Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229131	7.5	危険	yannick tanguy	-	ELSEIF CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5305	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

229132	4.3	警告	yannick tanguy	-	ELSEIF CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5304	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

229133	4.3	警告	snewscms	-	SnewsCMS Rus の news_page.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5303	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

229134	4.3	警告	splitside	-	Directory Image Gallery の photos.cfm におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5292	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

229135	4.3	警告	zomplog	-	Zomplog におけるファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5278	2012-12-20 18:33	2007-10-8	Show	GitHub Exploit DB Packet Storm

229136	6.8	警告	trionic	-	Trionic Cite CMS における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5271	2012-12-20 18:33	2007-10-8	Show	GitHub Exploit DB Packet Storm

229137	7.5	危険	phpfreelog	-	phpFreeLog の log.php における PHP リモートファイルインクルージョンの脆弱性	CWE-20 不適切な入力確認	CVE-2007-5258	2012-12-20 18:33	2007-10-6	Show	GitHub Exploit DB Packet Storm

229138	7.2	危険	VirusBlokAda Ltd.	-	VirusBlokAda Vba32 AntiVirus における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5254	2012-12-20 18:33	2007-10-6	Show	GitHub Exploit DB Packet Storm

229139	4.3	警告	webhost automation	-	Helm におけるクロスサイトスクリプティングの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-5251	2012-12-20 18:33	2007-10-6	Show	GitHub Exploit DB Packet Storm

229140	4.3	警告	uebimiau	-	Uebimiau の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5235	2012-12-20 18:33	2007-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222271	9.8	CRITICAL Network	rabbitmq-c_project fedoraproject canonical debian	rabbitmq-c fedora ubuntu_linux debian_linux	An issue was discovered in amqp_handle_input in amqp_connection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTION_STATE_HEADER. A …	CWE-787 Out-of-bounds Write	CVE-2019-18609	2024-11-21 13:33	2019-12-2	Show	GitHub Exploit DB Packet Storm

222272	7.5	HIGH Network	alliedtelesis	at-gs950\/8_firmware	A Directory Traversal in the Web interface of the Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3 [1.00.047] allows unauthenticated attackers to read arbitrary system files via a GET request…	CWE-22 Path Traversal	CVE-2019-18922	2024-11-21 13:33	2019-11-30	Show	GitHub Exploit DB Packet Storm

222273	4.7	MEDIUM Local	linux redhat canonical fedoraproject opensuse	linux_kernel enterprise_linux ubuntu_linux fedora leap	The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka CID-39e72bf96f58. This is related to arch/powerpc/…	CWE-200 Information Exposure	CVE-2019-18660	2024-11-21 13:33	2019-11-28	Show	GitHub Exploit DB Packet Storm

222274	7.5	HIGH Network	squid-cache canonical debian fedoraproject	squid ubuntu_linux debian_linux fedora	An issue was discovered in Squid 2.x, 3.x, and 4.x through 4.8. Due to incorrect data management, it is vulnerable to information disclosure when processing HTTP Digest Authentication. Nonce tokens c…	CWE-200 Information Exposure	CVE-2019-18679	2024-11-21 13:33	2019-11-27	Show	GitHub Exploit DB Packet Storm

222275	5.3	MEDIUM Network	squid-cache canonical debian fedoraproject	squid ubuntu_linux debian_linux fedora	An issue was discovered in Squid 3.x and 4.x through 4.8. It allows attackers to smuggle HTTP requests through frontend software to a Squid instance that splits the HTTP Request pipeline differently.…	CWE-444 HTTP Request Smuggling	CVE-2019-18678	2024-11-21 13:33	2019-11-27	Show	GitHub Exploit DB Packet Storm

222276	6.1	MEDIUM Network	squid-cache canonical fedoraproject	squid ubuntu_linux fedora	An issue was discovered in Squid 3.x and 4.x through 4.8 when the append_domain setting is used (because the appended characters do not properly interact with hostname length restrictions). Due to in…	CWE-352 Origin Validation Error	CVE-2019-18677	2024-11-21 13:33	2019-11-27	Show	GitHub Exploit DB Packet Storm

222277	7.5	HIGH Network	squid-cache canonical fedoraproject debian	squid ubuntu_linux fedora debian_linux	An issue was discovered in Squid 3.x and 4.x through 4.8. Due to incorrect input validation, there is a heap-based buffer overflow that can result in Denial of Service to all clients using the proxy.…	CWE-787 Out-of-bounds Write	CVE-2019-18676	2024-11-21 13:33	2019-11-27	Show	GitHub Exploit DB Packet Storm

222278	10.0	CRITICAL Network	dell	emc_storage_monitoring_and_reporting	Dell EMC Storage Monitoring and Reporting version 4.3.1 contains a Java RMI Deserialization of Untrusted Data vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerabili…	CWE-502 Deserialization of Untrusted Data	CVE-2019-18580	2024-11-21 13:33	2019-11-27	Show	GitHub Exploit DB Packet Storm

222279	5.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition 8.17 through 12.4 in the Search feature provided by Elasticsearch integration.. It has Insecure Permissions (issue 1 of 4).	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-18456	2024-11-21 13:33	2019-11-27	Show	GitHub Exploit DB Packet Storm

222280	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition 11 through 12.4 when building Nested GraphQL queries. It has a large or infinite loop.	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2019-18455	2024-11-21 13:33	2019-11-27	Show	GitHub Exploit DB Packet Storm