Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253041 4.3 警告 アップル - Apple Safari におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1778 2010-08-20 18:24 2010-07-30 Show GitHub Exploit DB Packet Storm
253042 7.5 危険 金子 勇 - Winny におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2360 2010-08-20 12:02 2010-08-20 Show GitHub Exploit DB Packet Storm
253043 7.5 危険 金子 勇 - Winny におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2360 2010-08-20 12:02 2010-08-20 Show GitHub Exploit DB Packet Storm
253044 5 警告 金子 勇 - Winny におけるノード情報の処理に関する脆弱性 CWE-Other
その他 		CVE-2010-2362 2010-08-20 12:01 2010-08-20 Show GitHub Exploit DB Packet Storm
253045 5 警告 金子 勇 - Winny における BBS 情報の処理に関する脆弱性 CWE-Other
その他 		CVE-2010-2361 2010-08-20 12:01 2010-08-20 Show GitHub Exploit DB Packet Storm
253046 10 危険 シマンテック
IBM		 - Autonomy KeyView Filter SDK の kvolefio.dll における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-3032 2010-08-19 18:22 2010-03-5 Show GitHub Exploit DB Packet Storm
253047 5 警告 The PHP Group - PHP の phar 拡張における重要な情報を取得される脆弱性 CWE-134
書式文字列の問題 		CVE-2010-2094 2010-08-18 18:26 2010-05-14 Show GitHub Exploit DB Packet Storm
253048 7.5 危険 The PHP Group - PHP の sqlite_single_query および sqlite_array_query 関数における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1868 2010-08-18 18:26 2010-05-7 Show GitHub Exploit DB Packet Storm
253049 7.5 危険 The PHP Group - PHP の dechunk フィルタにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-1866 2010-08-18 18:26 2010-05-2 Show GitHub Exploit DB Packet Storm
253050 5 警告 The PHP Group - PHP の chunk_split 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1862 2010-08-18 18:25 2010-05-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252591 9.8 CRITICAL
Network 		joomla joomla\! In Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a disclosure of a username and password. CWE-90
LDAP Injection 		CVE-2017-14596 2024-11-21 12:13 2017-09-21 Show GitHub Exploit DB Packet Storm
252592 3.7 LOW
Network 		joomla joomla\! In Joomla! before 3.8.0, a logic bug in a SQL query could lead to the disclosure of article intro texts when these articles are in the archived state. NVD-CWE-noinfo
CVE-2017-14595 2024-11-21 12:13 2017-09-21 Show GitHub Exploit DB Packet Storm
252593 9.1 CRITICAL
Network 		libraw libraw In LibRaw through 0.18.4, an out of bounds read flaw related to kodak_65000_load_raw has been reported in dcraw/dcraw.c and internal/dcraw_common.cpp. An attacker could possibly exploit this flaw to … CWE-125
Out-of-bounds Read 		CVE-2017-14608 2024-11-21 12:13 2017-09-21 Show GitHub Exploit DB Packet Storm
252594 8.1 HIGH
Network 		imagemagick
debian
canonical 		imagemagick
debian_linux
ubuntu_linux 		In ImageMagick 7.0.7-4 Q16, an out of bounds read flaw related to ReadTIFFImage has been reported in coders/tiff.c. An attacker could possibly exploit this flaw to disclose potentially sensitive memo… CWE-125
Out-of-bounds Read 		CVE-2017-14607 2024-11-21 12:13 2017-09-21 Show GitHub Exploit DB Packet Storm
252595 6.5 MEDIUM
Network 		gnome
debian 		nautilus
debian_linux 		GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by using the .desktop file extension, as demonstrated by an attack in which a .desktop file's Name field ends in .pdf but this file… CWE-20
 Improper Input Validation  		CVE-2017-14604 2024-11-21 12:13 2017-09-20 Show GitHub Exploit DB Packet Storm
252596 7.5 HIGH
Network 		sap netweaver_application_server_java The Host Control web service in SAP NetWeaver AS JAVA 7.0 through 7.5 allows remote attackers to cause a denial of service (service crash) via a crafted request, aka SAP Security Note 2389181. NVD-CWE-noinfo
CVE-2017-14581 2024-11-21 12:13 2017-09-20 Show GitHub Exploit DB Packet Storm
252597 4.9 MEDIUM
Network 		pragyan_cms_project pragyan_cms Pragyan CMS v3.0 is vulnerable to a Boolean-based SQL injection in cms/admin.lib.php via $_GET['forwhat'], resulting in Information Disclosure. CWE-89
SQL Injection 		CVE-2017-14601 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm
252598 4.9 MEDIUM
Network 		pragyan_cms_project pragyan_cms Pragyan CMS v3.0 is vulnerable to an Error-Based SQL injection in cms/admin.lib.php via $_GET['del_black'], resulting in Information Disclosure. CWE-89
SQL Injection 		CVE-2017-14600 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm
252599 4.8 MEDIUM
Network 		afterlogic webmail
aurora 		AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.php during addition of a domain. CWE-79
Cross-site Scripting 		CVE-2017-14597 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm
252600 7.8 HIGH
Local 		xnview xnview XnView Classic for Windows Version 2.41 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14580 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm