Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229621	7.5	危険	x-script	-	x-script GuestBook の mes_add.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5189	2012-12-20 18:33	2007-10-3	Show	GitHub Exploit DB Packet Storm

229622	7.5	危険	XOOPS	-	Xoops の XOOPS アップローダークラスにおける任意のファイルをアップロードされる脆弱性	CWE-noinfo 情報不足	CVE-2007-5188	2012-12-20 18:33	2007-10-1	Show	GitHub Exploit DB Packet Storm

229623	7.5	危険	PHP-Fusion	-	PHP-Fusion 用の Expanded Calendar モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5187	2012-12-20 18:33	2007-10-3	Show	GitHub Exploit DB Packet Storm

229624	6.8	警告	segue cms	-	Segue CMS の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5186	2012-12-20 18:33	2007-10-3	Show	GitHub Exploit DB Packet Storm

229625	6.8	警告	phpwcms-xt	-	phpWCMS XT における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5185	2012-12-20 18:33	2007-10-3	Show	GitHub Exploit DB Packet Storm

229626	7.5	危険	smbftpd	-	SmbFTPD の dirlist.c におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2007-5184	2012-12-20 18:33	2007-09-30	Show	GitHub Exploit DB Packet Storm

229627	4.3	警告	y&k iletisim formu	-	Y&K Iletisim Formu の iletisim.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5179	2012-12-20 18:33	2007-10-3	Show	GitHub Exploit DB Packet Storm

229628	5	警告	quicksilver forums	-	Quicksilver Forums における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2007-5172	2012-12-20 18:33	2007-10-1	Show	GitHub Exploit DB Packet Storm

229629	5	警告	quicksilver forums	-	Quicksilver Forums における任意の PMs を削除される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5171	2012-12-20 18:33	2007-10-1	Show	GitHub Exploit DB Packet Storm

229630	5	警告	サン・マイクロシステムズ	-	Sun Fire X2100 M2 および ELOM の SP における任意のネットワークトラフィックを送信される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5170	2012-12-20 18:33	2007-09-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223101	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, a non-destructive operation could be performed by a user without the corresponding permissions.	CWE-276 Incorrect Default Permissions	CVE-2019-18367	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223102	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, secure values could be exposed to users with the "View build runtime parameters and data" permission.	CWE-276 Incorrect Default Permissions	CVE-2019-18366	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223103	4.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.4, reverse tabnabbing was possible on several pages.	NVD-CWE-noinfo CWE-269 Improper Privilege Management	CVE-2019-18365	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223104	9.8	CRITICAL Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.4, insecure Java Deserialization could potentially allow remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2019-18364	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223105	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some circumstances.	NVD-CWE-noinfo	CVE-2019-18363	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223106	5.3	MEDIUM Network	jetbrains	mps	JetBrains MPS before 2019.2.2 exposed listening ports to the network.	NVD-CWE-noinfo	CVE-2019-18362	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223107	5.3	MEDIUM Local	jetbrains	intellij_idea	JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.	NVD-CWE-noinfo	CVE-2019-18361	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223108	5.3	MEDIUM Network	jetbrains	hub	In JetBrains Hub versions earlier than 2019.1.11738, username enumeration was possible through password recovery.	NVD-CWE-noinfo	CVE-2019-18360	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223109	9.8	CRITICAL Network	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. There is missing descriptor table limit checking in x8…	CWE-269 Improper Privilege Management	CVE-2019-18425	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

223110	6.8	MEDIUM Physics	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device. This occurs because passe…	CWE-78 OS Command	CVE-2019-18424	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm