Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227861	5	警告	Gilles Vollant	-	WinImage におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-4964	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227862	9.3	危険	Gilles Vollant	-	WinImage におけるコピー先のファイル名を偽造される脆弱性	CWE-Other その他	CVE-2007-4963	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227863	9.3	危険	Gilles Vollant	-	WinImage におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4962	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227864	4.3	警告	TinyWebGallery	-	TWG におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4958	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227865	7.5	危険	simpcms	-	SimpCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4953	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227866	5.1	警告	webmedia explorer	-	webmex における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4948	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227867	6.8	警告	phpffl	-	phpFFL における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4935	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227868	4.6	警告	phpffl	-	phpFFL における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4934	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227869	7.5	危険	shop-script	-	Shop-Script の includes/admin/sub/conf_appearence.php における任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2007-4933	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

227870	7.5	危険	shop-script	-	Shop-Script の admin.php における admin パネルへアクセスされる脆弱性	CWE-20 不適切な入力確認	CVE-2007-4932	2012-12-20 18:33	2007-09-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223371	9.8	CRITICAL Network	citrix	sd-wan netscaler_sd-wan	Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 2 of 6).	CWE-78 OS Command	CVE-2019-12986	2024-11-21 13:23	2019-07-17	Show	GitHub Exploit DB Packet Storm

223372	9.8	CRITICAL Network	citrix	sd-wan netscaler_sd-wan	Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 1 of 6).	CWE-78 OS Command	CVE-2019-12985	2024-11-21 13:23	2019-07-17	Show	GitHub Exploit DB Packet Storm

223373	6.1	MEDIUM Network	ht2labs	learning_locker	In HT2 Labs Learning Locker 3.15.1, it's possible to inject malicious HTML and JavaScript code into the DOM of the website via the PATH_INFO to the dashboards/ URI.	CWE-79 Cross-site Scripting	CVE-2019-12834	2024-11-21 13:23	2019-07-17	Show	GitHub Exploit DB Packet Storm

223374	6.5	MEDIUM Network	digium	certified_asterisk asterisk	Buffer overflow in res_pjsip_messaging in Digium Asterisk versions 13.21-cert3, 13.27.0, 15.7.2, 16.4.0 and earlier allows remote authenticated users to crash Asterisk by sending a specially crafted …	CWE-787 Out-of-bounds Write	CVE-2019-12827	2024-11-21 13:23	2019-07-13	Show	GitHub Exploit DB Packet Storm

223375	7.8	HIGH Local	mikogo	mikogo	The Windows versions of Snapview Mikogo, versions before 5.10.2 are affected by insecure implementations which allow local attackers to escalate privileges.	CWE-269 Improper Privilege Management	CVE-2019-12731	2024-11-21 13:23	2019-07-13	Show	GitHub Exploit DB Packet Storm

223376	9.8	CRITICAL Network	symantec	message_gateway	Symantec Messaging Gateway, prior to 10.7.1, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software applicatio…	NVD-CWE-noinfo	CVE-2019-12751	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223377	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux and macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges.…	CWE-78 OS Command	CVE-2019-12579	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223378	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openv…	CWE-88 Argument Injection	CVE-2019-12578	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223379	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The macOS…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-12577	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223380	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openv…	CWE-426 Untrusted Search Path	CVE-2019-12576	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed