Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257311	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257312	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

257313	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257314	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
246951	10.0	CRITICAL Network	codelibs	fess	codelibs fess version before commit faa265b contains a XML External Entity (XXE) vulnerability in GSA XML file parser that can result in Disclosure of confidential data, denial of service, SSRF, port…	CWE-611 XXE	CVE-2018-1000822	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246952	10.0	CRITICAL Network	micromathematics_project	micromathematics	MicroMathematics version before commit 5c05ac8 contains a XML External Entity (XXE) vulnerability in SMathStudio files that can result in Disclosure of confidential data, denial of service, SSRF, por…	CWE-611 XXE	CVE-2018-1000821	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246953	10.0	CRITICAL Network	neo4j	awesome_procedures_on_cyper	neo4j-contrib neo4j-apoc-procedures version before commit 45bc09c contains a XML External Entity (XXE) vulnerability in XML Parser that can result in Disclosure of confidential data, denial of servic…	CWE-611 XXE	CVE-2018-1000820	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246954	5.4	MEDIUM Network	grafana	grafana	Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser…	CWE-79 Cross-site Scripting	CVE-2018-1000816	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246955	4.3	MEDIUM Network	brave	brave	Brave Software Inc. Brave version version 0.22.810 to 0.24.0 contains a Other/Unknown vulnerability in function ContentSettingsObserver::AllowScript() in content_settings_observer.cc that can result …	CWE-20 Improper Input Validation	CVE-2018-1000815	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246956	7.5	HIGH Network	asset_pipeline_project	asset-pipeline	Asset Pipeline Grails Plugin Asset-pipeline plugin version Prior to 2.14.1.1, 2.15.1 and 3.0.6 contains a Incorrect Access Control vulnerability in Applications deployed in Jetty that can result in D…	CWE-22 Path Traversal	CVE-2018-1000817	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246957	6.5	MEDIUM Network	aiohttp-session_project	aiohttp-session	aio-libs aiohttp-session version 2.6.0 and earlier contains a Other/Unknown vulnerability in EncryptedCookieStorage and NaClCookieStorage that can result in Non-expiring sessions / Infinite lifespan.…	CWE-613 Insufficient Session Expiration	CVE-2018-1000814	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246958	4.8	MEDIUM Network	backdropcms	backdrop_cms	Backdrop CMS version 1.11.0 and earlier contains a Cross Site Scripting (XSS) vulnerability in Sanitization of custom class names used on blocks and layouts. that can result in Execution of JavaScrip…	CWE-79 Cross-site Scripting	CVE-2018-1000813	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246959	8.1	HIGH Network	artica	integria_ims	Artica Integria IMS version 5.0 MR56 Package 58, likely earlier versions contains a CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability in Password recovery process, line 4…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2018-1000812	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm

246960	8.8	HIGH Network	bludit	bludit	bludit version 3.0.0 contains a Unrestricted Upload of File with Dangerous Type vulnerability in Content Upload in Pages Editor that can result in Remote Command Execution. This attack appear to be e…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2018-1000811	2024-11-21 12:40	2018-12-21	Show	GitHub Exploit DB Packet Storm