Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257331	6.8	警告	GNU Project XEmacs サイバートラスト株式会社	-	Emacs および XEmacs における .flc ファイルの処理に関する任意のコードを実行される脆弱性	CWE-DesignError	CVE-2008-2142	2010-02-2 11:43	2008-05-12	Show	GitHub Exploit DB Packet Storm

257332	3.5	注意	Drupal サイバートラスト株式会社	-	Drupal の Menu モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4370	2010-02-2 11:43	2009-12-16	Show	GitHub Exploit DB Packet Storm

257333	3.5	注意	Drupal サイバートラスト株式会社	-	Drupal の Contact モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4369	2010-02-2 11:42	2009-12-16	Show	GitHub Exploit DB Packet Storm

257334	7.5	危険	日立	-	Cosminexus、Processing Kit for XML および Hitachi Developer's Kit for Java におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	-	2010-02-2 11:42	2009-12-22	Show	GitHub Exploit DB Packet Storm

257335	4.3	警告	VMware	-	複数の VMware 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3731	2010-02-1 11:52	2009-12-15	Show	GitHub Exploit DB Packet Storm

257336	10	危険	サイバートラスト株式会社 Linux	-	Linux kernel および gxsnmp パッケージの asn1 の実装における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2008-1673	2010-02-1 11:51	2008-06-10	Show	GitHub Exploit DB Packet Storm

257337	10	危険	ヒューレット・パッカード	-	複数の Symantec 製品の VRTSweb における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2009-3027	2010-02-1 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

257338	9.3	危険	KDE project Glyph & Cog, LLC GNOME Project サイバートラスト株式会社レッドハット	-	Xpdf、gpdf および kpdf の FoFiType1::parse 関数における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4035	2010-01-29 09:54	2009-12-16	Show	GitHub Exploit DB Packet Storm

257339	7.8	危険	Mozilla Foundation	-	Mozilla Firefox/SeaMonkey の GeckoActiveXObject 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-3987	2010-01-29 09:54	2009-12-15	Show	GitHub Exploit DB Packet Storm

257340	7.6	危険	サイバートラスト株式会社 Mozilla Foundation レッドハット	-	Mozilla Firefox/SeaMonkey における任意の JavaScript を実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-3986	2010-01-29 09:54	2009-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
247931	6.1	MEDIUM Network	villagedefrance	opencart-overclocked	OpenCart-Overclocked version <=1.11.1 contains a Cross Site Scripting (XSS) vulnerability in User input entered unsanitised within JS function in the template that can result in Unauthorised actions …	CWE-79 Cross-site Scripting	CVE-2018-1000640	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247932	9.6	CRITICAL Network	latexdraw_project	latexdraw	LatexDraw version <=4.0 contains a XML External Entity (XXE) vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce…	CWE-611 XXE	CVE-2018-1000639	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247933	6.1	MEDIUM Network	1234n	minicms	MiniCMS version 1.1 contains a Cross Site Scripting (XSS) vulnerability in http://example.org/mc-admin/page.php?date={payload} that can result in code injection.	CWE-79 Cross-site Scripting	CVE-2018-1000638	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247934	7.8	HIGH Local	nongnu debian	zutils debian_linux	zutils version prior to version 1.8-pre2 contains a Buffer Overflow vulnerability in zcat that can result in Potential denial of service or arbitrary code execution. This attack appear to be exploita…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2018-1000637	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247935	6.7	MEDIUM Local	openmicroscopy	omero	The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains a Information Exposure Through Sent Data vulnerability in OMERO.server that can result in an Attacker gaining full adminis…	CWE-200 Information Exposure	CVE-2018-1000635	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247936	7.2	HIGH Network	openmicroscopy	omero	The Open Microscopy Environment OMERO.server version 5.4.0 to 5.4.6 contains an Improper Access Control vulnerability in User management that can result in administrative user with privilege restrict…	CWE-269 Improper Privilege Management	CVE-2018-1000634	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247937	6.5	MEDIUM Network	jerryscript	jerryscript	JerryScript version Tested on commit f86d7459d195c8ba58479d1861b0cc726c8b3793. Analysing history it seems that the issue has been present since commit 64a340ffeb8809b2b66bbe32fd443a8b79fdd860 contain…	CWE-476 NULL Pointer Dereference	CVE-2018-1000636	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247938	7.2	HIGH Network	openmicroscopy	omero	The Open Microscopy Environment OMERO.web version prior to 5.4.7 contains an Information Exposure Through Log Files vulnerability in the login form and change password form that can result in User's …	CWE-200 Information Exposure	CVE-2018-1000633	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247939	7.5	HIGH Network	dom4j_project debian oracle redhat netapp	dom4j debian_linux flexcube_investor_servicing retail_integration_bus utilities_framework primavera_p6_enterprise_project_portfolio_management rapid_planning satellite_capsule	dom4j version prior to version 2.1.1 contains a CWE-91: XML Injection vulnerability in Class: Element. Methods: addElement, addAttribute that can result in an attacker tampering with XML documents th…	CWE-91 Blind XPath Injection	CVE-2018-1000632	2024-11-21 12:40	2018-08-21	Show	GitHub Exploit DB Packet Storm

247940	4.3	MEDIUM Network	paloaltonetworks	pan-os	The PAN-OS Management Web Interface in Palo Alto Networks PAN-OS 8.1.2 and earlier may allow an authenticated user to shut down all management sessions, resulting in all logged in users to be redirec…	CWE-20 Improper Input Validation	CVE-2018-10140	2024-11-21 12:40	2018-08-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed