Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228081	5	警告	securecomputing	-	Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-4043	2012-12-20 18:33	2007-07-27	Show	GitHub Exploit DB Packet Storm

228082	9.3	危険	Yahoo!	-	Yahoo! Widgets の YDPCTL.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4034	2012-12-20 18:33	2007-07-27	Show	GitHub Exploit DB Packet Storm

228083	7.5	危険	webSPELL	-	Webspell の index.php における絶対パストラバーサルの脆弱性	-	CVE-2007-4028	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

228084	6.8	警告	Telaxus LLC	-	epesi framework における任意の PHP コードを実行される脆弱性	-	CVE-2007-4026	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

228085	4.3	警告	サン・マイクロシステムズ	-	Windows 用の SJS Application Server における JSP ソースコードを取得される脆弱性	-	CVE-2007-4025	2012-12-20 18:33	2007-07-24	Show	GitHub Exploit DB Packet Storm

228086	4.3	警告	w1l3d4	-	W1L3D4 Philboard の W1L3D4_aramasonuc.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4024	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

228087	4.3	警告	WordPress.org	-	WordPress 用の Blix テーマなどに関する特定の index.php インストールスクリプトにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4014	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

228088	6.8	警告	virtual hosting control system	-	VHCS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-3988	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

228089	5	警告	securecomputing	-	Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性	-	CVE-2007-3986	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

228090	5	警告	securecomputing	-	SecurityReporter の file.cgi におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3985	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223771	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The macOS…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-12577	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223772	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openv…	CWE-426 Untrusted Search Path	CVE-2019-12576	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223773	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The root_…	CWE-427 Uncontrolled Search Path Element	CVE-2019-12575	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223774	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v1.0 for Windows could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The PI…	CWE-426 Untrusted Search Path	CVE-2019-12574	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223775	7.1	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux and macOS could allow an authenticated, local attacker to overwrite arbitrary files. The openvpn_launc…	CWE-59 Link Following	CVE-2019-12573	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223776	7.1	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v0.9.8 beta (build 02099) for macOS could allow an authenticated, local attacker to overwrite arbitrary files. When …	CWE-59 Link Following	CVE-2019-12571	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223777	5.9	MEDIUM Network	squid-cache debian fedoraproject opensuse canonical	squid debian_linux fedora leap ubuntu_linux	An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the Proxy-Authorization header is parsed via u…	CWE-125 Out-of-bounds Read	CVE-2019-12529	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223778	8.8	HIGH Network	squid-cache fedoraproject debian canonical redhat	squid fedora debian_linux ubuntu_linux enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus	An issue was discovered in Squid 4.0.23 through 4.7. When checking Basic Authentication with HttpHeader::getAuth, Squid uses a global buffer to store the decoded data. Squid does not check that the d…	CWE-787 Out-of-bounds Write	CVE-2019-12527	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223779	9.8	CRITICAL Network	squid-cache debian opensuse fedoraproject canonical	squid debian_linux leap fedora ubuntu_linux	An issue was discovered in Squid 3.3.9 through 3.5.28 and 4.x through 4.7. When Squid is configured to use Digest authentication, it parses the header Proxy-Authorization. It searches for certain tok…	CWE-787 Out-of-bounds Write	CVE-2019-12525	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223780	6.1	MEDIUM Network	zohocorp	manageengine_assetexplorer	An issue was discovered in Zoho ManageEngine AssetExplorer. There is XSS via ResourcesAttachments.jsp with the parameter pageName.	CWE-79 Cross-site Scripting	CVE-2019-12597	2024-11-21 13:23	2019-07-11	Show	GitHub Exploit DB Packet Storm