Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228621 6.8 警告 phpffl - phpFFL における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4935 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228622 4.6 警告 phpffl - phpFFL における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4934 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228623 7.5 危険 shop-script - Shop-Script の includes/admin/sub/conf_appearence.php における任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4933 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228624 7.5 危険 shop-script - Shop-Script の admin.php における admin パネルへアクセスされる脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4932 2012-12-20 18:33 2007-09-18 Show GitHub Exploit DB Packet Storm
228625 4.3 警告 php-stats - PHP-Stats の tracking.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4917 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
228626 9.3 危険 WinSCP - WinSCP におけるリモートサーバで任意のファイル転送を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4909 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
228627 7.5 危険 Qualiteam Software Limited - X-Cart における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4907 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
228628 4.3 警告 リアルネットワークス - RealNetworks RealPlayer および Helix Player におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2007-4904 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
228629 7.5 危険 ultrashareware - Ultra Crypto コンポーネントの CryptoX.dll におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4903 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
228630 6.4 警告 ultrashareware - Ultra Crypto コンポーネントの CryptoX.dll における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4902 2012-12-20 18:33 2007-09-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222281 4.1 MEDIUM
Local 		linux linux_kernel An issue was discovered in the Linux kernel through 5.2.13. nbd_genl_status in drivers/block/nbd.c does not check the nla_nest_start_noflag return value. CWE-476
 NULL Pointer Dereference 		CVE-2019-16089 2024-11-21 13:30 2019-09-7 Show GitHub Exploit DB Packet Storm
222282 5.5 MEDIUM
Local 		glyphandcog xpdfreader Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc. CWE-674
 Uncontrolled Recursion 		CVE-2019-16088 2024-11-21 13:30 2019-09-7 Show GitHub Exploit DB Packet Storm
222283 6.5 MEDIUM
Network 		cisco vision_dynamic_signage_director A vulnerability in the REST API endpoint of Cisco Vision Dynamic Signage Director could allow an unauthenticated, remote attacker to bypass authentication on an affected device. The vulnerability is … CWE-306
Missing Authentication for Critical Function 		CVE-2019-16004 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
222284 9.8 CRITICAL
Network 		cisco firepower_management_center A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions… CWE-287
Improper Authentication 		CVE-2019-16028 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
222285 4.8 MEDIUM
Network 		cisco emergency_responder A vulnerability in the web framework of Cisco Emergency Responder could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based manageme… CWE-79
Cross-site Scripting 		CVE-2019-16025 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
222286 7.5 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… NVD-CWE-noinfo
CVE-2019-16023 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
222287 7.5 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… NVD-CWE-noinfo
CVE-2019-16021 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
222288 8.6 HIGH
Network 		cisco ios_xr Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a d… NVD-CWE-noinfo
CVE-2019-16019 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
222289 6.8 MEDIUM
Network 		cisco unified_customer_voice_portal A vulnerability in the Operations, Administration, Maintenance and Provisioning (OAMP) OpsConsole Server for Cisco Unified Customer Voice Portal (CVP) could allow an authenticated, remote attacker to… CWE-20
 Improper Input Validation  		CVE-2019-16017 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm
222290 8.8 HIGH
Network 		cisco ios
ios_xe 		A vulnerability in the web UI of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system. The v… CWE-352
 Origin Validation Error 		CVE-2019-16009 2024-11-21 13:29 2020-09-23 Show GitHub Exploit DB Packet Storm