Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228021 4.3 警告 ZyXEL - Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4318 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228022 4.3 警告 ZyXEL - Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-4317 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228023 4.3 警告 ZyXEL - Zyxel Zywall 2 上で稼動する ZyNOS の管理インターフェースにおける管理アクションを実行される脆弱性 - CVE-2007-4316 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228024 6.8 警告 pixlie - Pixlie の pixlie.php におけるリモートディレクトリツリーのファイルを読み込まれる脆弱性 - CVE-2007-4314 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228025 4.3 警告 サン・マイクロシステムズ - Sun Solaris の finger デーモン における特定の非標準 GECOS フィールドを伴うアカウントを全てリスト化される脆弱性 - CVE-2007-4310 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228026 4.3 警告 Lamp Design - Storesprite におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4307 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228027 4.3 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4306 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228028 6.2 警告 systrace
Todd C. Miller
sysjail		 - NetBSD および OpenBSD 上で稼動している Systrace の Sudo monitor mode などにおけるシステムコール割り込みを無効にされる脆弱性 - CVE-2007-4305 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228029 6.8 警告 サン・マイクロシステムズ - Sun Java System Portal Server における任意の Java メソッドを実行される脆弱性 - CVE-2007-4289 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
228030 5 警告 s9y - Serendipity の entryproperties プラグインにおけるパスワード保護を回避される脆弱性 - CVE-2007-4282 2012-12-20 18:33 2007-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223441 5.5 MEDIUM
Local 		imagemagick imagemagick A NULL pointer dereference in the function ReadPANGOImage in coders/pango.c and the function ReadVIDImage in coders/vid.c in ImageMagick 7.0.8-34 allows remote attackers to cause a denial of service … CWE-476
 NULL Pointer Dereference 		CVE-2019-12974 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223442 5.5 MEDIUM
Local 		uclouvain
opensuse
debian
oracle 		openjpeg
leap
debian_linux
database_server
outside_in_technology 		In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_cblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp … CWE-834
 Excessive Iteration 		CVE-2019-12973 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223443 5.5 MEDIUM
Local 		gnu
opensuse
canonical 		binutils
leap
ubuntu_linux 		An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. There is a heap-based buffer over-read in _bfd_doprnt in bfd.c because elf_objec… CWE-125
Out-of-bounds Read 		CVE-2019-12972 2024-11-21 13:23 2019-06-26 Show GitHub Exploit DB Packet Storm
223444 5.3 MEDIUM
Network 		drdteam doomseeker A vulnerability was found in the Sonic Robo Blast 2 (SRB2) plugin (EP_Versions 9 to 11 inclusive) distributed with Doomseeker 1.1 and 1.2. Affected plugin versions did not discard IP packets with an … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-12968 2024-11-21 13:23 2019-06-26 Show GitHub Exploit DB Packet Storm
223445 9.8 CRITICAL
Network 		fehelper_project fehelper FeHelper through 2019-06-19 allows arbitrary code execution during a JSON format operation, as demonstrated by the {"a":(function(){confirm(1)})()} input. CWE-74
Injection 		CVE-2019-12966 2024-11-21 13:23 2019-06-26 Show GitHub Exploit DB Packet Storm
223446 6.1 MEDIUM
Network 		livezilla livezilla LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the ticket.php Subject. CWE-79
Cross-site Scripting 		CVE-2019-12964 2024-11-21 13:23 2019-06-25 Show GitHub Exploit DB Packet Storm
223447 6.1 MEDIUM
Network 		livezilla livezilla LiveZilla Server before 8.0.1.1 is vulnerable to XSS in the chat.php Create Ticket Action. CWE-79
Cross-site Scripting 		CVE-2019-12963 2024-11-21 13:23 2019-06-25 Show GitHub Exploit DB Packet Storm
223448 6.1 MEDIUM
Network 		livezilla livezilla LiveZilla Server before 8.0.1.1 is vulnerable to XSS in mobile/index.php via the Accept-Language HTTP header. CWE-79
Cross-site Scripting 		CVE-2019-12962 2024-11-21 13:23 2019-06-25 Show GitHub Exploit DB Packet Storm
223449 8.8 HIGH
Network 		livezilla livezilla LiveZilla Server before 8.0.1.1 is vulnerable to CSV Injection in the Export Function. CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2019-12961 2024-11-21 13:23 2019-06-25 Show GitHub Exploit DB Packet Storm
223450 9.8 CRITICAL
Network 		livezilla livezilla LiveZilla Server before 8.0.1.1 is vulnerable to SQL Injection in functions.internal.build.inc.php via the parameter p_dt_s_d. CWE-89
SQL Injection 		CVE-2019-12960 2024-11-21 13:23 2019-06-25 Show GitHub Exploit DB Packet Storm