Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228081 7.8 危険 zenturi - Zenturi ProgramChecker の sasatl.dll における任意のファイルをダウンロードされる脆弱性 - CVE-2007-3076 2012-12-20 18:19 2007-06-6 Show GitHub Exploit DB Packet Storm
228082 7.5 危険 phpreactor - Reactor における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3066 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
228083 5 警告 sendcard - SendCard における重要な情報を取得される脆弱性 - CVE-2007-3059 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
228084 6.8 警告 XOOPS - XOOPS 用の icontent モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3057 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
228085 4.3 警告 WebSVN - WebSVN の filedetails.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3056 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
228086 7.5 危険 postnuke software foundation - PostNuke 用の PNphpBB2 モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-3052 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
228087 7.5 危険 revokesoft - RevokeSoft RevokeBB の inc/class_users.php における SQL インジェクションの脆弱性 - CVE-2007-3051 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
228088 10 危険 Vonage - Vonage VoIP Telephone Adapter における管理アクセス権限を取得される脆弱性 - CVE-2007-3047 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
228089 4.3 警告 シマンテック - Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における総当たり攻撃を実行される脆弱性 - CVE-2007-3022 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
228090 7.5 危険 シマンテック - Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における任意の実行可能なファイルを作成される脆弱性 - CVE-2007-3021 2012-12-20 18:19 2007-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223391 4.1 MEDIUM
Local 		linux
redhat
canonical
opensuse
fedoraproject 		linux_kernel
enterprise_linux
ubuntu_linux
leap
fedora 		An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attac… CWE-476
 NULL Pointer Dereference 		CVE-2019-12614 2024-11-21 13:23 2019-06-4 Show GitHub Exploit DB Packet Storm
223392 8.8 HIGH
Network 		bludit bludit Bludit before 3.9.0 allows remote code execution for an authenticated user by uploading a php file while changing the logo through /admin/ajax/upload-logo. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-12548 2024-11-21 13:23 2019-06-4 Show GitHub Exploit DB Packet Storm
223393 7.5 HIGH
Network 		icewarp mail_server IceWarp Mail Server through 10.4.4 is prone to a local file inclusion vulnerability via webmail/calendar/minimizer/index.php?style=..%5c directory traversal. CWE-22
Path Traversal 		CVE-2019-12593 2024-11-21 13:23 2019-06-4 Show GitHub Exploit DB Packet Storm
223394 7.6 HIGH
Network 		netgear insight NETGEAR Insight Cloud with firmware before Insight 5.6 allows remote authenticated users to achieve command injection. CWE-77
Command Injection 		CVE-2019-12591 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223395 8.8 HIGH
Local 		firejail_project firejail In Firejail before 0.9.60, seccomp filters are writable inside the jail, leading to a lack of intended seccomp restrictions for a process that is joined to the jail after a filter has been modified b… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-12589 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223396 9.8 CRITICAL
Network 		apcupsd
netgate 		apcupsd
pfsense 		Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an Arbitrary Command Execution issue in apcupsd_status.php. CWE-78
OS Command  		CVE-2019-12585 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223397 6.1 MEDIUM
Network 		apcupsd
netgate 		apcupsd
pfsense 		Apcupsd 0.3.91_5, as used in pfSense through 2.4.4-RELEASE-p3 and other products, has an XSS issue in apcupsd_status.php. CWE-79
Cross-site Scripting 		CVE-2019-12584 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223398 5.4 MEDIUM
Network 		veronalabs wp_statistics The WP Statistics plugin through 12.6.5 for Wordpress has stored XSS in includes/class-wp-statistics-pages.php. This is related to an account with the Editor role creating a post with a title that co… CWE-79
Cross-site Scripting 		CVE-2019-12566 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223399 9.8 CRITICAL
Network 		douco douphp In DouCo DouPHP v1.5 Release 20190516, remote attackers can view the database backup file via a brute-force guessing approach for data/backup/DyyyymmddThhmmss.sql filenames. CWE-287
Improper Authentication 		CVE-2019-12564 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm
223400 7.8 HIGH
Local 		rakuten viber A vulnerability in Viber before 10.7.0 for Desktop (Windows) could allow an attacker to execute arbitrary commands on a targeted system. This vulnerability is due to unsafe search paths used by the a… CWE-426
 Untrusted Search Path 		CVE-2019-12569 2024-11-21 13:23 2019-06-3 Show GitHub Exploit DB Packet Storm