Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227901 7.5 危険 sisfo kampus - Sisfo Kampus 2006 の blanko.preview.php における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4820 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
227902 4.3 警告 txx cms - Txx CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4819 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
227903 7.5 危険 txx cms - Txx CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4818 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
227904 7.5 危険 tlm cms - TLM CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4808 2012-12-20 18:33 2007-09-11 Show GitHub Exploit DB Packet Storm
227905 5 警告 ソフォス - Sophos Anti-Virus のウィルス検出エンジンにおけるマルウェアの検出を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4787 2012-12-20 18:33 2007-09-10 Show GitHub Exploit DB Packet Storm
227906 7.5 危険 tim jackson - PHPOF の dbmodules/DB_adodb.class.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4763 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
227907 7.5 危険 phpmytourney - phpMytourney の menu.php における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4757 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
227908 5 警告 Thomson - Thomson ST 2030 SIP 電話機におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-4753 2012-12-20 18:33 2007-09-7 Show GitHub Exploit DB Packet Storm
227909 6.8 警告 ppstream - PPStream の PowerPlayer.dll ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4748 2012-12-20 18:33 2007-09-6 Show GitHub Exploit DB Packet Storm
227910 9.3 危険 telecom italy - Telecom Italy Alice Messenger の Hp.Revolution.RegistryManager.dll 1 におけるレジストリキーを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4740 2012-12-20 18:33 2007-09-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223461 7.5 HIGH
Network 		gnupg
sks_keyserver_project
fedoraproject
opensuse
f5 		gnupg
sks_keyserver
fedora
leap
traffix_signaling_delivery_controller 		Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the… CWE-295
Improper Certificate Validation  		CVE-2019-13050 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223462 7.8 HIGH
Local 		toaruos_project toaruos An integer wrap in kernel/sys/syscall.c in ToaruOS 1.10.10 allows users to map arbitrary kernel pages into userland process space via TOARU_SYS_FUNC_MMAP, leading to escalation of privileges. CWE-190
 Integer Overflow or Wraparound 		CVE-2019-13049 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223463 5.5 MEDIUM
Local 		toaruos_project toaruos kernel/sys/syscall.c in ToaruOS through 1.10.9 allows a denial of service upon a critical error in certain sys_sbrk allocation patterns (involving PAGE_SIZE, and a value less than PAGE_SIZE). CWE-190
 Integer Overflow or Wraparound 		CVE-2019-13048 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223464 7.8 HIGH
Local 		toaruos_project toaruos kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in sys_sysfunc case 9 for TOARU_SYS_FUNC_SETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to r… CWE-862
 Missing Authorization 		CVE-2019-13047 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223465 7.8 HIGH
Local 		toaruos_project toaruos linker/linker.c in ToaruOS through 1.10.9 has insecure LD_LIBRARY_PATH handling in setuid applications. CWE-388
 7PK - Errors 		CVE-2019-13046 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223466 8.1 HIGH
Network 		irssi irssi Irssi before 1.0.8, 1.1.x before 1.1.3, and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server. CWE-416
 Use After Free 		CVE-2019-13045 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223467 6.1 MEDIUM
Network 		mod_auth_mellon_project
oracle
fedoraproject
canonical 		mod_auth_mellon
zfs_storage_appliance_kit
fedora
ubuntu_linux 		mod_auth_mellon through 0.14.2 has an Open Redirect via the login?ReturnTo= substring, as demonstrated by omitting the // after http: in the target URL. CWE-601
Open Redirect 		CVE-2019-13038 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223468 7.8 HIGH
Local 		pandorafms pandora_fms Artica Pandora FMS 7.0 NG before 735 suffers from local privilege escalation due to improper permissions on C:\PandoraFMS and its sub-folders, allowing standard users to create new files. Moreover, t… NVD-CWE-noinfo
CVE-2019-13035 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223469 5.5 MEDIUM
Local 		flightcrew_project flightcrew An issue was discovered in FlightCrew v0.9.2 and earlier. A NULL pointer dereference occurs in GetRelativePathToNcx() or GetRelativePathsToXhtmlDocuments() when a NULL pointer is passed to xc::XMLUri… CWE-476
 NULL Pointer Dereference 		CVE-2019-13032 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223470 8.1 HIGH
Network 		lemonldap-ng
debian 		lemonldap\
debian_linux 		LemonLDAP::NG before 1.9.20 has an XML External Entity (XXE) issue when submitting a notification to the notification server. By default, the notification server is not enabled and has a "deny all" r… CWE-611
XXE 		CVE-2019-13031 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm