Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257711	9.3	危険	マイクロソフト	-	Microsoft Windows の kernel における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2514	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257712	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel の Graphics Device Interface (GDI) における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-2513	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257713	6.8	警告	マイクロソフト	-	Microsoft Windows の kernel における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1127	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257714	10	危険	マイクロソフト	-	Microsoft Windows の License Logging Server (llssrv.exe) における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2009-2523	2010-01-4 15:24	2009-11-10	Show	GitHub Exploit DB Packet Storm

257715	9.3	危険	マイクロソフト	-	Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-2512	2010-01-4 15:23	2009-11-10	Show	GitHub Exploit DB Packet Storm

257716	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2722	2010-01-4 14:56	2009-08-10	Show	GitHub Exploit DB Packet Storm

257717	10	危険	アップル VMware サン・マイクロシステムズ	-	Sun Java SE の Provider クラスにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2009-2723	2010-01-4 14:55	2009-08-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
249281	7.5	HIGH Network	squid-cache debian canonical	squid debian_linux ubuntu_linux	The Squid Software Foundation Squid HTTP Caching Proxy version prior to version 4.0.23 contains a NULL Pointer Dereference vulnerability in HTTP Response X-Forwarded-For header processing that can re…	CWE-476 NULL Pointer Dereference	CVE-2018-1000027	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249282	7.7	HIGH Network	linux canonical redhat debian	linux_kernel ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server debian_linux	Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmwar…	CWE-20 Improper Input Validation	CVE-2018-1000026	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249283	8.1	HIGH Network	firebase_admin_sdk_for_php_project	firebase_admin_sdk_for_php	Jerome Gamez Firebase Admin SDK for PHP version from 3.2.0 to 3.8.0 contains a Incorrect Access Control vulnerability in src/Firebase/Auth/IdTokenVerifier.php does not verify for token signature that…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2018-1000025	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249284	7.5	HIGH Network	squid-cache debian canonical	squid debian_linux ubuntu_linux	The Squid Software Foundation Squid HTTP Caching Proxy version 3.0 to 3.5.27, 4.0 to 4.0.22 contains a Incorrect Pointer Handling vulnerability in ESI Response Processing that can result in Denial of…	NVD-CWE-noinfo	CVE-2018-1000024	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249285	5.3	MEDIUM Network	insight.bitpay	insight-api	Bitpay/insight-api Insight-api version 5.0.0 and earlier contains a CWE-20: input validation vulnerability in transaction broadcast endpoint that can result in Full Path Disclosure. This attack appea…	CWE-20 Improper Input Validation	CVE-2018-1000023	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249286	5.3	MEDIUM Network	electrum	bitcoin_wallet	Electrum Technologies GmbH Electrum Bitcoin Wallet version prior to version 3.0.5 contains a Missing Authorization vulnerability in JSONRPC interface that can result in Bitcoin theft, if the user's w…	CWE-862 Missing Authorization	CVE-2018-1000022	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249287	5.0	MEDIUM Network	git-scm	git	GIT version 2.15.1 and earlier contains a Input Validation Error vulnerability in Client that can result in problems including messing up terminal configuration to RCE. This attack appear to be explo…	CWE-20 Improper Input Validation	CVE-2018-1000021	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249288	6.1	MEDIUM Network	open-emr	openemr	OpenEMR version 5.0.0 contains a Cross Site Scripting (XSS) vulnerability in open-flash-chart.swf and _posteddata.php that can result in . This vulnerability appears to have been fixed in 5.0.0 Patch…	CWE-79 Cross-site Scripting	CVE-2018-1000020	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249289	8.8	HIGH Network	open-emr	openemr	OpenEMR version 5.0.0 contains a OS Command Injection vulnerability in fax_dispatch.php that can result in OS command injection by an authenticated attacker with any role. This vulnerability appears …	CWE-78 OS Command	CVE-2018-1000019	2024-11-21 12:39	2018-02-10	Show	GitHub Exploit DB Packet Storm

249290	3.6	LOW Local	python canonical	python ubuntu_linux	Python 2.7.14 is vulnerable to a Heap-Buffer-Overflow as well as a Heap-Use-After-Free. Python versions prior to 2.7.14 may also be vulnerable and it appears that Python 2.7.17 and prior may also be …	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2018-1000030	2024-11-21 12:39	2018-02-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed