Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228951	7.5	危険	proverbs	-	Proverbs Web Calendar の caladmin.inc.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6158	2012-12-20 18:34	2007-11-28	Show	GitHub Exploit DB Packet Storm

228952	4.3	警告	simplegallery	-	SimpleGallery の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6157	2012-12-20 18:34	2007-11-28	Show	GitHub Exploit DB Packet Storm

228953	6	警告	迅雷	-	Xunlei Thunder の pplayer.dll_1_work におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6144	2012-12-20 18:34	2007-11-27	Show	GitHub Exploit DB Packet Storm

228954	7.5	危険	vu	-	VU Case Manager の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6143	2012-12-20 18:34	2007-11-27	Show	GitHub Exploit DB Packet Storm

228955	4.3	警告	salims softhouse	-	ph03y3nk JAF CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6142	2012-12-20 18:34	2007-11-27	Show	GitHub Exploit DB Packet Storm

228956	4.3	警告	vbtube	-	vBTube の vBTube.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6141	2012-12-20 18:34	2007-11-27	Show	GitHub Exploit DB Packet Storm

228957	7.5	危険	vu	-	VU Mass Mailer の redir.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6138	2012-12-20 18:33	2007-11-27	Show	GitHub Exploit DB Packet Storm

228958	4.3	警告	phpslideshow	-	PHPSlideShow の phpslideshow.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6135	2012-12-20 18:33	2007-11-27	Show	GitHub Exploit DB Packet Storm

228959	7.5	危険	PHPKIT	-	PHPKIT の pkinc/public/article.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6134	2012-12-20 18:33	2007-11-27	Show	GitHub Exploit DB Packet Storm

228960	2.1	注意	レッドハット	-	scanbuttond の buttonpressed.sh における任意のファイルを上書きされる脆弱性	CWE-16 環境設定	CVE-2007-6131	2012-12-20 18:33	2007-11-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222081	5.5	MEDIUM Local	jhead_project	jhead	jhead 3.03 is affected by: heap-based buffer over-read. The impact is: Denial of service. The component is: ReadJpegSections and process_SOFn in jpgfile.c. The attack vector is: Open a specially craf…	CWE-125 Out-of-bounds Read	CVE-2019-19035	2024-11-21 13:34	2019-11-18	Show	GitHub Exploit DB Packet Storm

222082	7.5	HIGH Network	linux netapp broadcom canonical	linux_kernel cloud_backup steelstore_cloud_integrated_storage aff_baseboard_management_controller data_availability_services solidfire_\&_hci_management_node active_iq_unified_m…	Two memory leaks in the v3d_submit_cl_ioctl() function in drivers/gpu/drm/v3d/v3d_gem.c in the Linux kernel before 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggeri…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-19044	2024-11-21 13:34	2019-11-18	Show	GitHub Exploit DB Packet Storm

222083	7.2	HIGH Network	xorur	lpar2rrd stor2rrd	An issue was discovered in Xorux Lpar2RRD 6.11 and Stor2RRD 2.61, as distributed in Xorux 2.41. They do not correctly verify the integrity of an upgrade package before processing it. As a result, off…	CWE-78 OS Command	CVE-2019-19041	2024-11-21 13:34	2019-11-18	Show	GitHub Exploit DB Packet Storm

222084	7.5	HIGH Network	iterm2	iterm2	iTerm2 through 3.3.6 has potentially insufficient documentation about the presence of search history in com.googlecode.iterm2.plist, which might allow remote attackers to obtain sensitive information…	CWE-200 Information Exposure	CVE-2019-19022	2024-11-21 13:34	2019-11-18	Show	GitHub Exploit DB Packet Storm

222085	6.1	MEDIUM Network	hp	futuresmart_3 futuresmart_4	A potential security vulnerability has been identified for certain HP printers and MFPs that would allow redirection page Cross-Site Scripting in a client’s browser by clicking on a third-party malic…	CWE-79 Cross-site Scripting	CVE-2019-18914	2024-11-21 13:33	2021-11-10	Show	GitHub Exploit DB Packet Storm

222086	7.8	HIGH Local	hp	futuresmart_4	A potential security vulnerability has been identified for certain HP printers and MFPs with Troy solutions. For affected printers with FutureSmart Firmware bundle version 4.9 or 4.9.0.1 the potentia…	NVD-CWE-noinfo	CVE-2019-18912	2024-11-21 13:33	2021-11-10	Show	GitHub Exploit DB Packet Storm

222087	7.8	HIGH Local	hp	color_laserjet_pro_mfp_m277_b3q11a_firmware color_laserjet_pro_mfp_m277_b3q11v_firmware color_laserjet_pro_mfp_m277_b3q10a_firmware color_laserjet_pro_mfp_m277_b3q10v_firmware color_laser…	A potential security vulnerability has been identified for HP LaserJet Solution Software (for certain HP LaserJet Printers) which may lead to unauthorized elevation of privilege on the client.	CWE-269 Improper Privilege Management	CVE-2019-18916	2024-11-21 13:33	2021-11-9	Show	GitHub Exploit DB Packet Storm

222088	9.8	CRITICAL Network	opensuse	cryptctl	A Improper Authentication vulnerability in cryptctl of SUSE Linux Enterprise Server for SAP 12-SP5, SUSE Manager Server 4.0 allows attackers with access to the hashed password to use it without havin…	-	CVE-2019-18906	2024-11-21 13:33	2021-06-30	Show	GitHub Exploit DB Packet Storm

222089	7.5	HIGH Network	xerox	altalink_b8045_firmware altalink_b8055_firmware altalink_b8065_firmware altalink_b8075_firmware altalink_b8090_firmware altalink_c8030_firmware altalink_c8035_firmware altalink_c…	On Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200, portions of the drive containing executable c…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2019-18630	2024-11-21 13:33	2021-03-5	Show	GitHub Exploit DB Packet Storm

222090	8.1	HIGH Network	xerox	altalink_b8045_firmware altalink_b8055_firmware altalink_b8065_firmware altalink_b8075_firmware altalink_b8090_firmware altalink_c8030_firmware altalink_c8035_firmware altalink_c…	Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary d…	NVD-CWE-noinfo	CVE-2019-18629	2024-11-21 13:33	2021-03-4	Show	GitHub Exploit DB Packet Storm