Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
228251 4.3 警告 professional home page tools login script - Professional Home Page Tools Login Script におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7078 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
228252 6.8 警告 phpBB - phpBB 用の Advanced Guestbook における SQL インジェクションの脆弱性 - CVE-2006-7077 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
228253 4.3 警告 phpBB - phpBB 用の Advanced Guestbook におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-7076 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
228254 7.5 危険 smartsitecms - SmartSiteCMS の admin.php における認証を回避される脆弱性 - CVE-2006-7074 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
228255 7.5 危険 socketwiz - Socketwiz Bookmarks の smarty_config.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-7069 2012-12-20 18:18 2007-03-2 Show GitHub Exploit DB Packet Storm
228256 7.5 危険 tinyphpforum - TinyPHPforum の profile.php におけるディレクトリトラバーサルの脆弱性 - CVE-2006-7063 2012-12-20 18:18 2007-02-23 Show GitHub Exploit DB Packet Storm
228257 9.3 危険 scriptsez.net - Scriptsez.net E-Dating System におけるプライベートメッセージを読まれる脆弱性 - CVE-2006-7061 2012-12-20 18:18 2007-02-23 Show GitHub Exploit DB Packet Storm
228258 5.8 警告 サン・マイクロシステムズ - Sun Solaris の .iked などに使用されている libike ライブラリにおける PKCS #1 v1.5 署名を偽造される脆弱性 CWE-DesignError
CVE-2006-7140 2012-12-20 18:18 2006-11-27 Show GitHub Exploit DB Packet Storm
228259 5 警告 scriptsez.net - Scriptsez.net E-Dating System の cindex.php におけるフルパスを取得される脆弱性 - CVE-2006-7060 2012-12-20 18:18 2007-02-23 Show GitHub Exploit DB Packet Storm
228260 4.3 警告 scriptsez.net - Scriptsez.net E-Dating System におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2006-7059 2012-12-20 18:18 2007-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211031 6.1 MEDIUM
Network
upcoming_events_project upcoming_events An XSS issue was discovered in upcoming_events.php in the Upcoming Events plugin before 1.33 for MyBB via a crafted name for an event. CWE-79
Cross-site Scripting
CVE-2019-9650 2024-11-21 13:52 2019-03-11 Show GitHub Exploit DB Packet Storm
211032 6.1 MEDIUM
Network
codepeople contact_form_email The Contact Form Email plugin before 1.2.66 for WordPress allows wp-admin/admin.php item XSS, related to cp_admin_int_edition.inc.php in the "custom edition area." CWE-79
Cross-site Scripting
CVE-2019-9646 2024-11-21 13:52 2019-03-11 Show GitHub Exploit DB Packet Storm
211033 9.8 CRITICAL
Network
php
debian
canonical
opensuse
netapp
php
debian_linux
ubuntu_linux
leap
storage_automation_store
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF. CWE-908
 Use of Uninitialized Resource
CVE-2019-9641 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
211034 7.5 HIGH
Network
php
canonical
debian
opensuse
netapp
redhat
php
ubuntu_linux
debian_linux
leap
storage_automation_store
software_collections
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an Invalid Read in exif_process_SOFn. CWE-125
Out-of-bounds Read
CVE-2019-9640 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
211035 7.5 HIGH
Network
php
debian
canonical
opensuse
netapp
redhat
php
debian_linux
ubuntu_linux
leap
storage_automation_store
software_collections
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling… CWE-908
CWE-909
 Use of Uninitialized Resource
 Missing Initialization of Resource
CVE-2019-9639 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
211036 7.5 HIGH
Network
php
debian
canonical
opensuse
netapp
redhat
php
debian_linux
ubuntu_linux
leap
storage_automation_store
software_collections
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling… CWE-125
Out-of-bounds Read
CVE-2019-9638 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
211037 7.5 HIGH
Network
php
debian
canonical
opensuse
netapp
php
debian_linux
ubuntu_linux
leap
storage_automation_store
An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly… CWE-264
Permissions, Privileges, and Access Controls
CVE-2019-9637 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
211038 9.8 CRITICAL
Network
python
fedoraproject
opensuse
debian
canonical
redhat
oracle
python
fedora
leap
debian_linux
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_server_aus
enterprise_linux
e…
Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. The impact is: Information disclosure (cr… NVD-CWE-noinfo
CVE-2019-9636 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
211039 7.8 HIGH
Local
golang go Go through 1.12 on Windows misuses certain LoadLibrary functionality, leading to DLL injection. CWE-427
 Uncontrolled Search Path Element
CVE-2019-9634 2024-11-21 13:52 2019-03-9 Show GitHub Exploit DB Packet Storm
211040 6.5 MEDIUM
Network
gnome glib gio/gsocketclient.c in GNOME GLib 2.59.2 does not ensure that a parent GTask remains alive during the execution of a connection-attempting enumeration, which allows remote attackers to cause a denial… CWE-754
 Improper Check for Unusual or Exceptional Conditions
CVE-2019-9633 2024-11-21 13:52 2019-03-8 Show GitHub Exploit DB Packet Storm