Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228371	9.3	危険	phpPgAdmin	-	phpPgAdmin の sqledit.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2865	2012-12-20 18:19	2007-05-25	Show	GitHub Exploit DB Packet Storm

228372	7.5	危険	saxon	-	SAXON における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2861	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

228373	7.5	危険	simpgb	-	SimpGB における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2859	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

228374	6.5	警告	phpBB	-	phpBB 用の IP-Tracking Mod における SQL インジェクションの脆弱性	-	CVE-2007-2858	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

228375	7.5	危険	zakkis technology corporation	-	ABC Excel Parser の sample/xls2mysql における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2857	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

228376	10	危険	sky software	-	Sky Software Shell MegaPack ActiveX の shComboBox ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2848	2012-12-20 18:19	2007-05-24	Show	GitHub Exploit DB Packet Storm

228377	6.8	警告	unicon-imc2	-	unicon-imc2 の ImmModules/cce/ におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2835	2012-12-20 18:19	2007-07-1	Show	GitHub Exploit DB Packet Storm

228378	9.3	危険	wavelink media	-	TutorialCMS における認証を回避される脆弱性	-	CVE-2007-2822	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

228379	7.5	危険	WordPress.org	-	WordPress の wp-admin/admin-ajax.php における SQL インジェクションの脆弱性	-	CVE-2007-2821	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

228380	4.3	警告	track+	-	Track+ の reportItem.do におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2819	2012-12-20 18:19	2007-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223811	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The macOS…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-12577	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223812	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for macOS could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The openv…	CWE-426 Untrusted Search Path	CVE-2019-12576	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223813	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The root_…	CWE-427 Uncontrolled Search Path Element	CVE-2019-12575	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223814	7.8	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v1.0 for Windows could allow an authenticated, local attacker to run arbitrary code with elevated privileges. The PI…	CWE-426 Untrusted Search Path	CVE-2019-12574	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223815	7.1	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v82 for Linux and macOS could allow an authenticated, local attacker to overwrite arbitrary files. The openvpn_launc…	CWE-59 Link Following	CVE-2019-12573	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223816	7.1	HIGH Local	londontrustmedia	private_internet_access_vpn_client	A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client v0.9.8 beta (build 02099) for macOS could allow an authenticated, local attacker to overwrite arbitrary files. When …	CWE-59 Link Following	CVE-2019-12571	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223817	5.9	MEDIUM Network	squid-cache debian fedoraproject opensuse canonical	squid debian_linux fedora leap ubuntu_linux	An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the Proxy-Authorization header is parsed via u…	CWE-125 Out-of-bounds Read	CVE-2019-12529	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223818	8.8	HIGH Network	squid-cache fedoraproject debian canonical redhat	squid fedora debian_linux ubuntu_linux enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus	An issue was discovered in Squid 4.0.23 through 4.7. When checking Basic Authentication with HttpHeader::getAuth, Squid uses a global buffer to store the decoded data. Squid does not check that the d…	CWE-787 Out-of-bounds Write	CVE-2019-12527	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223819	9.8	CRITICAL Network	squid-cache debian opensuse fedoraproject canonical	squid debian_linux leap fedora ubuntu_linux	An issue was discovered in Squid 3.3.9 through 3.5.28 and 4.x through 4.7. When Squid is configured to use Digest authentication, it parses the header Proxy-Authorization. It searches for certain tok…	CWE-787 Out-of-bounds Write	CVE-2019-12525	2024-11-21 13:23	2019-07-12	Show	GitHub Exploit DB Packet Storm

223820	6.1	MEDIUM Network	zohocorp	manageengine_assetexplorer	An issue was discovered in Zoho ManageEngine AssetExplorer. There is XSS via ResourcesAttachments.jsp with the parameter pageName.	CWE-79 Cross-site Scripting	CVE-2019-12597	2024-11-21 13:23	2019-07-11	Show	GitHub Exploit DB Packet Storm