Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228081 10 危険 webo - Leo West WEBO の modules/abook/foldertree.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1391 2012-12-20 18:19 2007-03-10 Show GitHub Exploit DB Packet Storm
228082 4.3 警告 Snitz - Snitz Forums 2000 の pop_profile.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1374 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
228083 10 危険 Pegasus Mail - Mercury/32 におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1373 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
228084 10 危険 postguestbook - PHP-Nuke 用の PostGuestbook モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1372 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
228085 6.9 警告 Jon Trulson - Conquest におけるバッファオーバーフローの脆弱性 - CVE-2007-1371 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
228086 6.2 警告 Zend Technologies Ltd. - Zend Platform におけるルート権限を取得される脆弱性 - CVE-2007-1370 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
228087 4.4 警告 Zend Technologies Ltd. - Zend Platform の ini_modifier における system.ini ファイルを変更される脆弱性 - CVE-2007-1369 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
228088 4.3 警告 VirtueMart - VirtueMart の virtuemart_parser.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1361 2012-12-20 18:19 2007-03-8 Show GitHub Exploit DB Packet Storm
228089 6.6 警告 サン・マイクロシステムズ - Sun Fire X2100M2 および X2200M2 用の ipmitool における権限を取得される脆弱性 - CVE-2007-1346 2012-12-20 18:19 2007-03-7 Show GitHub Exploit DB Packet Storm
228090 7.5 危険 webcalendar - Craig Knudsen WebCalendar の includes/functions.php における任意のグローバル変数を設定される脆弱性 - CVE-2007-1343 2012-12-20 18:19 2007-03-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223181 7.8 HIGH
Local 		symantec endpoint_protection Symantec Endpoint Protection, prior to 14.2 RU1 & 12.1 RU6 MP10 and Symantec Endpoint Protection Small Business Edition, prior to 12.1 RU6 MP10c (12.1.7491.7002), may be susceptible to a privilege es… CWE-125
Out-of-bounds Read 		CVE-2019-12750 2024-11-21 13:23 2019-08-1 Show GitHub Exploit DB Packet Storm
223182 8.3 HIGH
Network 		polycom unified_communications_software
united_communications_software 		A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC Software, if exploited, could allow an authenticated, remote… CWE-749
 Exposed Dangerous Method or Function 		CVE-2019-12948 2024-11-21 13:23 2019-07-30 Show GitHub Exploit DB Packet Storm
223183 5.3 MEDIUM
Network 		humhub social_network_kit HumHub Social Network Kit Enterprise v1.3.13 allows remote attackers to find the user accounts existing on any Social Network Kits (including self-hosted ones) by brute-forcing the username after the… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-12743 2024-11-21 13:23 2019-07-30 Show GitHub Exploit DB Packet Storm
223184 5.5 MEDIUM
Local 		sweetscape 010_editor In SweetScape 010 Editor 9.0.1, an integer overflow during the initialization of variables could allow an attacker to cause a denial of service. CWE-190
 Integer Overflow or Wraparound 		CVE-2019-12552 2024-11-21 13:23 2019-07-23 Show GitHub Exploit DB Packet Storm
223185 5.5 MEDIUM
Local 		sweetscape 010_editor In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the Memcpy function (provided by the scripting engine) allows an attacker to overwrite arbitrary mem… CWE-787
 Out-of-bounds Write 		CVE-2019-12551 2024-11-21 13:23 2019-07-23 Show GitHub Exploit DB Packet Storm
223186 8.8 HIGH
Network 		wp-code-highlightjs_project wp-code-highlightjs An issue was discovered in the wp-code-highlightjs plugin through 0.6.2 for WordPress. wp-admin/options-general.php?page=wp-code-highlight-js allows CSRF, as demonstrated by an XSS payload in the hlj… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2019-12934 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223187 9.8 CRITICAL
Network 		proftpd
fedoraproject
debian
siemens 		proftpd
fedora
debian_linux
simatic_cp_1543-1_firmware 		An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-12815 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223188 9.8 CRITICAL
Network 		zeroshell zeroshell Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exp… CWE-78
OS Command  		CVE-2019-12725 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223189 4.8 MEDIUM
Network 		jisiwei i3_firmware A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that … CWE-330
 Use of Insufficiently Random Values 		CVE-2019-12821 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223190 5.6 MEDIUM
Network 		jisiwei i3_firmware A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions performed on the app such as changing a password, and personal information it communicates with the s… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-12820 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm