Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229021	7.5	危険	scriptme	-	Scriptme SMe FileMailer の index.php における SQL インジェクションの脆弱性	-	CVE-2007-0339	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229022	4.4	警告	rixstep	-	Rixstep Undercover の Undercover.app/Contents/Resources/uc における任意のファイルを上書きされる脆弱性	-	CVE-2007-0336	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229023	7.5	危険	xentraz	-	liens_dynamiques の admin/adminlien.php3 などにおける許可されていない管理者の操作を実行される脆弱性	-	CVE-2007-0332	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229024	6.8	警告	xentraz	-	liens_dynamiques の liens.php3 におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0331	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229025	9.3	危険	トレンドマイクロ	-	Trend Micro OfficeScan Web-Deployment SetupINICtrl ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-0325	2012-12-20 18:19	2007-02-12	Show	GitHub Exploit DB Packet Storm

229026	7.5	危険	BlackBerry	-	RIM の TeamOn Import Object ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-0323	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

229027	7.8	危険	wcsimple poll	-	wcSimple Poll におけるパスワードハッシュを取得される脆弱性	-	CVE-2007-0312	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229028	5	警告	texas imperial software	-	Texas Imperial Software WFTPD などにおけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2007-0311	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229029	6.8	警告	plain black	-	Plain Black WebGUI におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0308	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

229030	7.5	危険	poplar gedcom viewer	-	Poplar Gedcom Viewer の include/common.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0307	2012-12-20 18:19	2007-01-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223161	5.3	MEDIUM Network	craftcms	craft_cms	In some circumstances, Craft 2 before 2.7.10 and 3 before 3.2.6 wasn't stripping EXIF data from user-uploaded images when it was configured to do so, potentially exposing personal/geolocation data to…	CWE-200 Information Exposure	CVE-2019-14280	2024-11-21 13:26	2019-07-26	Show	GitHub Exploit DB Packet Storm

223162	9.8	CRITICAL Network	axway	securetransport	Axway SecureTransport 5.x through 5.3 (or 5.x through 5.5 with certain API configuration) is vulnerable to unauthenticated blind XML injection (and XXE) in the resetPassword functionality via the RES…	CWE-91 Blind XPath Injection	CVE-2019-14277	2024-11-21 13:26	2019-07-26	Show	GitHub Exploit DB Packet Storm

223163	5.5	MEDIUM Local	xfig_project debian opensuse	fig2dev debian_linux leap	Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calc_arrow function in bound.c.	CWE-787 Out-of-bounds Write	CVE-2019-14275	2024-11-21 13:26	2019-07-26	Show	GitHub Exploit DB Packet Storm

223164	5.5	MEDIUM Local	mcpp_project opensuse	mcpp leap backports_sle	MCPP 2.7.2 has a heap-based buffer overflow in the do_msg() function in support.c.	CWE-787 Out-of-bounds Write	CVE-2019-14274	2024-11-21 13:26	2019-07-26	Show	GitHub Exploit DB Packet Storm

223165	7.1	HIGH Local	comodo	firewall internet_security antivirus	Comodo Antivirus through 12.0.0.6870, Comodo Firewall through 12.0.0.6870, and Comodo Internet Security Premium through 12.0.0.6870, with the Comodo Container feature, are vulnerable to Sandbox Escap…	NVD-CWE-noinfo	CVE-2019-14270	2024-11-21 13:26	2019-07-26	Show	GitHub Exploit DB Packet Storm

223166	6.5	MEDIUM Network	octopus	octopus_deploy	In Octopus Deploy versions 3.0.19 to 2019.7.2, when a web request proxy is configured, an authenticated user (in certain limited circumstances) could trigger a deployment that writes the web request …	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2019-14268	2024-11-21 13:26	2019-07-26	Show	GitHub Exploit DB Packet Storm

223167	8.8	HIGH Network	opensns	opensns	OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php.	CWE-89 SQL Injection	CVE-2019-14266	2024-11-21 13:26	2019-07-26	Show	GitHub Exploit DB Packet Storm

223168	7.5	HIGH Network	metadataextractor_project	metadataextractor	MetadataExtractor 2.1.0 allows stack consumption.	CWE-400 Uncontrolled Resource Consumption	CVE-2019-14262	2024-11-21 13:26	2019-07-25	Show	GitHub Exploit DB Packet Storm

223169	5.5	MEDIUM Local	gnu canonical opensuse	binutils ubuntu_linux leap	An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. simple_object_elf_match in simple-object-elf.c does not check for a zero shstrndx value, leading to an integer overflow …	CWE-787 CWE-190 Out-of-bounds Write Integer Overflow or Wraparound	CVE-2019-14250	2024-11-21 13:26	2019-07-24	Show	GitHub Exploit DB Packet Storm

223170	6.5	MEDIUM Network	libdwarf_project	libdwarf	dwarf_elf_load_headers.c in libdwarf before 2019-07-05 allows attackers to cause a denial of service (division by zero) via an ELF file with a zero-size section group (SHT_GROUP), as demonstrated by …	CWE-369 Divide By Zero	CVE-2019-14249	2024-11-21 13:26	2019-07-24	Show	GitHub Exploit DB Packet Storm