Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252561	5.1	警告	サイバートラスト株式会社 Carnegie Mellon University (Project Cyrus) レッドハット	-	Cyrus IMAP Server の STARTTLS 実装における暗号化セッションにコマンドを挿入される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1926	2011-08-1 11:02	2011-05-23	Show	GitHub Exploit DB Packet Storm

252562	6.9	警告	GNU Project サイバートラスト株式会社レッドハット	-	bash-doc における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5374	2011-08-1 10:58	2008-12-8	Show	GitHub Exploit DB Packet Storm

252563	2.1	注意	レッドハット fedorahosted.org	-	SSSD の pam_parse_in_data_v2 関数におけるサービス運用妨害 (無限ループ、クラッシュおよびログイン防止) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4341	2011-08-1 10:57	2011-01-25	Show	GitHub Exploit DB Packet Storm

252564	10	危険	rsync.samba.org アップルレッドハット	-	rsync における隠しファイルを読込/書込される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6200	2011-08-1 10:54	2007-12-1	Show	GitHub Exploit DB Packet Storm

252565	7.5	危険	アップル	-	Apple Mac OS X の ICU におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0206	2011-08-1 10:44	2011-06-24	Show	GitHub Exploit DB Packet Storm

252566	6.8	警告	アップル	-	Apple Mac OS X の ImageIO におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-0204	2011-08-1 10:43	2011-06-24	Show	GitHub Exploit DB Packet Storm

252567	6.8	警告	アップル	-	Apple Mac OS X の CoreGraphics における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0202	2011-08-1 10:41	2011-06-24	Show	GitHub Exploit DB Packet Storm

252568	7.5	危険	アップル	-	Apple Mac OS X の CoreFoundation フレームワークにおける一つずれ (off-by-one) エラーの脆弱性	CWE-189 数値処理の問題	CVE-2011-0201	2011-08-1 10:40	2011-06-24	Show	GitHub Exploit DB Packet Storm

252569	6.8	警告	アップル	-	Apple Mac OS X の ColorSync における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-0200	2011-08-1 10:38	2011-06-24	Show	GitHub Exploit DB Packet Storm

252570	6.8	警告	オラクル	-	Oracle Secure Backup における脆弱性	CWE-noinfo 情報不足	CVE-2011-2252	2011-07-29 11:04	2011-07-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
254701	7.5	HIGH Network	string_project	string	The string module is a module that provides extra string operations. The string module is vulnerable to regular expression denial of service when specifically crafted untrusted user input is passed i…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-16116	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254702	7.5	HIGH Network	timespan_project	timespan	The timespan module is vulnerable to regular expression denial of service. Given 50k characters of untrusted user input it will block the event loop for around 10 seconds.	CWE-400 Uncontrolled Resource Consumption	CVE-2017-16115	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254703	7.5	HIGH Network	marked_project	marked	The marked module is vulnerable to a regular expression denial of service. Based on the information published in the public issue, 1k characters can block for around 6 seconds.	CWE-400 Uncontrolled Resource Consumption	CVE-2017-16114	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254704	7.5	HIGH Network	parsejson_project	parsejson	The parsejson module is vulnerable to regular expression denial of service when untrusted user input is passed into it to be parsed.	CWE-20 Improper Input Validation	CVE-2017-16113	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254705	7.5	HIGH Network	content_project	content	The content module is a module to parse HTTP Content-* headers. It is used by the hapijs framework to provide this functionality. The module is vulnerable to regular expression denial of service when…	CWE-400 Uncontrolled Resource Consumption	CVE-2017-16111	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254706	7.5	HIGH Network	weather.swlyons_project	weather.swlyons	weather.swlyons is a simple web server for weather updates. weather.swlyons is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.	CWE-22 Path Traversal	CVE-2017-16110	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254707	5.3	MEDIUM Network	easyquick_project	easyquick	easyquick is a simple web server. easyquick is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. Access is constrained, however, to s…	CWE-22 Path Traversal	CVE-2017-16109	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254708	7.5	HIGH Network	gaoxiaotingtingting_project	gaoxiaotingtingting	gaoxiaotingtingting is an HTTP server. gaoxiaotingtingting is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.	CWE-22 Path Traversal	CVE-2017-16108	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254709	7.5	HIGH Network	pooledwebsocket_project	pooledwebsocket	pooledwebsocket is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.	CWE-22 Path Traversal	CVE-2017-16107	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

254710	7.5	HIGH Network	tmock_project	tmock	tmock is a static file server. tmock is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.	CWE-22 Path Traversal	CVE-2017-16106	2024-11-21 12:15	2018-06-7	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed