Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228081	5	警告	securecomputing	-	Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-4043	2012-12-20 18:33	2007-07-27	Show	GitHub Exploit DB Packet Storm

228082	9.3	危険	Yahoo!	-	Yahoo! Widgets の YDPCTL.dll におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4034	2012-12-20 18:33	2007-07-27	Show	GitHub Exploit DB Packet Storm

228083	7.5	危険	webSPELL	-	Webspell の index.php における絶対パストラバーサルの脆弱性	-	CVE-2007-4028	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

228084	6.8	警告	Telaxus LLC	-	epesi framework における任意の PHP コードを実行される脆弱性	-	CVE-2007-4026	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

228085	4.3	警告	サン・マイクロシステムズ	-	Windows 用の SJS Application Server における JSP ソースコードを取得される脆弱性	-	CVE-2007-4025	2012-12-20 18:33	2007-07-24	Show	GitHub Exploit DB Packet Storm

228086	4.3	警告	w1l3d4	-	W1L3D4 Philboard の W1L3D4_aramasonuc.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4024	2012-12-20 18:33	2007-07-26	Show	GitHub Exploit DB Packet Storm

228087	4.3	警告	WordPress.org	-	WordPress 用の Blix テーマなどに関する特定の index.php インストールスクリプトにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4014	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

228088	6.8	警告	virtual hosting control system	-	VHCS におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-3988	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

228089	5	警告	securecomputing	-	Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性	-	CVE-2007-3986	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

228090	5	警告	securecomputing	-	SecurityReporter の file.cgi におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3985	2012-12-20 18:33	2007-07-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223861	6.1	MEDIUM Network	zyxel	uag2100_firmware uag4100_firmware uag5100_firmware usg110_firmware usg210_firmware usg310_firmware usg1100_firmware usg1900_firmware usg2200-vpn_firmware	A reflective Cross-site scripting (XSS) vulnerability in the free_time_failed.cgi CGI program in selected Zyxel ZyWall, USG, and UAG devices allows remote attackers to inject arbitrary web script or …	CWE-79 Cross-site Scripting	CVE-2019-12581	2024-11-21 13:23	2019-06-28	Show	GitHub Exploit DB Packet Storm

223862	8.1	HIGH Network	keyidentity	linotp	KeyIdentity LinOTP before 2.10.5.3 has Incorrect Access Control (issue 1 of 2).	CWE-294 Authentication Bypass by Capture-replay	CVE-2019-12887	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

223863	9.1	CRITICAL Network	zyxel	uag2100_firmware uag4100_firmware uag5100_firmware usg110_firmware usg210_firmware usg310_firmware usg1100_firmware usg1900_firmware usg2200-vpn_firmware zywall_vpn100_firm…	Missing Access Control in the "Free Time" component of several Zyxel UAG, USG, and ZyWall devices allows a remote attacker to generate guest accounts by directly accessing the account generator. This…	CWE-425 Direct Request ('Forced Browsing')	CVE-2019-12583	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

223864	5.5	MEDIUM Local	linux	linux_kernel	A NULL pointer dereference vulnerability in the function nfc_genl_deactivate_target() in net/nfc/netlink.c in the Linux kernel before 5.1.13 can be triggered by a malicious user-mode program that omi…	CWE-476 NULL Pointer Dereference	CVE-2019-12984	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

223865	6.5	MEDIUM Network	libming	libming	Ming (aka libming) 0.4.8 has a heap buffer overflow and underflow in the decompileCAST function in util/decompile.c in libutil.a. Remote attackers could leverage this vulnerability to cause a denial …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-12982	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

223866	8.8	HIGH Network	libming	libming	Ming (aka libming) 0.4.8 has an "fill overflow" vulnerability in the function SWFShape_setLeftFillStyle in blocks/shape.c.	CWE-20 Improper Input Validation	CVE-2019-12981	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

223867	6.5	MEDIUM Network	libming	libming	In Ming (aka libming) 0.4.8, there is an integer overflow (caused by an out-of-range left shift) in the SWFInput_readSBits function in blocks/input.c. Remote attackers could leverage this vulnerabili…	CWE-190 Integer Overflow or Wraparound	CVE-2019-12980	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

223868	7.8	HIGH Local	imagemagick debian canonical opensuse	imagemagick debian_linux ubuntu_linux leap	ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c.	CWE-665 Improper Initialization	CVE-2019-12979	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

223869	7.8	HIGH Local	imagemagick	imagemagick	ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c.	CWE-665 Improper Initialization	CVE-2019-12978	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

223870	7.8	HIGH Local	imagemagick	imagemagick	ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c.	CWE-665 Improper Initialization	CVE-2019-12977	2024-11-21 13:23	2019-06-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed