Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229331 5.8 警告 rickard andersson - PunBB 用の imgUpload モジュールを伴う Automatic Image Upload における任意のコンテンツをアップロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6527 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
229332 4.3 警告 Tiki Software Community Association - TikiWiki の tiki-special_chars.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6526 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
229333 7.5 危険 woltlab - wBB Lite の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6518 2012-12-20 18:34 2007-12-24 Show GitHub Exploit DB Packet Storm
229334 6.8 警告 ravware - RavWare Software MAS Flic ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6516 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
229335 7.5 危険 sitescape - SiteScape Forum の support/dispatch.cgi における任意の TLC コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6515 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
229336 5 警告 ウェブセンス - Websense Enterprise におけるコンテンツのフィルタリングを回避される脆弱性 CWE-DesignError
CVE-2007-6511 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
229337 6.4 警告 shttpd - Windows 上で稼動している shttpd における任意の CGI プログラムをダウンロードされる脆弱性 CWE-200
情報漏えい 		CVE-2007-6405 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
229338 5 警告 shttp - Windows 上で稼動している shttpd におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6404 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
229339 6.8 警告 Winamp - Nullsoft Winamp におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6403 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
229340 5 警告 poldoc - PolDoc CMS の download_file.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6400 2012-12-20 18:34 2007-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222121 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege vulnerability exists in Microsoft Windows Setup when it does not properly handle privileges, aka 'Microsoft Windows Setup Elevation of Privilege Vulnerability'. NVD-CWE-noinfo
CVE-2019-1316 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222122 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles hard links, aka 'Windows Error Reporting Manager Elevation of Privilege Vulnerability'. This CVE… CWE-59
Link Following 		CVE-2019-1315 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222123 6.8 MEDIUM
Physics 		microsoft windows_10_mobile A security feature bypass vulnerability exists in Windows 10 Mobile when Cortana allows a user to access files and folders through the locked screen, aka 'Windows 10 Mobile Security Feature Bypass Vu… NVD-CWE-noinfo
CVE-2019-1314 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222124 6.5 MEDIUM
Network 		microsoft sql_server_management_studio An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulne… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-1313 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222125 7.8 HIGH
Local 		microsoft windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		A remote code execution vulnerability exists when the Windows Imaging API improperly handles objects in memory, aka 'Windows Imaging API Remote Code Execution Vulnerability'. NVD-CWE-noinfo
CVE-2019-1311 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222126 7.5 HIGH
Network 		microsoft chakracore
edge 		A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th… CWE-787
 Out-of-bounds Write 		CVE-2019-1308 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222127 7.5 HIGH
Network 		microsoft chakracore
edge 		A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th… CWE-787
 Out-of-bounds Write 		CVE-2019-1307 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222128 7.5 HIGH
Network 		microsoft internet_explorer A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-123… NVD-CWE-noinfo
CVE-2019-1239 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222129 6.4 MEDIUM
Network 		microsoft internet_explorer A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-123… NVD-CWE-noinfo
CVE-2019-1238 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
222130 6.8 MEDIUM
Network 		microsoft windows_10
windows_server_2016
windows_server_2019 		An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input from an authenticated user on a guest operating syst… CWE-20
 Improper Input Validation  		CVE-2019-1230 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm