Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227571 6.8 警告 VideoLAN - VideoLAN VLC の axvlc.dll における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2007-6262 2012-12-20 18:34 2007-11-30 Show GitHub Exploit DB Packet Storm
227572 7.5 危険 snitz forums 2000 - Snitz Forums 2000 の active.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6240 2012-12-20 18:34 2007-12-5 Show GitHub Exploit DB Packet Storm
227573 5 警告 リアルネットワークス - RealNetworks RealPlayer の特定の ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6235 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
227574 7.5 危険 tellmatic - tellmatic における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6231 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
227575 7.5 危険 Rayzz - Rayzz Script の common/classes/class_HeaderHandler.lib.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6230 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
227576 7.5 危険 Rayzz - Rayzz Script の common/classes/class_HeaderHandler.lib.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6229 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
227577 6.8 警告 ヤフー株式会社 - Yahoo! Toolbar の yt.ythelper.2 ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6228 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
227578 7.2 危険 Fabrice Bellard - QEMU における TranslationBlock バッファを上書きされる脆弱性 CWE-119
バッファエラー 		CVE-2007-6227 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
227579 5 警告 リアルネットワークス - RealPlayer に同梱されている rmoc3260.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6224 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
227580 7.5 危険 phpBB - phpBB Garage の garage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6223 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222711 6.8 MEDIUM
Network 		atlassian html_include_and_replace_macro The "HTML Include and replace macro" plugin before 1.5.0 for Confluence Server allows a bypass of the includeScripts=false XSS protection mechanism via vectors involving an IFRAME element. CWE-79
Cross-site Scripting 		CVE-2019-15053 2024-11-21 13:27 2019-08-15 Show GitHub Exploit DB Packet Storm
222712 8.8 HIGH
Network 		axiosys bento4 An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4_AvccAtom class at Core/Ap4AvccAtom.cpp. CWE-125
Out-of-bounds Read 		CVE-2019-15050 2024-11-21 13:27 2019-08-15 Show GitHub Exploit DB Packet Storm
222713 8.8 HIGH
Network 		axiosys bento4 An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the AP4_Dec3Atom class at Core/Ap4Dec3Atom.cpp. CWE-125
Out-of-bounds Read 		CVE-2019-15049 2024-11-21 13:27 2019-08-15 Show GitHub Exploit DB Packet Storm
222714 8.8 HIGH
Network 		axiosys bento4 An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer overflow in the AP4_RtpAtom class at Core/Ap4RtpAtom.cpp. CWE-787
 Out-of-bounds Write 		CVE-2019-15048 2024-11-21 13:27 2019-08-15 Show GitHub Exploit DB Packet Storm
222715 8.8 HIGH
Network 		axiosys bento4 An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer over-read in the function AP4_BitReader::SkipBits at Core/Ap4Utils.cpp. CWE-125
Out-of-bounds Read 		CVE-2019-15047 2024-11-21 13:27 2019-08-15 Show GitHub Exploit DB Packet Storm
222716 6.1 MEDIUM
Network 		sugarcrm sugarcrm SugarCRM Enterprise 9.0.0 allows mobile/error-not-supported-platform.html?desktop_url= XSS. CWE-79
Cross-site Scripting 		CVE-2019-14974 2024-11-21 13:27 2019-08-15 Show GitHub Exploit DB Packet Storm
222717 7.5 HIGH
Network 		zohocorp manageengine_servicedesk_plus Zoho ManageEngine ServiceDesk Plus 10 before 10509 allows unauthenticated sensitive information leakage during Fail Over Service (FOS) replication, aka SD-79989. CWE-287
Improper Authentication 		CVE-2019-15046 2024-11-21 13:27 2019-08-15 Show GitHub Exploit DB Packet Storm
222718 9.8 CRITICAL
Network 		ninjaforms ninjaforms The ninja-forms plugin before 3.3.21.2 for WordPress has SQL injection in the search filter on the submissions page. CWE-89
SQL Injection 		CVE-2019-15025 2024-11-21 13:27 2019-08-15 Show GitHub Exploit DB Packet Storm
222719 7.1 HIGH
Local 		artifex mupdf Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in fz_chartorune in fitz/string.c because pdf/pdf-op-filter.c does not check for a missing string. CWE-125
Out-of-bounds Read 		CVE-2019-14975 2024-11-21 13:27 2019-08-14 Show GitHub Exploit DB Packet Storm
222720 6.5 MEDIUM
Network 		libtiff
debian
fedoraproject
opensuse 		libtiff
debian_linux
fedora
leap 		_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards.… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-14973 2024-11-21 13:27 2019-08-14 Show GitHub Exploit DB Packet Storm