Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254321 4.3 警告 アップル
Ruby on Rails project		 - Ruby on Rails の strip_tags 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4214 2010-04-16 16:58 2009-12-7 Show GitHub Exploit DB Packet Storm
254322 4.3 警告 アップル
Ruby on Rails project		 - Ruby on Rails におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3009 2010-04-16 16:58 2009-09-8 Show GitHub Exploit DB Packet Storm
254323 7.5 危険 アップル
Ruby on Rails project		 - Ruby on Rails のダイジェスト認証における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2009-2422 2010-04-16 16:57 2009-07-10 Show GitHub Exploit DB Packet Storm
254324 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0526 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
254325 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0520 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
254326 6.8 警告 アップル - Apple Mac OS X の QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0519 2010-04-16 16:57 2010-03-29 Show GitHub Exploit DB Packet Storm
254327 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0518 2010-04-16 16:56 2010-03-29 Show GitHub Exploit DB Packet Storm
254328 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0517 2010-04-16 16:56 2010-03-29 Show GitHub Exploit DB Packet Storm
254329 6.8 警告 アップル - Apple Mac OS X の QuickTime におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0516 2010-04-15 18:39 2010-03-29 Show GitHub Exploit DB Packet Storm
254330 6.8 警告 アップル - Apple Mac OS X の QuickTime における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0515 2010-04-15 18:39 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255441 7.2 HIGH
Network 		extplorer extplorer Command inject in transfer from another server in extplorer 2.1.9 and prior allows attacker to inject command via the userfile[0] parameter. CWE-77
Command Injection 		CVE-2017-12756 2024-11-21 12:10 2017-08-10 Show GitHub Exploit DB Packet Storm
255442 8.8 HIGH
Network 		asuswrt-merlin asuswrt-merlin Stack buffer overflow in httpd in Asuswrt-Merlin firmware 380.67_0RT-AC5300 and earlier for ASUS devices and ASUS firmware for ASUS RT-AC5300, RT_AC1900P, RT-AC68U, RT-AC68P, RT-AC88U, RT-AC66U, RT-A… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-12754 2024-11-21 12:10 2017-08-10 Show GitHub Exploit DB Packet Storm
255443 8.8 HIGH
Network 		taglib
debian 		taglib
debian_linux 		In TagLib 1.11.1, the rebuildAggregateFrames function in id3v2framefactory.cpp has a pointer to cast vulnerability, which allows remote attackers to cause a denial of service or possibly have unspeci… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2017-12678 2024-11-21 12:10 2017-08-8 Show GitHub Exploit DB Packet Storm
255444 6.1 MEDIUM
Network 		identityserver identityserver3 IdentityServer3 2.4.x, 2.5.x, and 2.6.x before 2.6.1 has XSS in an Angular expression on the authorize response page, which might allow remote attackers to obtain sensitive information about the Iden… CWE-79
Cross-site Scripting 		CVE-2017-12677 2024-11-21 12:10 2017-08-8 Show GitHub Exploit DB Packet Storm
255445 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service. CWE-20
CWE-772
 Improper Input Validation 
 Missing Release of Resource after Effective Lifetime 		CVE-2017-12676 2024-11-21 12:10 2017-08-8 Show GitHub Exploit DB Packet Storm
255446 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to c… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-12675 2024-11-21 12:10 2017-08-8 Show GitHub Exploit DB Packet Storm
255447 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of service. CWE-834
 Excessive Iteration 		CVE-2017-12674 2024-11-21 12:10 2017-08-8 Show GitHub Exploit DB Packet Storm
255448 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-12673 2024-11-21 12:10 2017-08-8 Show GitHub Exploit DB Packet Storm
255449 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service. CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2017-12672 2024-11-21 12:10 2017-08-8 Show GitHub Exploit DB Packet Storm
255450 6.5 MEDIUM
Network 		imagemagick imagemagick In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause … CWE-416
 Use After Free 		CVE-2017-12671 2024-11-21 12:10 2017-08-8 Show GitHub Exploit DB Packet Storm