Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228341	4.3	警告	WebSVN	-	WebSVN の filedetails.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3056	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228342	7.5	危険	postnuke software foundation	-	PostNuke 用の PNphpBB2 モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-3052	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228343	7.5	危険	revokesoft	-	RevokeSoft RevokeBB の inc/class_users.php における SQL インジェクションの脆弱性	-	CVE-2007-3051	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228344	10	危険	Vonage	-	Vonage VoIP Telephone Adapter における管理アクセス権限を取得される脆弱性	-	CVE-2007-3047	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228345	4.3	警告	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における総当たり攻撃を実行される脆弱性	-	CVE-2007-3022	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228346	7.5	危険	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における任意の実行可能なファイルを作成される脆弱性	-	CVE-2007-3021	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

228347	9.3	危険	zenturi	-	Zenturi ProgramChecker の sasatl.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2987	2012-12-20 18:19	2007-06-1	Show	GitHub Exploit DB Packet Storm

228348	7.8	危険	techno dreams	-	Techno Dreams Web Directory / Search Engine におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-2979	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

228349	7.5	危険	Wanewsletter	-	WAnewsletter の newsletter.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2969	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

228350	7.5	危険	scallywag.org	-	Scallywag におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2960	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223441	6.5	MEDIUM Network	exiv2 fedoraproject canonical	exiv2 fedora ubuntu_linux	Exiv2 through 0.27.1 allows an attacker to cause a denial of service (crash due to assertion failure) via an invalid data location in a CRW image file.	CWE-617 Reachable Assertion	CVE-2019-13113	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223442	6.5	MEDIUM Network	exiv2 fedoraproject canonical debian	exiv2 fedora ubuntu_linux debian_linux	A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (crash due to an std::bad_alloc exception) via a crafted PNG image…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-13112	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223443	5.5	MEDIUM Local	exiv2 fedoraproject	exiv2 fedora	A WebPImage::decodeChunks integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (large heap allocation followed by a very long running loop) via a crafted WEBP imag…	CWE-190 Integer Overflow or Wraparound	CVE-2019-13111	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223444	6.5	MEDIUM Network	exiv2 fedoraproject canonical debian	exiv2 fedora ubuntu_linux debian_linux	A CiffDirectory::readDirectory integer overflow and out-of-bounds read in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted CRW image file.	CWE-125 CWE-190 Out-of-bounds Read Integer Overflow or Wraparound	CVE-2019-13110	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223445	6.5	MEDIUM Network	exiv2 fedoraproject	exiv2 fedora	An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted PNG image file, because PngImage::readMetadata mishandles a chunkLength - iccOffset…	CWE-190 Integer Overflow or Wraparound	CVE-2019-13109	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223446	6.5	MEDIUM Network	exiv2 fedoraproject	exiv2 fedora	An integer overflow in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted PNG image file, because PngImage::readMetadata mishandles a zero value for iccOffse…	CWE-190 Integer Overflow or Wraparound	CVE-2019-13108	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223447	9.8	CRITICAL Network	matio_project fedoraproject	matio fedora	Multiple integer overflows exist in MATIO before 1.5.16, related to mat.c, mat4.c, mat5.c, mat73.c, and matvar_struct.c	CWE-190 Integer Overflow or Wraparound	CVE-2019-13107	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223448	9.8	CRITICAL Network	cszcms	csz_cms	core/MY_Security.php in CSZ CMS 1.2.2 before 2019-06-20 has member/login/check SQL injection by sending a crafted HTTP User-Agent header and omitting the csrf_csz parameter.	CWE-89 SQL Injection	CVE-2019-13086	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223449	7.8	HIGH Local	xnview	xnview	XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000030ecfa.	CWE-787 Out-of-bounds Write	CVE-2019-13085	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm

223450	7.8	HIGH Local	xnview	xnview	XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000026b739.	CWE-787 Out-of-bounds Write	CVE-2019-13084	2024-11-21 13:24	2019-07-1	Show	GitHub Exploit DB Packet Storm