Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
254771	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

254772	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

254773	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

254774	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

254775	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
303801	9.8	CRITICAL Network	sillycycle	xlockmore	xlockmore 5.13 and 5.22 segfaults when using libpam-opensc and returns the underlying xsession. This allows unauthorized users access to the X session.	CWE-306 Missing Authentication for Critical Function	CVE-2006-0061	2024-11-21 09:05	2019-11-6	Show	GitHub Exploit DB Packet Storm

303802	7.8	HIGH Local	sudo_project debian redhat	sudo shadow debian_linux enterprise_linux	There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". The user session can be escaped to the parent session by using the TIOCSTI ioctl to …	CWE-20 Improper Input Validation	CVE-2005-4890	2024-11-21 09:05	2019-11-5	Show	GitHub Exploit DB Packet Storm

303803	5.9	MEDIUM Network	google	chrome	SHA-1 is not collision resistant, which makes it easier for context-dependent attackers to conduct spoofing attacks, as demonstrated by attacks on the use of SHA-1 in TLS 1.2. NOTE: this CVE exists …	CWE-326 Inadequate Encryption Strength	CVE-2005-4900	2024-11-21 09:05	2016-10-15	Show	GitHub Exploit DB Packet Storm

303804	-		csilvers	gperftools	Multiple integer overflows in TCMalloc (tcmalloc.cc) in gperftools before 0.4 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large siz…	CWE-189 Numeric Errors	CVE-2005-4895	2024-11-21 09:05	2012-07-26	Show	GitHub Exploit DB Packet Storm

303805	9.8	CRITICAL Network	gnu	glibc	The getgrouplist function in the GNU C library (glibc) before version 2.3.5, when invoked with a zero argument, writes to the passed pointer even if the specified array size is zero, leading to a buf…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2005-3590	2024-11-21 09:02	2019-04-11	Show	GitHub Exploit DB Packet Storm

303806	9.8	CRITICAL Network	twiki	twiki	TWiki allows arbitrary shell command execution via the Include function	CWE-74 Injection	CVE-2005-3056	2024-11-21 09:01	2019-11-1	Show	GitHub Exploit DB Packet Storm

303807	9.8	CRITICAL Network	nvu	nvu	Nvu 0.99+1.0pre uses an old copy of Mozilla XPCOM which can result in multiple security issues.	NVD-CWE-noinfo	CVE-2005-2354	2024-11-21 08:59	2019-11-6	Show	GitHub Exploit DB Packet Storm

303808	8.1	HIGH Network	gs-gpl_project	gs-gpl	I race condition in Temp files was found in gs-gpl before 8.56 addons scripts.	CWE-362 Race Condition	CVE-2005-2352	2024-11-21 08:59	2019-11-2	Show	GitHub Exploit DB Packet Storm

303809	5.5	MEDIUM Local	mutt debian	mutt debian_linux	Mutt before 1.5.20 patch 7 allows an attacker to cause a denial of service via a series of requests to mutt temporary files.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2005-2351	2024-11-21 08:59	2019-11-2	Show	GitHub Exploit DB Packet Storm

303810	6.1	MEDIUM Network	websieve_project	websieve	Cross-site scripting (XSS) vulnerability in websieve v0.62 allows remote attackers to inject arbitrary web script or HTML code in the web user interface.	CWE-79 Cross-site Scripting	CVE-2005-2350	2024-11-21 08:59	2019-11-2	Show	GitHub Exploit DB Packet Storm