Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
255221 7.8 危険 マイクロソフト - Microsoft Windows で稼働している Active Directory の LDAP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-1928 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255222 9.3 危険 マイクロソフト - Microsoft Windows の kernel における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2514 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255223 6.8 警告 マイクロソフト - Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2513 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255224 6.8 警告 マイクロソフト - Microsoft Windows の kernel における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-1127 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255225 10 危険 マイクロソフト - Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-2523 2010-01-4 15:24 2009-11-10 Show GitHub Exploit DB Packet Storm
255226 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
255227 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
255228 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
255561 6.1 MEDIUM
Network 		stivasoft phpjabbers_night_club_booking_software PHPJabbers Night Club Booking Software has stored XSS in the name parameter in the reservations tab. CWE-79
Cross-site Scripting 		CVE-2017-12812 2024-11-21 12:10 2017-12-30 Show GitHub Exploit DB Packet Storm
255562 6.1 MEDIUM
Network 		stivasoft phpjabbers_star_rating_script PHPJabbers Star Rating Script 4.0 has stored XSS via a rating item. CWE-79
Cross-site Scripting 		CVE-2017-12811 2024-11-21 12:10 2017-12-30 Show GitHub Exploit DB Packet Storm
255563 6.1 MEDIUM
Network 		stivasoft phpjabbers_newsletter_script PHPJabbers PHP Newsletter Script 4.2 has stored XSS in lists in the admin panel. CWE-79
Cross-site Scripting 		CVE-2017-12810 2024-11-21 12:10 2017-12-30 Show GitHub Exploit DB Packet Storm
255564 7.8 HIGH
Local 		tracker-software pdf-xchange_viewer The launchURL function in PDF-XChange Viewer 2.5 (Build 314.0) might allow remote attackers to execute arbitrary code via a crafted PDF file. CWE-20
 Improper Input Validation  		CVE-2017-13056 2024-11-21 12:10 2017-12-28 Show GitHub Exploit DB Packet Storm
255565 7.5 HIGH
Network 		siemens simatic_s7-200_firmware
simatic_s7-400pn_v6_firmware
simatic_s7-400h_v6_firmware
simatic_s7-400pn\/dp_v7_firmware
simatic_s7-410_v8_firmware
simatic_s7-300_firmware
simatic_s7-1200_… 		Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually. - CVE-2017-12741 2024-11-21 12:10 2017-12-26 Show GitHub Exploit DB Packet Storm
255566 5.9 MEDIUM
Network 		siemens logo\!_soft_comfort Siemens LOGO! Soft Comfort (All versions before V8.2) lacks integrity verification of software packages downloaded via an unprotected communication channel. This could allow a remote attacker to mani… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2017-12740 2024-11-21 12:10 2017-12-26 Show GitHub Exploit DB Packet Storm
255567 8.8 HIGH
Adjacent 		siemens scalance_xb-200_firmware
scalance_xc-200_firmware
scalance_xp-200_firmware
scalance_xr300-wg_firmware
scalance_xr-500_firmware
scalance_xm-400_firmware
ruggedcom_ros 		A vulnerability has been identified in RUGGEDCOM ROS for RSL910 devices (All versions < ROS V5.0.1), RUGGEDCOM ROS for all other devices (All versions < ROS V4.3.4), SCALANCE XB-200/XC-200/XP-200/XR3… CWE-665
 Improper Initialization 		CVE-2017-12736 2024-11-21 12:10 2017-12-26 Show GitHub Exploit DB Packet Storm
255568 5.9 MEDIUM
Network 		wolfssl
siemens
arubanetworks 		wolfssl
scalance_w1750d_firmware
instant 		wolfSSL prior to version 3.12.2 provides a weak Bleichenbacher oracle when any TLS cipher suite using RSA key exchange is negotiated. An attacker can recover the private key from a vulnerable wolfSSL… CWE-203
 Information Exposure Through Discrepancy 		CVE-2017-13099 2024-11-21 12:10 2017-12-13 Show GitHub Exploit DB Packet Storm
255569 5.9 MEDIUM
Network 		bouncycastle legion-of-the-bouncy-castle-java-crytography-api BouncyCastle TLS prior to version 1.0.3, when configured to use the JCE (Java Cryptography Extension) for cryptographic functions, provides a weak Bleichenbacher oracle when any TLS cipher suite usin… CWE-203
 Information Exposure Through Discrepancy 		CVE-2017-13098 2024-11-21 12:10 2017-12-13 Show GitHub Exploit DB Packet Storm
255570 7.8 HIGH
Local 		qnap qsync A DLL Hijacking vulnerability in QNAP Qsync for Windows (exe) version 4.2.2.0724 and earlier could allow remote attackers to execute arbitrary code on Windows machines. CWE-426
 Untrusted Search Path 		CVE-2017-13070 2024-11-21 12:10 2017-12-12 Show GitHub Exploit DB Packet Storm