Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257311	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257312	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

257313	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257314	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247381	7.8	HIGH Local	jenkins	github_pull_request_builder	An exposure of sensitive information vulnerability exists in Jenkins GitHub Pull Request Builder Plugin version 1.39.0 and older in GhprbCause.java that allows an attacker with local file system acce…	CWE-200 Information Exposure	CVE-2018-1000142	2024-11-21 12:39	2018-04-5	Show	GitHub Exploit DB Packet Storm

247382	8.8	HIGH Network	microsoft	security_essentials exchange_server forefront_endpoint_protection_2010 intune_endpoint_protection system_center_endpoint_protection windows_defender	A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protect…	CWE-787 Out-of-bounds Write	CVE-2018-0986	2024-11-21 12:39	2018-04-5	Show	GitHub Exploit DB Packet Storm

247383	9.1	CRITICAL Network	i-librarian	i_librarian	I, Librarian version 4.9 and earlier contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access (read, write and delete) to proj…	CWE-269 Improper Privilege Management	CVE-2018-1000141	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247384	9.8	CRITICAL Network	rsyslog debian canonical redhat	librelp debian_linux ubuntu_linux enterprise_linux_desktop enterprise_linux_server_aus enterprise_linux_workstation enterprise_linux_server_tus enterprise_linux_server enterpr…	rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a peer that can result in Remote code execution. This attack appear to be…	CWE-787 Out-of-bounds Write	CVE-2018-1000140	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247385	6.1	MEDIUM Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a Cross Site Scripting (XSS) vulnerability in "id" parameter in stable.php that can result in an attacker using the XSS to send a malicious script to an …	CWE-79 Cross-site Scripting	CVE-2018-1000139	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247386	9.1	CRITICAL Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a SSRF vulnerability in "url" parameter of getFromWeb in functions.php that can result in the attacker abusing functionality on the server to read or upd…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2018-1000138	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247387	8.8	HIGH Network	i-librarian	i_librarian	I, Librarian version 4.8 and earlier contains a Cross site Request Forgery (CSRF) vulnerability in users.php that can result in the password of the admin being forced to be changed without the admini…	CWE-352 Origin Validation Error	CVE-2018-1000137	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247388	8.1	HIGH Network	electronjs	electron	Electron version 1.7 up to 1.7.12; 1.8 up to 1.8.3 and 2.0.0 up to 2.0.0-beta.3 contains an improper handling of values vulnerability in Webviews that can result in remote code execution. This attack…	CWE-20 Improper Input Validation	CVE-2018-1000136	2024-11-21 12:39	2018-03-24	Show	GitHub Exploit DB Packet Storm

247389	7.5	HIGH Network	gnome canonical	networkmanager ubuntu_linux	GNOME NetworkManager version 1.10.2 and earlier contains a Information Exposure (CWE-200) vulnerability in DNS resolver that can result in Private DNS queries leaked to local network's DNS servers, w…	CWE-200 Information Exposure	CVE-2018-1000135	2024-11-21 12:39	2018-03-20	Show	GitHub Exploit DB Packet Storm

247390	7.5	HIGH Network	secluded	trident	Pitchfork version 1.4.6 RC1 contains an Improper Privilege Management vulnerability in Trident Pitchfork components that can result in A standard unprivileged user could gain system administrator per…	CWE-269 Improper Privilege Management	CVE-2018-1000133	2024-11-21 12:39	2018-03-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed