Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227971	4.3	警告	シーメンス	-	Siemens Gigaset SE361 WLAN ルータにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4488	2012-12-20 18:33	2007-08-22	Show	GitHub Exploit DB Packet Storm

227972	4.3	警告	WordPress.org	-	WordPress の WordPress Classic テーマの index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4483	2012-12-20 18:33	2007-08-22	Show	GitHub Exploit DB Packet Storm

227973	4.3	警告	WordPress.org	-	WordPress 用の Pool テーマの index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4482	2012-12-20 18:33	2007-08-22	Show	GitHub Exploit DB Packet Storm

227974	4.3	警告	WordPress.org	-	WordPress 用の Blix テーマなどの index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4481	2012-12-20 18:33	2007-08-16	Show	GitHub Exploit DB Packet Storm

227975	4.3	警告	WordPress.org	-	WordPress 用の Sirius テーマの index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4480	2012-12-20 18:33	2007-08-22	Show	GitHub Exploit DB Packet Storm

227976	5	警告	planet technology corp	-	Planet VC-200M VDSL2 ルータの管理インターフェースにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4477	2012-12-20 18:33	2007-08-22	Show	GitHub Exploit DB Packet Storm

227977	3.3	注意	po4a	-	po4a の lib/Locale/Po4a/Po.pm における任意のファイルを上書きされる脆弱性	-	CVE-2007-4462	2012-12-20 18:33	2007-08-15	Show	GitHub Exploit DB Packet Storm

227978	5	警告	toribash	-	Toribash のサーバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4452	2012-12-20 18:33	2007-08-20	Show	GitHub Exploit DB Packet Storm

227979	5	警告	toribash	-	Windows 上で稼動している Toribash のサーバにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4451	2012-12-20 18:33	2007-08-20	Show	GitHub Exploit DB Packet Storm

227980	5	警告	toribash	-	Toribash のサーバにおけるプロトコル違反を誘発される脆弱性	CWE-20 不適切な入力確認	CVE-2007-4450	2012-12-20 18:33	2007-08-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222391	4.6	MEDIUM Physics	linux netapp canonical debian opensuse	linux_kernel h410c_firmware data_availability_services solidfire_\&_hci_management_node active_iq_unified_manager solidfire_baseboard_management_controller ubuntu_linux debia…	An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.	CWE-415 Double Free	CVE-2019-15212	2024-11-21 13:28	2019-08-20	Show	GitHub Exploit DB Packet Storm

222392	4.6	MEDIUM Physics	linux netapp canonical debian opensuse	linux_kernel h410c_firmware data_availability_services solidfire_\&_hci_management_node active_iq_unified_manager solidfire_baseboard_management_controller ubuntu_linux debia…	An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio…	CWE-416 Use After Free	CVE-2019-15211	2024-11-21 13:28	2019-08-20	Show	GitHub Exploit DB Packet Storm

222393	7.5	HIGH Network	kbrw	sweet_xml	The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and Elixir allows attackers to cause a denial of service (resource consumption) via an XML entity expansion attack with an inline DTD.	CWE-776 XML Entity Expansion	CVE-2019-15160	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222394	8.8	HIGH Network	schine.games	mw-oauth2client	In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.	CWE-352 Origin Validation Error	CVE-2019-15150	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222395	9.8	CRITICAL Network	adplug_project fedoraproject	adplug fedora	AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h.	CWE-415 Double Free	CVE-2019-15151	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222396	6.5	MEDIUM Network	gopro	gpmf-parser	GoPro GPMF-parser 1.2.2 has an out-of-bounds write in OpenMP4Source in demo/GPMF_mp4reader.c.	CWE-787 Out-of-bounds Write	CVE-2019-15148	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222397	6.5	MEDIUM Network	gopro	gpmf-parser	GoPro GPMF-parser 1.2.2 has an out-of-bounds read and SEGV in GPMF_Next in GPMF_parser.c.	CWE-125 Out-of-bounds Read	CVE-2019-15147	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222398	6.5	MEDIUM Network	gopro	gpmf-parser	GoPro GPMF-parser 1.2.2 has a heap-based buffer over-read (4 bytes) in GPMF_Next in GPMF_parser.c.	CWE-125 Out-of-bounds Read	CVE-2019-15146	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222399	5.5	MEDIUM Local	djvulibre_project debian fedoraproject canonical opensuse	djvulibre debian_linux fedora ubuntu_linux leap	DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack (application crash via an out-of-bounds read) by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::get…	CWE-125 Out-of-bounds Read	CVE-2019-15145	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222400	9.8	CRITICAL Network	networkgenomics	mitogen	core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. N…	CWE-254 7PK - Security Features	CVE-2019-15149	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed