Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229071 6.8 警告 phppm - PHP Project Management におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5642 2012-12-20 18:33 2007-10-23 Show GitHub Exploit DB Packet Storm
229072 6.8 警告 phppm - PHP Project Management における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5641 2012-12-20 18:33 2007-10-23 Show GitHub Exploit DB Packet Storm
229073 10 危険 The Support Incident Tracker Project - Salford Software SiT! における脆弱性 CWE-noinfo
情報不足 		CVE-2007-5635 2012-12-20 18:33 2007-10-23 Show GitHub Exploit DB Packet Storm
229074 6.8 警告 towels - TOWels の src/scripture.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5628 2012-12-20 18:33 2007-10-23 Show GitHub Exploit DB Packet Storm
229075 6.8 警告 Creative Digital Resources - SocketMail の content/fnc-readmail3.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5627 2012-12-20 18:33 2007-10-23 Show GitHub Exploit DB Packet Storm
229076 4.3 警告 simongibson - ASP Site Search SearchSimon Lite の filename.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5625 2012-12-20 18:33 2007-10-23 Show GitHub Exploit DB Packet Storm
229077 7.5 危険 zehnet - ZZ:FlashChat の admin/inc/help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5620 2012-12-20 18:33 2007-10-22 Show GitHub Exploit DB Packet Storm
229078 7.2 危険 VMware - VMware Server における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2007-5619 2012-12-20 18:33 2007-10-21 Show GitHub Exploit DB Packet Storm
229079 7.2 危険 VMware - VMware Playerなどの製品における Authorization などのサービスにおける権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2007-5618 2012-12-20 18:33 2007-10-21 Show GitHub Exploit DB Packet Storm
229080 10 危険 VMware - VMware Player および Workstation における脆弱性 CWE-noinfo
情報不足 		CVE-2007-5617 2012-12-20 18:33 2007-10-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222151 5.5 MEDIUM
Local 		suse
opensuse 		linux_enterprise_server
leap 		A UNIX Symbolic Link (Symlink) Following vulnerability in the mysql-systemd-helper of the mariadb packaging of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15 allows local attackers … - CVE-2019-18901 2024-11-21 13:33 2020-03-3 Show GitHub Exploit DB Packet Storm
222152 7.8 HIGH
Local 		suse
opensuse 		linux_enterprise_server
leap 		A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of salt of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15; openSUSE Factory allows local attackers to escalat… - CVE-2019-18897 2024-11-21 13:33 2020-03-3 Show GitHub Exploit DB Packet Storm
222153 5.0 MEDIUM
Network 		open-xchange open-xchange_appsuite OX App Suite through 7.10.2 allows SSRF. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-18846 2024-11-21 13:33 2020-02-22 Show GitHub Exploit DB Packet Storm
222154 8.2 HIGH
Adjacent 		phoenixcontact fl_nat_2208_firmware
fl_nat_2304-2gc-2sfp_firmware 		Improper access control exists on PHOENIX CONTACT FL NAT 2208 devices before V2.90 and FL NAT 2304-2GC-2SFP devices before V2.90 when using MAC-based port security. NVD-CWE-noinfo
CVE-2019-18352 2024-11-21 13:33 2020-02-19 Show GitHub Exploit DB Packet Storm
222155 7.1 HIGH
Network 		hitachienergy asset_suite Insufficient access control in the web interface of ABB Asset Suite versions 9.0 to 9.3, 9.4 prior to 9.4.2.6, 9.5 prior to 9.5.3.2 and 9.6.0 enables full access to directly referenced objects. An at… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-18998 2024-11-21 13:33 2020-02-18 Show GitHub Exploit DB Packet Storm
222156 5.4 MEDIUM
Network 		lexmark cx31x_firmware
cx41x_firmware
cx310_firmware
ms310_firmware
ms312_firmware
ms317_firmware
ms410_firmware
m1140_firmware
ms315_firmware
ms415_firmware
ms417_firmware
m… 		Lexmark printer MS812 and multiple older generation Lexmark devices have a stored XSS vulnerability in the embedded web server. The vulnerability can be exploited to expose session credentials and ot… CWE-79
Cross-site Scripting 		CVE-2019-18791 2024-11-21 13:33 2020-02-14 Show GitHub Exploit DB Packet Storm
222157 7.8 HIGH
Local 		hp system_event_utility A potential security vulnerability has been identified with certain versions of HP System Event Utility prior to version 1.4.33. This vulnerability may allow a local attacker to execute arbitrary cod… CWE-428
 Unquoted Search Path or Element 		CVE-2019-18915 2024-11-21 13:33 2020-02-13 Show GitHub Exploit DB Packet Storm
222158 7.0 HIGH
Local 		teamviewer teamviewer TeamViewer Desktop through 14.7.1965 allows a bypass of remote-login access control because the same key is used for different customers' installations. It used a shared AES key for all installations… CWE-521
Weak Password Requirements  		CVE-2019-18988 2024-11-21 13:33 2020-02-8 Show GitHub Exploit DB Packet Storm
222159 6.3 MEDIUM
Local 		hp bromium Bromium client version 4.0.3.2060 and prior to 4.1.7 Update 1 has an out of bound read results in race condition causing Kernel memory leaks or denial of service. CWE-125
Out-of-bounds Read 		CVE-2019-18567 2024-11-21 13:33 2020-02-4 Show GitHub Exploit DB Packet Storm
222160 6.8 MEDIUM
Physics 		hp elitedesk_800_g5_dm_firmware
elitedesk_800_g5_sff_firmware
elitedesk_800_g5_twr_firmware
eliteone_800_g5_aio_firmware
prodesk_400_g5_dm_firmware
prodesk_400_g6_mt_firmware
prodesk_4… 		A potential security vulnerability with pre-boot DMA may allow unauthorized UEFI code execution using open-case attacks. This industry-wide issue requires physically accessing internal expansion slot… NVD-CWE-noinfo
CVE-2019-18913 2024-11-21 13:33 2020-01-31 Show GitHub Exploit DB Packet Storm