Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228271	10	危険	PostgreSQL.org	-	PostgreSQL における関数を作成および実行される脆弱性	-	CVE-2007-3279	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

228272	10	危険	Wikindx project	-	WIKINDX 用の localization モジュールにおける特定の管理者機能にアクセスされる脆弱性	-	CVE-2007-3277	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

228273	4.3	警告	siteatschool	-	S@S の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3276	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

228274	7.5	危険	yourfreescreamer	-	YourFreeScreamer の templates/2blue/bodyTemplate.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3271	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

228275	4.3	警告	sporum forum	-	Sporum Forum の comments.cgi におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3213	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

228276	10	危険	yabb	-	YaBB における CRLF インジェクションの脆弱性	-	CVE-2007-3208	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

228277	7.5	危険	software602	-	602Pro LAN SUITE 2003 の SMTP サービスにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-3203	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

228278	7.1	危険	winpt	-	WinPT における間違ったユーザ ID 鍵をインストールされる脆弱性	-	CVE-2007-3201	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

228279	10	危険	phpmyinventory	-	phpMyInventory の Includes/global.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3270	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

228280	5	警告	vincent hor	-	Calendarix における重要な情報を取得される脆弱性	-	CVE-2007-3259	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222391	4.6	MEDIUM Physics	linux netapp canonical debian opensuse	linux_kernel h410c_firmware data_availability_services solidfire_\&_hci_management_node active_iq_unified_manager solidfire_baseboard_management_controller ubuntu_linux debia…	An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.	CWE-415 Double Free	CVE-2019-15212	2024-11-21 13:28	2019-08-20	Show	GitHub Exploit DB Packet Storm

222392	4.6	MEDIUM Physics	linux netapp canonical debian opensuse	linux_kernel h410c_firmware data_availability_services solidfire_\&_hci_management_node active_iq_unified_manager solidfire_baseboard_management_controller ubuntu_linux debia…	An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio…	CWE-416 Use After Free	CVE-2019-15211	2024-11-21 13:28	2019-08-20	Show	GitHub Exploit DB Packet Storm

222393	7.5	HIGH Network	kbrw	sweet_xml	The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and Elixir allows attackers to cause a denial of service (resource consumption) via an XML entity expansion attack with an inline DTD.	CWE-776 XML Entity Expansion	CVE-2019-15160	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222394	8.8	HIGH Network	schine.games	mw-oauth2client	In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.	CWE-352 Origin Validation Error	CVE-2019-15150	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222395	9.8	CRITICAL Network	adplug_project fedoraproject	adplug fedora	AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h.	CWE-415 Double Free	CVE-2019-15151	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222396	6.5	MEDIUM Network	gopro	gpmf-parser	GoPro GPMF-parser 1.2.2 has an out-of-bounds write in OpenMP4Source in demo/GPMF_mp4reader.c.	CWE-787 Out-of-bounds Write	CVE-2019-15148	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222397	6.5	MEDIUM Network	gopro	gpmf-parser	GoPro GPMF-parser 1.2.2 has an out-of-bounds read and SEGV in GPMF_Next in GPMF_parser.c.	CWE-125 Out-of-bounds Read	CVE-2019-15147	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222398	6.5	MEDIUM Network	gopro	gpmf-parser	GoPro GPMF-parser 1.2.2 has a heap-based buffer over-read (4 bytes) in GPMF_Next in GPMF_parser.c.	CWE-125 Out-of-bounds Read	CVE-2019-15146	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222399	5.5	MEDIUM Local	djvulibre_project debian fedoraproject canonical opensuse	djvulibre debian_linux fedora ubuntu_linux leap	DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack (application crash via an out-of-bounds read) by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::get…	CWE-125 Out-of-bounds Read	CVE-2019-15145	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm

222400	9.8	CRITICAL Network	networkgenomics	mitogen	core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. N…	CWE-254 7PK - Security Features	CVE-2019-15149	2024-11-21 13:28	2019-08-19	Show	GitHub Exploit DB Packet Storm