Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254061	9.3	危険	Google	-	Google Chrome における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2556	2010-10-19 14:51	2009-07-16	Show	GitHub Exploit DB Packet Storm

254062	9.3	危険	Google	-	Google Chrome の src/jsregexp.cc におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2555	2010-10-19 14:50	2009-07-16	Show	GitHub Exploit DB Packet Storm

254063	4.3	警告	Google	-	Google Chrome における javascript: URI をブロックしない脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2352	2010-10-19 14:50	2009-02-3	Show	GitHub Exploit DB Packet Storm

254064	9.3	危険	Google	-	Google Chrome の browser kernel におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2121	2010-10-19 14:50	2009-06-22	Show	GitHub Exploit DB Packet Storm

254065	6.8	警告	Google	-	Google Chrome における任意の https サイトになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2009-2071	2010-10-19 14:49	2009-03-23	Show	GitHub Exploit DB Packet Storm

254066	6.4	警告	The PHP Group	-	PHP の zend_ini.c 内にある zend_restore_ini_entry_cb 関数における重要な情報を取得される脆弱性	CWE-Other その他	CVE-2009-2626	2010-10-18 15:22	2009-12-1	Show	GitHub Exploit DB Packet Storm

254067	4	警告	オラクル	-	Oracle iPlanet Web Server におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3544	2010-10-18 12:03	2010-10-18	Show	GitHub Exploit DB Packet Storm

254068	5	警告	ISC, Inc.	-	BIND の ACL の処理に問題	CWE-264 認可・権限・アクセス制御	CVE-2010-0218	2010-10-15 13:24	2010-10-1	Show	GitHub Exploit DB Packet Storm

254069	5.1	警告	K2 Software	-	K2Editor における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3156	2010-10-15 11:22	2010-10-15	Show	GitHub Exploit DB Packet Storm

254070	6.8	警告	kMonos.NET	-	XacRett における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2010-3157	2010-10-15 11:22	2010-10-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
258621	9.8	CRITICAL Network	creolabs	gravity	Creolabs Gravity Version: 1.0 Heap Overflow Potential Code Execution. By creating a large loop whiling pushing data to a buffer, we can break out of the bounds checking of that buffer. When list.join…	CWE-125 Out-of-bounds Read	CVE-2017-1000173	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258622	9.8	CRITICAL Network	creolabs	gravity	Creolabs Gravity Version: 1.0 Use-After-Free Possible code execution. An example of a Heap-Use-After-Free after the 'sublexer' pointer has been freed. Line 542 of gravity_lexer.c. 'lexer' is being us…	CWE-416 Use After Free	CVE-2017-1000172	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258623	5.9	MEDIUM Network	nv-websocket-client_project	nv-websocket-client	The Java WebSocket client nv-websocket-client does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which …	CWE-295 Improper Certificate Validation	CVE-2017-1000209	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258624	8.8	HIGH Network	swagger	swagger-parser swagger-codegen	A vulnerability in Swagger-Parser's (version <= 1.0.30) yaml parsing functionality results in arbitrary code being executed when a maliciously crafted yaml Open-API specification is parsed. This in p…	CWE-502 Deserialization of Untrusted Data	CVE-2017-1000208	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258625	5.5	MEDIUM Local	tcmu-runner_project	tcmu-runner	The tcmu-runner daemon in tcmu-runner version 1.0.5 to 1.2.0 is vulnerable to a local denial of service attack	CWE-20 Improper Input Validation	CVE-2017-1000201	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258626	7.5	HIGH Network	tcmu-runner_project	tcmu-runner	tcmu-runner version 1.0.5 to 1.2.0 is vulnerable to a dbus triggered NULL pointer dereference in the tcmu-runner daemon's on_unregister_handler() function resulting in denial of service	CWE-476 NULL Pointer Dereference	CVE-2017-1000200	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258627	7.5	HIGH Network	tcmu-runner_project	tcmu-runner	tcmu-runner version 0.91 up to 1.20 is vulnerable to information disclosure in handler_qcow.so resulting in non-privileged users being able to check for existence of any file with root privileges.	CWE-200 Information Exposure	CVE-2017-1000199	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258628	7.5	HIGH Network	tcmu-runner_project	tcmu-runner	tcmu-runner daemon version 0.9.0 to 1.2.0 is vulnerable to invalid memory references in the handler_glfs.so handler resulting in denial of service	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-1000198	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258629	9.8	CRITICAL Network	octobercms	october	October CMS build 412 is vulnerable to file path modification in asset move functionality resulting in creating creating malicious files on the server.	CWE-417 Channel and Path Errors	CVE-2017-1000197	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

258630	9.8	CRITICAL Network	octobercms	october	October CMS build 412 is vulnerable to PHP code execution in the asset manager functionality resulting in site compromise and possibly other applications on the server.	CWE-94 Code Injection	CVE-2017-1000196	2024-11-21 12:04	2017-11-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed