Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229021 7.5 危険 scriptme - Scriptme SMe FileMailer の index.php における SQL インジェクションの脆弱性 - CVE-2007-0339 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229022 4.4 警告 rixstep - Rixstep Undercover の Undercover.app/Contents/Resources/uc における任意のファイルを上書きされる脆弱性 - CVE-2007-0336 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229023 7.5 危険 xentraz - liens_dynamiques の admin/adminlien.php3 などにおける許可されていない管理者の操作を実行される脆弱性 - CVE-2007-0332 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229024 6.8 警告 xentraz - liens_dynamiques の liens.php3 におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0331 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229025 9.3 危険 トレンドマイクロ - Trend Micro OfficeScan Web-Deployment SetupINICtrl ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-0325 2012-12-20 18:19 2007-02-12 Show GitHub Exploit DB Packet Storm
229026 7.5 危険 BlackBerry - RIM の TeamOn Import Object ActiveX コントロールにおけるバッファオーバーフローの脆弱性 - CVE-2007-0323 2012-12-20 18:19 2007-05-8 Show GitHub Exploit DB Packet Storm
229027 7.8 危険 wcsimple poll - wcSimple Poll におけるパスワードハッシュを取得される脆弱性 - CVE-2007-0312 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229028 5 警告 texas imperial software - Texas Imperial Software WFTPD などにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2007-0311 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229029 6.8 警告 plain black - Plain Black WebGUI におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0308 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
229030 7.5 危険 poplar gedcom viewer - Poplar Gedcom Viewer の include/common.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0307 2012-12-20 18:19 2007-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223121 7.8 HIGH
Local 		pdfresurrect_project
fedoraproject 		pdfresurrect
fedora 		PDFResurrect 0.15 has a buffer overflow via a crafted PDF file because data associated with startxref and %%EOF is mishandled. CWE-787
 Out-of-bounds Write 		CVE-2019-14267 2024-11-21 13:26 2019-07-30 Show GitHub Exploit DB Packet Storm
223122 9.8 CRITICAL
Network 		fasterxml
debian
netapp
fedoraproject
redhat
oracle
apple 		jackson-databind
debian_linux
snapcenter
oncommand_workflow_automation
service_level_manager
active_iq_unified_manager
fedora
jboss_enterprise_application_platform
openshift_c… 		SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), lead… CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2019-14379 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm
223123 8.8 HIGH
Network 		libslirp_project libslirp ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment. CWE-787
CWE-755
 Out-of-bounds Write
 Improper Handling of Exceptional Conditions 		CVE-2019-14378 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm
223124 7.8 HIGH
Local 		flif flif An issue was discovered in image_save_png in image/image-png.cpp in Free Lossless Image Format (FLIF) 0.3. Attackers can trigger a heap-based buffer over-read in libpng via a crafted flif file. CWE-125
Out-of-bounds Read 		CVE-2019-14373 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm
223125 6.5 MEDIUM
Network 		libav libav In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-14372 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm
223126 6.5 MEDIUM
Network 		libav libav An issue was discovered in Libav 12.3. There is an infinite loop in the function mov_probe in the file libavformat/mov.c, related to offset and tag. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-14371 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm
223127 6.5 MEDIUM
Network 		exiv2
debian 		exiv2
debian_linux 		In Exiv2 0.27.99.0, there is an out-of-bounds read in Exiv2::MrwImage::readMetadata() in mrwimage.cpp. It could result in denial of service. CWE-125
Out-of-bounds Read 		CVE-2019-14370 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm
223128 6.5 MEDIUM
Network 		exiv2
debian 		exiv2
debian_linux 		Exiv2::PngImage::readMetadata() in pngimage.cpp in Exiv2 0.27.99.0 allows attackers to cause a denial of service (heap-based buffer over-read) via a crafted image file. CWE-125
Out-of-bounds Read 		CVE-2019-14369 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm
223129 7.8 HIGH
Local 		exiv2 exiv2 Exiv2 0.27.99.0 has a heap-based buffer over-read in Exiv2::RafImage::readMetadata() in rafimage.cpp. CWE-125
Out-of-bounds Read 		CVE-2019-14368 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm
223130 6.1 MEDIUM
Network 		icegram email_subscribers_\&_newsletters An XSS vulnerability in the "Email Subscribers & Newsletters" plugin 4.1.6 for WordPress allows an attacker to inject malicious JavaScript code through a publicly available subscription form using th… CWE-79
Cross-site Scripting 		CVE-2019-14364 2024-11-21 13:26 2019-07-29 Show GitHub Exploit DB Packet Storm