Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228231 7.5 危険 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/user.pl における脆弱性 - CVE-2007-3419 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228232 6.5 警告 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/forum_display.pl における他のユーザになりすまされる脆弱性 - CVE-2007-3418 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228233 4.3 警告 web-app.org - web-app.org WebAPP の cgi-bin/cgi-lib/search.pl におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3417 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228234 5 警告 web-app.org
web-app.net		 - web-app.org WebAPP などのプロフィールなどの管理におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-3416 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228235 7.5 危険 phpraider - phpRaider の index.php における SQL インジェクションの脆弱性 - CVE-2007-3415 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228236 5 警告 sergey lyubka - Sergey Lyubka Simple HTTPD における重要な情報を取得される脆弱性 - CVE-2007-3407 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228237 5 警告 sitedepth - SiteDepth CMS の ShowImage.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3404 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228238 7.5 危険 phpee - PPhlogger の include/get_userdata.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-3399 2012-12-20 18:19 2007-06-26 Show GitHub Exploit DB Packet Storm
228239 2.1 注意 レッドハット - x86_64 プラットフォーム上で稼動している RHEL のカーネルにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-3379 2012-12-20 18:19 2007-04-28 Show GitHub Exploit DB Packet Storm
228240 5 警告 レッドハット - redhat-cluster-suite における以前のリクエストから重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2007-3373 2012-12-20 18:19 2007-06-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223461 7.5 HIGH
Network 		gnupg
sks_keyserver_project
fedoraproject
opensuse
f5 		gnupg
sks_keyserver
fedora
leap
traffix_signaling_delivery_controller 		Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the… CWE-295
Improper Certificate Validation  		CVE-2019-13050 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223462 7.8 HIGH
Local 		toaruos_project toaruos An integer wrap in kernel/sys/syscall.c in ToaruOS 1.10.10 allows users to map arbitrary kernel pages into userland process space via TOARU_SYS_FUNC_MMAP, leading to escalation of privileges. CWE-190
 Integer Overflow or Wraparound 		CVE-2019-13049 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223463 5.5 MEDIUM
Local 		toaruos_project toaruos kernel/sys/syscall.c in ToaruOS through 1.10.9 allows a denial of service upon a critical error in certain sys_sbrk allocation patterns (involving PAGE_SIZE, and a value less than PAGE_SIZE). CWE-190
 Integer Overflow or Wraparound 		CVE-2019-13048 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223464 7.8 HIGH
Local 		toaruos_project toaruos kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in sys_sysfunc case 9 for TOARU_SYS_FUNC_SETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to r… CWE-862
 Missing Authorization 		CVE-2019-13047 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223465 7.8 HIGH
Local 		toaruos_project toaruos linker/linker.c in ToaruOS through 1.10.9 has insecure LD_LIBRARY_PATH handling in setuid applications. CWE-388
 7PK - Errors 		CVE-2019-13046 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223466 8.1 HIGH
Network 		irssi irssi Irssi before 1.0.8, 1.1.x before 1.1.3, and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server. CWE-416
 Use After Free 		CVE-2019-13045 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223467 6.1 MEDIUM
Network 		mod_auth_mellon_project
oracle
fedoraproject
canonical 		mod_auth_mellon
zfs_storage_appliance_kit
fedora
ubuntu_linux 		mod_auth_mellon through 0.14.2 has an Open Redirect via the login?ReturnTo= substring, as demonstrated by omitting the // after http: in the target URL. CWE-601
Open Redirect 		CVE-2019-13038 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223468 7.8 HIGH
Local 		pandorafms pandora_fms Artica Pandora FMS 7.0 NG before 735 suffers from local privilege escalation due to improper permissions on C:\PandoraFMS and its sub-folders, allowing standard users to create new files. Moreover, t… NVD-CWE-noinfo
CVE-2019-13035 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223469 5.5 MEDIUM
Local 		flightcrew_project flightcrew An issue was discovered in FlightCrew v0.9.2 and earlier. A NULL pointer dereference occurs in GetRelativePathToNcx() or GetRelativePathsToXhtmlDocuments() when a NULL pointer is passed to xc::XMLUri… CWE-476
 NULL Pointer Dereference 		CVE-2019-13032 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223470 8.1 HIGH
Network 		lemonldap-ng
debian 		lemonldap\
debian_linux 		LemonLDAP::NG before 1.9.20 has an XML External Entity (XXE) issue when submitting a notification to the notification server. By default, the notification server is not enabled and has a "deny all" r… CWE-611
XXE 		CVE-2019-13031 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm