Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228481	4.9	警告	zonelabs	-	ZoneAlarm におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2467	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

228482	7.8	危険	サン・マイクロシステムズ	-	Sun Java System Directory Server および Sun ONE Directory Server で使用されている C 用の LDAP SDK におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2466	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

228483	7.8	危険	tony cook	-	Imager perl モジュールの BMP リーダにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2459	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

228484	7.5	危険	pixaria	-	Pixaria Gallery における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2458	2012-12-20 18:19	2007-04-15	Show	GitHub Exploit DB Packet Storm

228485	7.5	危険	pixaria	-	Pixaria Gallery の resources/includes/class.Smarty.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2457	2012-12-20 18:19	2007-04-15	Show	GitHub Exploit DB Packet Storm

228486	2.1	注意	CollabNet, Inc.	-	Subversion における重要な情報 (プロパティの改定) を取得される脆弱性	-	CVE-2007-2448	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

228487	6.8	警告	tecnick.com	-	TCExam の shared/config/tce_config.php におけるクロスサイトスクリプティング攻撃 (XSS) を実行される脆弱性	-	CVE-2007-2431	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

228488	7.8	危険	tecnick.com	-	TCExam の shared/code/tce_tmx.php における cache/ 配下の任意の PHP ファイルを作成される脆弱性	-	CVE-2007-2430	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

228489	7.5	危険	pnflashgames	-	PostNuke 用の pnFlashGames モジュールの index.php における SQL インジェクションの脆弱性	-	CVE-2007-2427	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

228490	7.5	危険	wildbits	-	WordPress 用の myGallery プラグインにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2426	2012-12-20 18:19	2007-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223551	7.5	HIGH Network	gnupg sks_keyserver_project fedoraproject opensuse f5	gnupg sks_keyserver fedora leap traffix_signaling_delivery_controller	Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the…	CWE-295 Improper Certificate Validation	CVE-2019-13050	2024-11-21 13:24	2019-06-30	Show	GitHub Exploit DB Packet Storm

223552	7.8	HIGH Local	toaruos_project	toaruos	An integer wrap in kernel/sys/syscall.c in ToaruOS 1.10.10 allows users to map arbitrary kernel pages into userland process space via TOARU_SYS_FUNC_MMAP, leading to escalation of privileges.	CWE-190 Integer Overflow or Wraparound	CVE-2019-13049	2024-11-21 13:24	2019-06-30	Show	GitHub Exploit DB Packet Storm

223553	5.5	MEDIUM Local	toaruos_project	toaruos	kernel/sys/syscall.c in ToaruOS through 1.10.9 allows a denial of service upon a critical error in certain sys_sbrk allocation patterns (involving PAGE_SIZE, and a value less than PAGE_SIZE).	CWE-190 Integer Overflow or Wraparound	CVE-2019-13048	2024-11-21 13:24	2019-06-30	Show	GitHub Exploit DB Packet Storm

223554	7.8	HIGH Local	toaruos_project	toaruos	kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in sys_sysfunc case 9 for TOARU_SYS_FUNC_SETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to r…	CWE-862 Missing Authorization	CVE-2019-13047	2024-11-21 13:24	2019-06-30	Show	GitHub Exploit DB Packet Storm

223555	7.8	HIGH Local	toaruos_project	toaruos	linker/linker.c in ToaruOS through 1.10.9 has insecure LD_LIBRARY_PATH handling in setuid applications.	CWE-388 7PK - Errors	CVE-2019-13046	2024-11-21 13:24	2019-06-30	Show	GitHub Exploit DB Packet Storm

223556	8.1	HIGH Network	irssi	irssi	Irssi before 1.0.8, 1.1.x before 1.1.3, and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server.	CWE-416 Use After Free	CVE-2019-13045	2024-11-21 13:24	2019-06-29	Show	GitHub Exploit DB Packet Storm

223557	6.1	MEDIUM Network	mod_auth_mellon_project oracle fedoraproject canonical	mod_auth_mellon zfs_storage_appliance_kit fedora ubuntu_linux	mod_auth_mellon through 0.14.2 has an Open Redirect via the login?ReturnTo= substring, as demonstrated by omitting the // after http: in the target URL.	CWE-601 Open Redirect	CVE-2019-13038	2024-11-21 13:24	2019-06-29	Show	GitHub Exploit DB Packet Storm

223558	7.8	HIGH Local	pandorafms	pandora_fms	Artica Pandora FMS 7.0 NG before 735 suffers from local privilege escalation due to improper permissions on C:\PandoraFMS and its sub-folders, allowing standard users to create new files. Moreover, t…	NVD-CWE-noinfo	CVE-2019-13035	2024-11-21 13:24	2019-06-29	Show	GitHub Exploit DB Packet Storm

223559	5.5	MEDIUM Local	flightcrew_project	flightcrew	An issue was discovered in FlightCrew v0.9.2 and earlier. A NULL pointer dereference occurs in GetRelativePathToNcx() or GetRelativePathsToXhtmlDocuments() when a NULL pointer is passed to xc::XMLUri…	CWE-476 NULL Pointer Dereference	CVE-2019-13032	2024-11-21 13:24	2019-06-29	Show	GitHub Exploit DB Packet Storm

223560	8.1	HIGH Network	lemonldap-ng debian	lemonldap\ debian_linux	LemonLDAP::NG before 1.9.20 has an XML External Entity (XXE) issue when submitting a notification to the notification server. By default, the notification server is not enabled and has a "deny all" r…	CWE-611 XXE	CVE-2019-13031	2024-11-21 13:24	2019-06-29	Show	GitHub Exploit DB Packet Storm