Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255421	0	注意	アップル	-	Apple Mac OS X の DesktopServices におけるリモートファイルをコピーされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0537	2010-04-13 15:17	2010-03-29	Show	GitHub Exploit DB Packet Storm

255422	6.9	警告	アップル	-	Apple Mac OS X の DesktopServices における disk-quota 制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0064	2010-04-13 15:17	2010-03-29	Show	GitHub Exploit DB Packet Storm

255423	6.9	警告	アップルターボリナックス CUPS	-	CUPS の _cupsGetlang 関数における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0393	2010-04-13 15:17	2010-03-29	Show	GitHub Exploit DB Packet Storm

255424	6.8	警告	アップル	-	Apple Mac OS X の CoreTypes における任意の JavaScript を実行される脆弱性	CWE-Other その他	CVE-2010-0063	2010-04-13 15:17	2010-03-29	Show	GitHub Exploit DB Packet Storm

255425	6.8	警告	アップル	-	Apple Mac OS X の CoreMedia および QuickTime におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0062	2010-04-13 15:17	2010-03-29	Show	GitHub Exploit DB Packet Storm

255426	6.8	警告	アップル	-	Apple Mac OS X の CoreAudio における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0060	2010-04-13 15:16	2010-03-29	Show	GitHub Exploit DB Packet Storm

255427	6.8	警告	アップル	-	Apple Mac OS X の CoreAudio における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0059	2010-04-13 15:16	2010-03-29	Show	GitHub Exploit DB Packet Storm

255428	6.4	警告	アップル	-	Apple Mac OS X の ClamAV におけるシステムにウィルスを取り込む脆弱性	CWE-16 環境設定	CVE-2010-0058	2010-04-13 15:16	2010-03-29	Show	GitHub Exploit DB Packet Storm

255429	7.5	危険	アップル	-	Apple Mac OS X の AFP サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0533	2010-04-13 15:16	2010-03-29	Show	GitHub Exploit DB Packet Storm

255430	7.5	危険	アップル	-	Apple Mac OS X の AFP サーバにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-0057	2010-04-13 15:16	2010-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246981	6.5	MEDIUM Network	imagemagick	imagemagick	In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-9262	2024-11-21 12:35	2017-05-29	Show	GitHub Exploit DB Packet Storm

246982	6.5	MEDIUM Network	imagemagick	imagemagick	In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file.	CWE-772 Missing Release of Resource after Effective Lifetime	CVE-2017-9261	2024-11-21 12:35	2017-05-29	Show	GitHub Exploit DB Packet Storm

246983	6.1	MEDIUM Network	finecms_project	finecms	andrzuk/FineCMS through 2017-05-28 is vulnerable to a reflected XSS in the search page via the text-search parameter to index.php in a route=search action.	CWE-79 Cross-site Scripting	CVE-2017-9252	2024-11-21 12:35	2017-05-29	Show	GitHub Exploit DB Packet Storm

246984	6.1	MEDIUM Network	finecms_project	finecms	andrzuk/FineCMS through 2017-05-28 is vulnerable to a reflected XSS in the sitename parameter to admin.php.	CWE-79 Cross-site Scripting	CVE-2017-9251	2024-11-21 12:35	2017-05-29	Show	GitHub Exploit DB Packet Storm

246985	7.5	HIGH Network	jerryscript	jerryscript	The lexer_process_char_literal function in jerry-core/parser/js/js-lexer.c in JerryScript 1.0 does not skip memory allocation for empty strings, which allows remote attackers to cause a denial of ser…	CWE-476 NULL Pointer Dereference	CVE-2017-9250	2024-11-21 12:35	2017-05-29	Show	GitHub Exploit DB Packet Storm

246986	5.4	MEDIUM Network	allen_disk_project	allen_disk	Cross-site scripting (XSS) vulnerability in Allen Disk 1.6 allows remote authenticated users to inject arbitrary web script or HTML persistently by uploading a crafted HTML file. The attack vector is…	CWE-79 Cross-site Scripting	CVE-2017-9249	2024-11-21 12:35	2017-05-29	Show	GitHub Exploit DB Packet Storm

246987	6.1	MEDIUM Network	aries_networks	qwr-1104_wireless-n_router_firmware	Aries QWR-1104 Wireless-N Router with Firmware Version WRC.253.2.0913 has XSS on the Wireless Site Survey page, exploitable with the name of an access point.	CWE-79 Cross-site Scripting	CVE-2017-9243	2024-11-21 12:35	2017-05-29	Show	GitHub Exploit DB Packet Storm

246988	9.8	CRITICAL Network	canonical	juju	Juju before 1.25.12, 2.0.x before 2.0.4, and 2.1.x before 2.1.3 uses a UNIX domain socket without setting appropriate permissions, allowing privilege escalation by users on the system to root.	CWE-862 Missing Authorization	CVE-2017-9232	2024-11-21 12:35	2017-05-28	Show	GitHub Exploit DB Packet Storm

246989	5.5	MEDIUM Local	linux	linux_kernel	The __ip6_append_data function in net/ipv6/ip6_output.c in the Linux kernel through 4.11.3 is too late in checking whether an overwrite of an skb data structure may occur, which allows local users to…	CWE-20 Improper Input Validation	CVE-2017-9242	2024-11-21 12:35	2017-05-27	Show	GitHub Exploit DB Packet Storm

246990	6.5	MEDIUM Network	exiv2 canonical	exiv2 ubuntu_linux	An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is incorrect, the program assigns pValue_ to 0x0, and the value of pValue() is 0x0. TiffImageEntry::doWriteImage wi…	CWE-369 Divide By Zero	CVE-2017-9239	2024-11-21 12:35	2017-05-26	Show	GitHub Exploit DB Packet Storm