Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253051	5	警告	The PHP Group	-	PHP の addcslashes 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1864	2010-08-17 17:37	2010-05-3	Show	GitHub Exploit DB Packet Storm

253052	5	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2190	2010-08-17 17:36	2010-05-30	Show	GitHub Exploit DB Packet Storm

253053	6.4	警告	The PHP Group	-	PHP における重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2010-2191	2010-08-17 17:35	2010-05-31	Show	GitHub Exploit DB Packet Storm

253054	5	警告	The PHP Group	-	PHP の Zend Engine における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-1914	2010-08-17 17:34	2010-05-8	Show	GitHub Exploit DB Packet Storm

253055	6.4	警告	The PHP Group	-	PHP の sysvshm 拡張における任意のメモリアドレスを書かれる脆弱性	CWE-399 リソース管理の問題	CVE-2010-1861	2010-08-17 17:33	2010-05-5	Show	GitHub Exploit DB Packet Storm

253056	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-0654	2010-08-16 18:57	2010-02-18	Show	GitHub Exploit DB Packet Storm

253057	7.6	危険	アップル	-	Apple Safari における window オブジェクトの処理に脆弱性	CWE-399 リソース管理の問題	CVE-2010-1939	2010-08-16 15:08	2010-05-12	Show	GitHub Exploit DB Packet Storm

253058	7.6	危険	IBM	-	IBM Lotus Domino Web Access の ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0919	2010-08-16 15:05	2010-03-3	Show	GitHub Exploit DB Packet Storm

253059	4.3	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品における重要な cross-origin 情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1207	2010-08-13 17:15	2010-07-20	Show	GitHub Exploit DB Packet Storm

253060	6.8	警告	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	複数の Mozilla 製品におけるクローム特権で任意の JavaScript コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1215	2010-08-13 17:14	2010-07-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
255131	6.1	MEDIUM Network	finecms	finecms	dayrui FineCms through 5.0.10 has Cross Site Scripting (XSS) in controllers/api.php via the function parameter in a c=api&m=data2 request.	CWE-79 Cross-site Scripting	CVE-2017-11629	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255132	6.5	MEDIUM Network	libtiff	libtiff	In LibTIFF 4.0.8, there is a denial of service vulnerability in the TIFFOpen function. A crafted input will lead to a denial of service attack. During the TIFFOpen process, td_imagelength is not chec…	CWE-20 Improper Input Validation	CVE-2017-11613	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255133	7.8	HIGH Local	php	php	In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, a stack-based buffer overflow in the zend_ini_do_op() function in Zend/zend_ini_parser.c could cause a denial of service or potentiall…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-11628	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255134	5.5	MEDIUM Local	qpdf_project	qpdf	A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the PointerHolder function in PointerHolder.hh…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-11627	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255135	5.5	MEDIUM Local	qpdf_project	qpdf	A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in …	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-11626	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255136	5.5	MEDIUM Local	qpdf_project	qpdf	A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in Q…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-11625	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255137	5.5	MEDIUM Local	qpdf_project	qpdf	A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in …	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2017-11624	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255138	6.1	MEDIUM Network	atmail	atmail	Cross-site scripting (XSS) vulnerability in atmail prior to version 7.8.0.2 allows remote attackers to inject arbitrary web script or HTML within the body of an email via an IMG element with both sin…	CWE-79 Cross-site Scripting	CVE-2017-11617	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255139	9.8	CRITICAL Network	medhost	connex	MEDHOST Connex contains hard-coded credentials that are used for customer database access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with the da…	CWE-798 Use of Hard-coded Credentials	CVE-2017-11614	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

255140	7.8	HIGH Local	appsec-labs	appuse	AppUse 4.0 allows shell command injection via a proxy field.	CWE-78 OS Command	CVE-2017-11566	2024-11-21 12:08	2017-07-26	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed