Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252491	4.3	警告	オラクル	-	複数の Oracle 製品の Oracle Help コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2011-0785	2011-05-11 10:52	2011-04-19	Show	GitHub Exploit DB Packet Storm

252492	-	-	Wireshark	-	Wireshark に脆弱性	-	-	2011-05-11 10:51	2011-04-19	Show	GitHub Exploit DB Packet Storm

252493	6.8	警告	LibTIFF レッドハット	-	LibTIFF の OJPEG デコーダにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-5022	2011-05-11 10:50	2011-04-18	Show	GitHub Exploit DB Packet Storm

252494	2.6	注意	株式会社ロックオン	-	EC-CUBE におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1325	2011-05-10 11:01	2011-05-10	Show	GitHub Exploit DB Packet Storm

252495	4	警告	バッファロー	-	複数のバッファロー社製ルータにおけるクロスサイト・リクエスト・フォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2011-1324	2011-05-10 10:55	2011-04-19	Show	GitHub Exploit DB Packet Storm

252496	6.8	警告	Mutt オラクル	-	mutt の mutt_ssl.c における SSH サーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2009-3765	2011-05-10 10:49	2009-10-23	Show	GitHub Exploit DB Packet Storm

252497	9.3	危険	オラクル Erik de Castro Lopo Nullsoft	-	Winamp などで利用される libsndfile の aiff_read_header におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1791	2011-05-10 10:49	2009-05-26	Show	GitHub Exploit DB Packet Storm

252498	9.3	危険	オラクル Erik de Castro Lopo Nullsoft	-	Winamp などで利用される libsndfile の voc_read_header におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1788	2011-05-10 10:48	2009-05-26	Show	GitHub Exploit DB Packet Storm

252499	9.3	危険	オラクル Erik de Castro Lopo Nullsoft	-	Winamp などで利用される libsndfile における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0186	2011-05-10 10:47	2009-03-5	Show	GitHub Exploit DB Packet Storm

252500	-	-	アップル	-	Apple Mac OS X における脆弱性に対するアップデート	-	-	2011-05-10 10:46	2011-04-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254961	8.8	HIGH Network	imagemagick canonical	imagemagick ubuntu_linux	ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadOneMNGImage in coders/png.c.	CWE-476 NULL Pointer Dereference	CVE-2017-15017	2024-11-21 12:13	2017-10-5	Show	GitHub Exploit DB Packet Storm

254962	8.8	HIGH Network	imagemagick canonical	imagemagick ubuntu_linux	ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadEnhMetaFile in coders/emf.c.	CWE-476 NULL Pointer Dereference	CVE-2017-15016	2024-11-21 12:13	2017-10-5	Show	GitHub Exploit DB Packet Storm

254963	8.8	HIGH Network	imagemagick canonical	imagemagick ubuntu_linux	ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in PDFDelegateMessage in coders/pdf.c.	CWE-476 NULL Pointer Dereference	CVE-2017-15015	2024-11-21 12:13	2017-10-5	Show	GitHub Exploit DB Packet Storm

254964	7.5	HIGH Network	qt	qt	The named pipes in qtsingleapp in Qt 5.x, as used in qBittorrent and SugarSync, are configured for remote access and allow remote attackers to cause a denial of service (application crash) via an uns…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-15011	2024-11-21 12:13	2017-10-4	Show	GitHub Exploit DB Packet Storm

254965	7.5	HIGH Network	salesforce	tough-cookie	A ReDoS (regular expression denial of service) flaw was found in the tough-cookie module before 2.3.3 for Node.js. An attacker that is able to make an HTTP request using a specially crafted cookie ma…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-15010	2024-11-21 12:13	2017-10-4	Show	GitHub Exploit DB Packet Storm

254966	6.1	MEDIUM Network	paessler	prtg_network_monitor	PRTG Network Monitor version 17.3.33.2830 is vulnerable to reflected Cross-Site Scripting on error.htm (the error page), via the errormsg parameter.	CWE-79 Cross-site Scripting	CVE-2017-15009	2024-11-21 12:13	2017-10-4	Show	GitHub Exploit DB Packet Storm

254967	4.8	MEDIUM Network	paessler	prtg_network_monitor	PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored Cross-Site Scripting on all sensor titles, related to incorrect error handling for a %00 in the SRC attribute of an IMG element.	CWE-79 Cross-site Scripting	CVE-2017-15008	2024-11-21 12:13	2017-10-4	Show	GitHub Exploit DB Packet Storm

254968	6.5	MEDIUM Network	graphicsmagick debian	graphicsmagick debian_linux	GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (excessive memory allocation) because of an integer underflow in ReadPICTImage in coders/pict.c.	CWE-191 Integer Underflow (Wrap or Wraparound)	CVE-2017-14997	2024-11-21 12:13	2017-10-4	Show	GitHub Exploit DB Packet Storm

254969	6.5	MEDIUM Network	graphicsmagick debian	graphicsmagick debian_linux	ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted DICOM image, related to the ability of DCM_ReadNonN…	CWE-476 NULL Pointer Dereference	CVE-2017-14994	2024-11-21 12:13	2017-10-4	Show	GitHub Exploit DB Packet Storm

254970	5.5	MEDIUM Local	linux	linux_kernel	The sg_ioctl function in drivers/scsi/sg.c in the Linux kernel before 4.13.4 allows local users to obtain sensitive information from uninitialized kernel heap-memory locations via an SG_GET_REQUEST_T…	CWE-200 Information Exposure	CVE-2017-14991	2024-11-21 12:13	2017-10-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed