Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228021 4.3 警告 ZyXEL - Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4318 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228022 4.3 警告 ZyXEL - Zyxel Zywall 2 デバイス上で稼動する ZyNOS の管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-4317 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228023 4.3 警告 ZyXEL - Zyxel Zywall 2 上で稼動する ZyNOS の管理インターフェースにおける管理アクションを実行される脆弱性 - CVE-2007-4316 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228024 6.8 警告 pixlie - Pixlie の pixlie.php におけるリモートディレクトリツリーのファイルを読み込まれる脆弱性 - CVE-2007-4314 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228025 4.3 警告 サン・マイクロシステムズ - Sun Solaris の finger デーモン における特定の非標準 GECOS フィールドを伴うアカウントを全てリスト化される脆弱性 - CVE-2007-4310 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228026 4.3 警告 Lamp Design - Storesprite におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4307 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228027 4.3 警告 The phpMyAdmin Project - phpMyAdmin におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4306 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228028 6.2 警告 systrace
Todd C. Miller
sysjail		 - NetBSD および OpenBSD 上で稼動している Systrace の Sudo monitor mode などにおけるシステムコール割り込みを無効にされる脆弱性 - CVE-2007-4305 2012-12-20 18:33 2007-08-13 Show GitHub Exploit DB Packet Storm
228029 6.8 警告 サン・マイクロシステムズ - Sun Java System Portal Server における任意の Java メソッドを実行される脆弱性 - CVE-2007-4289 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
228030 5 警告 s9y - Serendipity の entryproperties プラグインにおけるパスワード保護を回避される脆弱性 - CVE-2007-4282 2012-12-20 18:33 2007-08-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223821 6.1 MEDIUM
Network 		zyxel uag2100_firmware
uag4100_firmware
uag5100_firmware
usg110_firmware
usg210_firmware
usg310_firmware
usg1100_firmware
usg1900_firmware
usg2200-vpn_firmware 		A reflective Cross-site scripting (XSS) vulnerability in the free_time_failed.cgi CGI program in selected Zyxel ZyWall, USG, and UAG devices allows remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2019-12581 2024-11-21 13:23 2019-06-28 Show GitHub Exploit DB Packet Storm
223822 8.1 HIGH
Network 		keyidentity linotp KeyIdentity LinOTP before 2.10.5.3 has Incorrect Access Control (issue 1 of 2). CWE-294
Authentication Bypass by Capture-replay  		CVE-2019-12887 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223823 9.1 CRITICAL
Network 		zyxel uag2100_firmware
uag4100_firmware
uag5100_firmware
usg110_firmware
usg210_firmware
usg310_firmware
usg1100_firmware
usg1900_firmware
usg2200-vpn_firmware
zywall_vpn100_firm… 		Missing Access Control in the "Free Time" component of several Zyxel UAG, USG, and ZyWall devices allows a remote attacker to generate guest accounts by directly accessing the account generator. This… CWE-425
 Direct Request ('Forced Browsing') 		CVE-2019-12583 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223824 5.5 MEDIUM
Local 		linux linux_kernel A NULL pointer dereference vulnerability in the function nfc_genl_deactivate_target() in net/nfc/netlink.c in the Linux kernel before 5.1.13 can be triggered by a malicious user-mode program that omi… CWE-476
 NULL Pointer Dereference 		CVE-2019-12984 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223825 6.5 MEDIUM
Network 		libming libming Ming (aka libming) 0.4.8 has a heap buffer overflow and underflow in the decompileCAST function in util/decompile.c in libutil.a. Remote attackers could leverage this vulnerability to cause a denial … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-12982 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223826 8.8 HIGH
Network 		libming libming Ming (aka libming) 0.4.8 has an "fill overflow" vulnerability in the function SWFShape_setLeftFillStyle in blocks/shape.c. CWE-20
 Improper Input Validation  		CVE-2019-12981 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223827 6.5 MEDIUM
Network 		libming libming In Ming (aka libming) 0.4.8, there is an integer overflow (caused by an out-of-range left shift) in the SWFInput_readSBits function in blocks/input.c. Remote attackers could leverage this vulnerabili… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-12980 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223828 7.8 HIGH
Local 		imagemagick
debian
canonical
opensuse 		imagemagick
debian_linux
ubuntu_linux
leap 		ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c. CWE-665
 Improper Initialization 		CVE-2019-12979 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223829 7.8 HIGH
Local 		imagemagick imagemagick ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c. CWE-665
 Improper Initialization 		CVE-2019-12978 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm
223830 7.8 HIGH
Local 		imagemagick imagemagick ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c. CWE-665
 Improper Initialization 		CVE-2019-12977 2024-11-21 13:23 2019-06-27 Show GitHub Exploit DB Packet Storm