Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228291 6 警告 WordPress.org - WordPress のデフォルトテーマの functions.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3238 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228292 6.8 警告 XOOPS - XOOPS 用の TinyContent モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3237 2012-12-20 18:19 2007-06-12 Show GitHub Exploit DB Packet Storm
228293 7.5 危険 XOOPS - XOOPS 用の Horoscope モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3236 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228294 5 警告 tec-it - TEC-IT TBarCode OCX ActiveX コントロール における任意のファイルを上書きされる脆弱性 - CVE-2007-3233 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228295 6.8 警告 simian systems inc - Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3230 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228296 6.8 警告 singapore - Singapore Gallery の index.php における重要な情報を取得される脆弱性 - CVE-2007-3229 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228297 6.8 警告 simian systems inc - Sitellite CMS における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3228 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228298 4.3 警告 Ruby on Rails project - Ruby on Rails の to_json 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3227 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228299 6.4 警告 サン・マイクロシステムズ - slapd における特定のデータを変更される脆弱性 - CVE-2007-3225 2012-12-20 18:19 2007-06-13 Show GitHub Exploit DB Packet Storm
228300 5 警告 サン・マイクロシステムズ - slapd におけるエントリの属性の存在を特定される脆弱性 - CVE-2007-3224 2012-12-20 18:19 2007-06-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223401 7.0 HIGH
Local 		linux linux_kernel In arch/x86/lib/insn-eval.c in the Linux kernel before 5.1.9, there is a use-after-free for access to an LDT entry because of a race condition between modify_ldt() and a #BR exception for an MPX boun… CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2019-13233 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223402 3.3 LOW
Local 		unzip_project
debian 		unzip
debian_linux 		Info-ZIP UnZip 6.0 mishandles the overlapping of files inside a ZIP container, leading to denial of service (resource consumption), aka a "better zip bomb" issue. CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13232 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223403 5.5 MEDIUM
Local 		deepin deepin_clone deepin-clone before 1.1.3 uses a fixed path /tmp/partclone.log in the Helper::getPartitionSizeInfo() function to write a log file as root, and follows symlinks there. An unprivileged user can prepare… CWE-59
Link Following 		CVE-2019-13229 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223404 4.7 MEDIUM
Local 		deepin deepin-clone deepin-clone before 1.1.3 uses a fixed path /tmp/repo.iso in the BootDoctor::fix() function to download an ISO file, and follows symlinks there. An unprivileged user can prepare a symlink attack ther… CWE-59
Link Following 		CVE-2019-13228 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223405 5.5 MEDIUM
Local 		deepin deepin-clone In GUI mode, deepin-clone before 1.1.3 creates a log file at the fixed path /tmp/.deepin-clone.log as root, and follows symlinks there. An unprivileged user can prepare a symlink attack there to crea… CWE-59
Link Following 		CVE-2019-13227 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223406 7.0 HIGH
Local 		deepin
fedoraproject 		deepin-clone
fedora 		deepin-clone before 1.1.3 uses a predictable path /tmp/.deepin-clone/mount/<block-dev-basename> in the Helper::temporaryMountDevice() function to temporarily mount a file system as root. An unprivile… CWE-362
CWE-59
Race Condition
Link Following 		CVE-2019-13226 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223407 7.3 HIGH
Local 		maxx waves_maxx_audio WavesSysSvc in Waves MAXX Audio allows privilege escalation because the General registry key has Full Control access for the Users group, leading to DLL side loading. This affects WavesSysSvc64.exe 1… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13208 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223408 7.5 HIGH
Network 		mikrotik routeros A vulnerability in the FTP daemon on MikroTik routers through 6.44.3 could allow remote attackers to exhaust all available memory, causing the device to reboot because of uncontrolled resource manage… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2019-13074 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223409 9.8 CRITICAL
Network 		nlnetlabs name_server_daemon nsd-checkzone in NLnet Labs NSD 4.2.0 has a Stack-based Buffer Overflow in the dname_concatenate() function in dname.c. CWE-787
 Out-of-bounds Write 		CVE-2019-13207 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm
223410 6.1 MEDIUM
Network 		1234n minicms In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the tags box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, and CVE-2018-2… CWE-79
Cross-site Scripting 		CVE-2019-13186 2024-11-21 13:24 2019-07-4 Show GitHub Exploit DB Packet Storm