Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257221	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1283	2010-06-1 15:44	2010-05-11	Show	GitHub Exploit DB Packet Storm

257222	4.3	警告	レッドハット Glyph & Cog, LLC ターボリナックスサイバートラスト株式会社 CUPS	-	Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2009-0166	2010-06-1 12:01	2009-04-16	Show	GitHub Exploit DB Packet Storm

257223	4.3	警告	Glyph & Cog, LLC アップルサイバートラスト株式会社 CUPS ターボリナックスレッドハット	-	Xpdf および CUPS の JBIG2 デコーダーにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-0147	2010-06-1 12:01	2009-04-16	Show	GitHub Exploit DB Packet Storm

257224	4.3	警告	Glyph & Cog, LLC アップルサイバートラスト株式会社 CUPS ターボリナックスレッドハット	-	Xpdf および CUPS の JBIG2 デコーダーにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-0146	2010-06-1 12:01	2009-04-16	Show	GitHub Exploit DB Packet Storm

257225	4.3	警告	アドビシステムズ	-	Adobe Shockwave Player におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-1282	2010-05-31 18:27	2010-05-11	Show	GitHub Exploit DB Packet Storm

257226	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の iml32.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1281	2010-05-31 18:26	2010-05-11	Show	GitHub Exploit DB Packet Storm

257227	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-1280	2010-05-31 18:26	2010-05-11	Show	GitHub Exploit DB Packet Storm

257228	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-0987	2010-05-31 18:26	2010-05-11	Show	GitHub Exploit DB Packet Storm

257229	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-0986	2010-05-31 18:26	2010-05-11	Show	GitHub Exploit DB Packet Storm

257230	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2010-0130	2010-05-28 18:44	2010-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251561	6.1	MEDIUM Network	wp_editor.md_project	wp_editor.md	The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post.	CWE-79 Cross-site Scripting	CVE-2017-9336	2024-11-21 12:35	2017-06-1	Show	GitHub Exploit DB Packet Storm

251562	7.5	HIGH Network	call-cc	chicken	An incorrect "pair?" check in the Scheme "length" procedure results in an unsafe pointer dereference in all CHICKEN Scheme versions prior to 4.13, which allows an attacker to cause a denial of servic…	CWE-20 Improper Input Validation	CVE-2017-9334	2024-11-21 12:35	2017-06-1	Show	GitHub Exploit DB Packet Storm

251563	5.4	MEDIUM Network	epesi	epesi	The Agenda component in Telaxus EPESI 1.8.2 and earlier has a Stored Cross-site Scripting (XSS) vulnerability in modules/Utils/RecordBrowser/RecordBrowserCommon_0.php, which allows remote attackers t…	CWE-79 Cross-site Scripting	CVE-2017-9331	2024-11-21 12:35	2017-06-1	Show	GitHub Exploit DB Packet Storm

251564	6.5	MEDIUM Network	allen_disk_project	allen_disk	SSRF vulnerability in remotedownload.php in Allen Disk 1.6 allows remote authenticated users to conduct port scans and access intranet servers via a crafted file parameter.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2017-9307	2024-11-21 12:35	2017-05-31	Show	GitHub Exploit DB Packet Storm

251565	6.1	MEDIUM Network	syspass	syspass	inc/SP/Html/Html.class.php in sysPass 2.1.9 allows remote attackers to bypass the XSS filter, as demonstrated by use of an "<svg/onload=" substring instead of an "<svg onload=" substring.	CWE-79 Cross-site Scripting	CVE-2017-9306	2024-11-21 12:35	2017-05-31	Show	GitHub Exploit DB Packet Storm

251566	6.1	MEDIUM Network	tiki	tikiwiki_cms\/groupware	lib/core/TikiFilter/PreventXss.php in Tiki Wiki CMS Groupware 16.2 allows remote attackers to bypass the XSS filter via padded zero characters, as demonstrated by an attack on tiki-batch_send_newslet…	CWE-79 Cross-site Scripting	CVE-2017-9305	2024-11-21 12:35	2017-05-31	Show	GitHub Exploit DB Packet Storm

251567	7.5	HIGH Network	virustotal	yara	libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers to cause a denial of service (stack consumption) via a crafted rule that is mishandled in the _yr_re_emit function.	CWE-674 Uncontrolled Recursion	CVE-2017-9304	2024-11-21 12:35	2017-05-31	Show	GitHub Exploit DB Packet Storm

251568	6.1	MEDIUM Network	laravel	laravel	Laravel 5.4.x before 5.4.22 does not properly constrain the host portion of a password-reset URL, which makes it easier for remote attackers to conduct phishing attacks by specifying an attacker-cont…	CWE-20 Improper Input Validation	CVE-2017-9303	2024-11-21 12:35	2017-05-30	Show	GitHub Exploit DB Packet Storm

251569	5.5	MEDIUM Local	realnetworks	realplayer	RealPlayer 16.0.2.32 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp4 file.	CWE-369 Divide By Zero	CVE-2017-9302	2024-11-21 12:35	2017-05-30	Show	GitHub Exploit DB Packet Storm

251570	7.8	HIGH Local	videolan	vlc_media_player	plugins\audio_filter\libmpgatofixed32_plugin.dll in VideoLAN VLC media player 2.2.4 allows remote attackers to cause a denial of service (invalid read and application crash) or possibly have unspecif…	CWE-125 Out-of-bounds Read	CVE-2017-9301	2024-11-21 12:35	2017-05-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed