Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253941 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の libtheora における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2009-3389 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
253942 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の liboggplay における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3388 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
253943 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品の JavaScript エンジンにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3982 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
253944 9.3 危険 サイバートラスト株式会社
Mozilla Foundation
レッドハット		 - 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3981 2010-01-28 12:16 2009-12-15 Show GitHub Exploit DB Packet Storm
253945 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3980 2010-01-28 12:15 2009-12-15 Show GitHub Exploit DB Packet Storm
253946 10 危険 アドビシステムズ - Adobe Flash Media Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-3792 2010-01-27 10:02 2009-12-18 Show GitHub Exploit DB Packet Storm
253947 5 警告 アドビシステムズ - Adobe Flash Media Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-3791 2010-01-27 10:02 2009-12-18 Show GitHub Exploit DB Packet Storm
253948 5.8 警告 PostgreSQL.org
ターボリナックス
サン・マイクロシステムズ		 - PostgreSQL における X.509 証明書の処理に関する任意の SSL-based PostgreSQL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-4034 2010-01-26 11:48 2009-12-15 Show GitHub Exploit DB Packet Storm
253949 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の do_insn_fetch 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4031 2010-01-26 11:47 2009-11-29 Show GitHub Exploit DB Packet Storm
253950 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux Kernel の r8169 ドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-3613 2010-01-26 11:38 2009-10-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252291 9.1 CRITICAL
Network 		libraw libraw In LibRaw through 0.18.4, an out of bounds read flaw related to kodak_65000_load_raw has been reported in dcraw/dcraw.c and internal/dcraw_common.cpp. An attacker could possibly exploit this flaw to … CWE-125
Out-of-bounds Read 		CVE-2017-14608 2024-11-21 12:13 2017-09-21 Show GitHub Exploit DB Packet Storm
252292 8.1 HIGH
Network 		imagemagick
debian
canonical 		imagemagick
debian_linux
ubuntu_linux 		In ImageMagick 7.0.7-4 Q16, an out of bounds read flaw related to ReadTIFFImage has been reported in coders/tiff.c. An attacker could possibly exploit this flaw to disclose potentially sensitive memo… CWE-125
Out-of-bounds Read 		CVE-2017-14607 2024-11-21 12:13 2017-09-21 Show GitHub Exploit DB Packet Storm
252293 6.5 MEDIUM
Network 		gnome
debian 		nautilus
debian_linux 		GNOME Nautilus before 3.23.90 allows attackers to spoof a file type by using the .desktop file extension, as demonstrated by an attack in which a .desktop file's Name field ends in .pdf but this file… CWE-20
 Improper Input Validation  		CVE-2017-14604 2024-11-21 12:13 2017-09-20 Show GitHub Exploit DB Packet Storm
252294 7.5 HIGH
Network 		sap netweaver_application_server_java The Host Control web service in SAP NetWeaver AS JAVA 7.0 through 7.5 allows remote attackers to cause a denial of service (service crash) via a crafted request, aka SAP Security Note 2389181. NVD-CWE-noinfo
CVE-2017-14581 2024-11-21 12:13 2017-09-20 Show GitHub Exploit DB Packet Storm
252295 4.9 MEDIUM
Network 		pragyan_cms_project pragyan_cms Pragyan CMS v3.0 is vulnerable to a Boolean-based SQL injection in cms/admin.lib.php via $_GET['forwhat'], resulting in Information Disclosure. CWE-89
SQL Injection 		CVE-2017-14601 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm
252296 4.9 MEDIUM
Network 		pragyan_cms_project pragyan_cms Pragyan CMS v3.0 is vulnerable to an Error-Based SQL injection in cms/admin.lib.php via $_GET['del_black'], resulting in Information Disclosure. CWE-89
SQL Injection 		CVE-2017-14600 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm
252297 4.8 MEDIUM
Network 		afterlogic webmail
aurora 		AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.php during addition of a domain. CWE-79
Cross-site Scripting 		CVE-2017-14597 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm
252298 7.8 HIGH
Local 		xnview xnview XnView Classic for Windows Version 2.41 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14580 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm
252299 7.8 HIGH
Local 		stdutility stdu_viewer STDU Viewer 1.6.375 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "Read Access Violation on Control Flow starting at STDUJBIG2File!DllG… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14579 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm
252300 7.8 HIGH
Local 		irfanview irfanview IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ani file, related to "Data from Faulting Address controls Branch Selectio… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-14578 2024-11-21 12:13 2017-09-19 Show GitHub Exploit DB Packet Storm