Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228381 6.8 警告 swsoft - SWSoft Confixx Professional の fehler.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6042 2012-12-20 18:33 2007-11-20 Show GitHub Exploit DB Packet Storm
228382 7.5 危険 rigs of rogs - RoR のサーバの sequencer.cpp におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6041 2012-12-20 18:33 2007-11-20 Show GitHub Exploit DB Packet Storm
228383 9 危険 Wonderware - Invensys Wonderware InTouch における任意のプログラムを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6033 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
228384 7.8 危険 van dyke technologies - VanDyke VShell におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6031 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
228385 10 危険 weird solutions - Weird Solutions BOOTPTurbo における脆弱性 CWE-noinfo
情報不足 		CVE-2007-6030 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
228386 7.1 危険 w1.fi - wpa_supplicant の driver_wext.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6025 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
228387 6.8 警告 WordPress.org - Wordpress における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-6013 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
228388 7.8 危険 pioneers - pioneers におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6010 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
228389 10 危険 TestLink Development Team - TestLink における脆弱性 CWE-287
不適切な認証 		CVE-2007-6006 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
228390 4.3 警告 webex communications - WebEx の GpcContainer.GpcContainer.1 ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-6005 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214581 6.1 MEDIUM
Network 		zohocorp manageengine_adselfservice_plus In Zoho ManageEngine ADSelfService Plus 5.x through 5704, an authorization.do cross-site Scripting (XSS) vulnerability allows for an unauthenticated manipulation of the JavaScript code by injecting t… CWE-79
Cross-site Scripting 		CVE-2019-8346 2024-11-21 13:49 2019-05-25 Show GitHub Exploit DB Packet Storm
214582 8.1 HIGH
Network 		atlassian jira
jira_server 		The ViewUpgrades resource in Jira before version 7.13.4, from version 8.0.0 before version 8.0.4, and from version 8.1.0 before version 8.1.1 allows remote attackers who have obtained access to admin… CWE-287
Improper Authentication 		CVE-2019-8443 2024-11-21 13:49 2019-05-23 Show GitHub Exploit DB Packet Storm
214583 7.5 HIGH
Network 		atlassian jira
jira_server 		The CachingResourceDownloadRewriteRule class in Jira before version 7.13.4, and from version 8.0.0 before version 8.0.4, and from version 8.1.0 before version 8.1.1 allows remote attackers to access … NVD-CWE-noinfo
CVE-2019-8442 2024-11-21 13:49 2019-05-23 Show GitHub Exploit DB Packet Storm
214584 9.8 CRITICAL
Network 		bmc patrol_agent By default, BMC PATROL Agent through 11.3.01 uses a static encryption key for encrypting/decrypting user credentials sent over the network to managed PATROL Agent services. If an attacker were able t… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-8352 2024-11-21 13:49 2019-05-21 Show GitHub Exploit DB Packet Storm
214585 5.5 MEDIUM
Local 		falco falco An issue was discovered in Falco through 0.14.0. A missing indicator for insufficient resources allows local users to bypass the detection engine. CWE-416
 Use After Free 		CVE-2019-8339 2024-11-21 13:49 2019-05-18 Show GitHub Exploit DB Packet Storm
214586 5.9 MEDIUM
Network 		gpg-pgp_project gpg-pgp The signature verification routine in the Airmail GPG-PGP Plugin, versions 1.0 (9) and earlier, does not verify the status of the signature at all, which allows remote attackers to spoof arbitrary em… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2019-8338 2024-11-21 13:49 2019-05-17 Show GitHub Exploit DB Packet Storm
214587 6.5 MEDIUM
Network 		webiness_inventory_project webiness_inventory An issue was discovered in Webiness Inventory 2.3. The ProductModel component allows Arbitrary File Upload via a crafted product image during the creation of a new product. Consequently, an attacker … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-8404 2024-11-21 13:49 2019-05-15 Show GitHub Exploit DB Packet Storm
214588 6.1 MEDIUM
Network 		qdpm qdpm qdPM 9.1 suffers from Cross-site Scripting (XSS) via configuration?type=[XSS] parameter. CWE-79
Cross-site Scripting 		CVE-2019-8391 2024-11-21 13:49 2019-05-15 Show GitHub Exploit DB Packet Storm
214589 6.1 MEDIUM
Network 		qdpm qdpm qdPM 9.1 suffers from Cross-site Scripting (XSS) in the search[keywords] parameter. CWE-79
Cross-site Scripting 		CVE-2019-8390 2024-11-21 13:49 2019-05-15 Show GitHub Exploit DB Packet Storm
214590 7.8 HIGH
Local 		foxitsoftware foxit_reader A Local Privilege Escalation in libqcocoa.dylib in Foxit Reader 3.1.0.0111 on macOS has been discovered due to an incorrect permission set. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-8342 2024-11-21 13:49 2019-05-14 Show GitHub Exploit DB Packet Storm