Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229371	5	警告	xml2owl	-	xml2owl の filedownload.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6322	2012-12-20 18:34	2007-12-13	Show	GitHub Exploit DB Packet Storm

229372	4.3	警告	Roundcube.net	-	RoundCube webmail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6321	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

229373	6.8	警告	WordPress.org	-	WordPress の wp-includes/query.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6318	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

229374	5.5	警告	Real Time Logic	-	BarracudaDrive Web Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6317	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

229375	4.3	警告	Real Time Logic	-	BarracudaDrive Web Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6316	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

229376	4	警告	Real Time Logic	-	Group Chat の BarracudaDrive Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2007-6315	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

229377	5	警告	Real Time Logic	-	BarracudaDrive Web Server における Web スクリプトに対するソースコードを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2007-6314	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

229378	4.3	警告	ウェブセンス	-	Websense Enterprise および Web Security Suite の Web Reporting Tools portal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6312	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

229379	4.3	警告	webSPELL	-	webSPELL の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6309	2012-12-20 18:34	2007-12-11	Show	GitHub Exploit DB Packet Storm

229380	5	警告	phpmychat	-	phpMyChat の users_popupL.php3 における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6296	2012-12-20 18:34	2007-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222171	7.8	HIGH Local	microsoft	office project office_365_proplus	A security feature bypass vulnerability exists when Microsoft Office improperly handles input, aka 'Microsoft Office Security Feature Bypass Vulnerability'.	CWE-20 Improper Input Validation	CVE-2019-1264	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222172	5.5	MEDIUM Local	microsoft	excel office office_365_proplus	An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.	CWE-200 Information Exposure	CVE-2019-1263	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222173	5.4	MEDIUM Network	microsoft	sharepoint_foundation	A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office S…	CWE-79 Cross-site Scripting	CVE-2019-1262	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222174	8.8	HIGH Network	microsoft	sharepoint_foundation sharepoint_enterprise_server sharepoint_server	A spoofing vulnerability exists in Microsoft SharePoint when it improperly handles requests to authorize applications, resulting in cross-site request forgery (CSRF).To exploit this vulnerability, an…	CWE-352 Origin Validation Error	CVE-2019-1261	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222175	6.5	MEDIUM Network	microsoft	sharepoint_foundation sharepoint_enterprise_server sharepoint_server	An elevation of privilege vulnerability exists in Microsoft SharePoint, aka 'Microsoft SharePoint Elevation of Privilege Vulnerability'.	NVD-CWE-noinfo	CVE-2019-1260	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222176	8.8	HIGH Network	microsoft	sharepoint_foundation	A spoofing vulnerability exists in Microsoft SharePoint when it improperly handles requests to authorize applications, resulting in cross-site request forgery (CSRF).To exploit this vulnerability, an…	CWE-352 Origin Validation Error	CVE-2019-1259	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222177	8.8	HIGH Network	microsoft	sharepoint_foundation sharepoint_enterprise_server sharepoint_server	A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to check the source markup of an application package, aka 'Microsoft SharePoint Remote Code Execution Vuln…	CWE-20 Improper Input Validation	CVE-2019-1257	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222178	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is uniqu…	NVD-CWE-noinfo	CVE-2019-1256	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222179	5.5	MEDIUM Local	microsoft	windows_server_2016 windows_10 windows_server_2019	An information disclosure vulnerability exists when Windows Hyper-V writes uninitialized memory to disk, aka 'Windows Hyper-V Information Disclosure Vulnerability'.	CWE-908 Use of Uninitialized Resource	CVE-2019-1254	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222180	7.8	HIGH Local	microsoft	windows_server_1803 windows_server_2019 windows_10_1809 windows_10_1703 windows_10_1709 windows_10_1803 windows_server_1903 windows_10_1903	An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on th…	NVD-CWE-noinfo	CVE-2019-1253	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm