Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228131 1.7 注意 サン・マイクロシステムズ - Sun Java System Access Manager における権限を取得される脆弱性 - CVE-2007-3700 2012-12-20 18:33 2007-07-10 Show GitHub Exploit DB Packet Storm
228132 9.3 危険 シマンテック - Symantec 製品の Decomposer コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-3699 2012-12-20 18:33 2007-07-11 Show GitHub Exploit DB Packet Storm
228133 7.5 危険 tufat - FlashBB の phpbb/sendmsg.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3697 2012-12-20 18:33 2007-07-11 Show GitHub Exploit DB Packet Storm
228134 6.6 警告 winpcap - WinPcap の NPF.SYS デバイスドライバにおけるメモリを上書きされる脆弱性 - CVE-2007-3681 2012-12-20 18:33 2007-07-11 Show GitHub Exploit DB Packet Storm
228135 7.6 危険 quark - Windows 用の QuarkXPress におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-3678 2012-12-20 18:33 2007-07-11 Show GitHub Exploit DB Packet Storm
228136 6.9 警告 シマンテック - Symantec AntiVirus Corporate Edition などに同梱されている Symantec symtdi.sys における権限を取得される脆弱性 - CVE-2007-3673 2012-12-20 18:33 2007-07-11 Show GitHub Exploit DB Packet Storm
228137 7.5 危険 シマンテック - Symantec Norton Ghost の RemoteCommand.DLL におけるバッファオーバーフローの脆弱性 - CVE-2007-3666 2012-12-20 18:33 2007-07-10 Show GitHub Exploit DB Packet Storm
228138 5 警告 シマンテック - Symantec Norton Ghost の FileBackup.DLL におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3665 2012-12-20 18:33 2007-07-10 Show GitHub Exploit DB Packet Storm
228139 7.5 危険 Wafer - Webmatic における SQL インジェクションの脆弱性 - CVE-2007-3648 2012-12-20 18:33 2007-07-10 Show GitHub Exploit DB Packet Storm
228140 10 危険 ZoneO-soft - phpTrafficA の Php/login.inc.php における認証を回避される脆弱性 - CVE-2007-3647 2012-12-20 18:33 2007-07-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223651 7.8 HIGH
Local 		symantec endpoint_protection Symantec Endpoint Protection, prior to 14.2 RU1 & 12.1 RU6 MP10 and Symantec Endpoint Protection Small Business Edition, prior to 12.1 RU6 MP10c (12.1.7491.7002), may be susceptible to a privilege es… CWE-125
Out-of-bounds Read 		CVE-2019-12750 2024-11-21 13:23 2019-08-1 Show GitHub Exploit DB Packet Storm
223652 8.3 HIGH
Network 		polycom unified_communications_software
united_communications_software 		A vulnerability in the web-based management interface of VVX, Trio, SoundStructure, SoundPoint, and SoundStation phones running Polycom UC Software, if exploited, could allow an authenticated, remote… CWE-749
 Exposed Dangerous Method or Function 		CVE-2019-12948 2024-11-21 13:23 2019-07-30 Show GitHub Exploit DB Packet Storm
223653 5.3 MEDIUM
Network 		humhub social_network_kit HumHub Social Network Kit Enterprise v1.3.13 allows remote attackers to find the user accounts existing on any Social Network Kits (including self-hosted ones) by brute-forcing the username after the… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-12743 2024-11-21 13:23 2019-07-30 Show GitHub Exploit DB Packet Storm
223654 5.5 MEDIUM
Local 		sweetscape 010_editor In SweetScape 010 Editor 9.0.1, an integer overflow during the initialization of variables could allow an attacker to cause a denial of service. CWE-190
 Integer Overflow or Wraparound 		CVE-2019-12552 2024-11-21 13:23 2019-07-23 Show GitHub Exploit DB Packet Storm
223655 5.5 MEDIUM
Local 		sweetscape 010_editor In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the Memcpy function (provided by the scripting engine) allows an attacker to overwrite arbitrary mem… CWE-787
 Out-of-bounds Write 		CVE-2019-12551 2024-11-21 13:23 2019-07-23 Show GitHub Exploit DB Packet Storm
223656 8.8 HIGH
Network 		wp-code-highlightjs_project wp-code-highlightjs An issue was discovered in the wp-code-highlightjs plugin through 0.6.2 for WordPress. wp-admin/options-general.php?page=wp-code-highlight-js allows CSRF, as demonstrated by an XSS payload in the hlj… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2019-12934 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223657 9.8 CRITICAL
Network 		proftpd
fedoraproject
debian
siemens 		proftpd
fedora
debian_linux
simatic_cp_1543-1_firmware 		An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-12815 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223658 9.8 CRITICAL
Network 		zeroshell zeroshell Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exp… CWE-78
OS Command  		CVE-2019-12725 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223659 4.8 MEDIUM
Network 		jisiwei i3_firmware A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that … CWE-330
 Use of Insufficiently Random Values 		CVE-2019-12821 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223660 5.6 MEDIUM
Network 		jisiwei i3_firmware A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions performed on the app such as changing a password, and personal information it communicates with the s… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-12820 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm