弱性 - CVE-2005-3745 2011-06-10 09:49 2005-11-22 Show GitHub Exploit DB Packet Storm
252428 4.6 警告 Linux
レッドハット		 - Linux kernel の bond_select_queue 関数におけるサービス運用妨害 (DoS)の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1581 2011-06-9 10:31 2011-05-18 Show GitHub Exploit DB Packet Storm
252429 10 危険 Google
レッドハット		 - Google Chrome におけるアドレスバーを偽装される脆弱性 CWE-DesignError
CVE-2010-3115 2011-06-9 10:30 2010-08-19 Show GitHub Exploit DB Packet Storm
252430 10 危険 Google
レッドハット		 - Google Chrome の text-editing 実装における脆弱性 CWE-399
リソース管理の問題 		CVE-2010-3114 2011-06-9 10:30 2010-08-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254951 7.5 HIGH
Network 		imagemagick
canonical 		imagemagick
ubuntu_linux 		ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-15033 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254952 9.8 CRITICAL
Network 		imagemagick
canonical 		imagemagick
ubuntu_linux 		ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-15032 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254953 5.5 MEDIUM
Local 		gnu binutils decode_line_info in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (divide-by-zero error … CWE-369
 Divide By Zero 		CVE-2017-15025 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254954 5.5 MEDIUM
Local 		gnu binutils find_abstract_instance_name in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (infinite r… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2017-15024 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254955 5.5 MEDIUM
Local 		gnu binutils read_formatted_entries in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not properly validate the format count, which allows remote atta… CWE-476
 NULL Pointer Dereference 		CVE-2017-15023 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254956 5.5 MEDIUM
Local 		gnu binutils dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, does not validate the DW_AT_name data type, which allows remote attackers to cause a denial of … CWE-476
 NULL Pointer Dereference 		CVE-2017-15022 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254957 5.5 MEDIUM
Local 		gnu binutils bfd_get_debug_link_info_1 in opncls.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service (heap-based b… CWE-125
Out-of-bounds Read 		CVE-2017-15021 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254958 7.8 HIGH
Local 		gnu binutils dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29, mishandles pointers, which allows remote attackers to cause a denial of service (application cr… CWE-125
Out-of-bounds Read 		CVE-2017-15020 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254959 7.8 HIGH
Local 		lame_project lame LAME 3.99.5 has a NULL Pointer Dereference in the hip_decode_init function within libmp3lame/mpglib_interface.c via a malformed mpg file, because of an incorrect calloc call. CWE-476
 NULL Pointer Dereference 		CVE-2017-15019 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm
254960 5.5 MEDIUM
Local 		lame_project lame LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and 3.98 have a heap-based buffer over-read when handling a malformed file in k_34_4 in vbrquantize.c. CWE-125
Out-of-bounds Read 		CVE-2017-15018 2024-11-21 12:13 2017-10-5 Show GitHub Exploit DB Packet Storm