Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229641	6.8	警告	sitex	-	SiteX CMS の search.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5141	2012-12-20 18:33	2007-09-28	Show	GitHub Exploit DB Packet Storm

229642	4.3	警告	simpgb	-	SimpGB におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5127	2012-12-20 18:33	2007-09-27	Show	GitHub Exploit DB Packet Storm

229643	10	危険	シマンテック	-	Windows Servers 用の Symantec Veritas Backup Exec のクライアントにおける脆弱性	CWE-noinfo 情報不足	CVE-2007-5126	2012-12-20 18:33	2007-09-27	Show	GitHub Exploit DB Packet Storm

229644	7.5	危険	solidweb	-	Novus の notas.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5123	2012-12-20 18:33	2007-09-27	Show	GitHub Exploit DB Packet Storm

229645	7.5	危険	SoftbizScripts	-	SoftBiz Classifieds PLUS の store_info.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5122	2012-12-20 18:33	2007-09-27	Show	GitHub Exploit DB Packet Storm

229646	5	警告	roi revolution	-	Google Urchin の report.cgi における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-5113	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

229647	4.3	警告	roi revolution	-	Google Urchin の session.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5112	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

229648	4.3	警告	WordPress.org	-	WordPress の wp-register.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5106	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

229649	4.3	警告	WordPress.org	-	WordPress の wp-register.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5105	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

229650	6.8	警告	wordsmith	-	Wordsmith の config.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5103	2012-12-20 18:33	2007-09-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223101	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, a non-destructive operation could be performed by a user without the corresponding permissions.	CWE-276 Incorrect Default Permissions	CVE-2019-18367	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223102	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, secure values could be exposed to users with the "View build runtime parameters and data" permission.	CWE-276 Incorrect Default Permissions	CVE-2019-18366	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223103	4.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.4, reverse tabnabbing was possible on several pages.	NVD-CWE-noinfo CWE-269 Improper Privilege Management	CVE-2019-18365	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223104	9.8	CRITICAL Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.4, insecure Java Deserialization could potentially allow remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2019-18364	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223105	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some circumstances.	NVD-CWE-noinfo	CVE-2019-18363	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223106	5.3	MEDIUM Network	jetbrains	mps	JetBrains MPS before 2019.2.2 exposed listening ports to the network.	NVD-CWE-noinfo	CVE-2019-18362	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223107	5.3	MEDIUM Local	jetbrains	intellij_idea	JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.	NVD-CWE-noinfo	CVE-2019-18361	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223108	5.3	MEDIUM Network	jetbrains	hub	In JetBrains Hub versions earlier than 2019.1.11738, username enumeration was possible through password recovery.	NVD-CWE-noinfo	CVE-2019-18360	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223109	9.8	CRITICAL Network	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. There is missing descriptor table limit checking in x8…	CWE-269 Improper Privilege Management	CVE-2019-18425	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

223110	6.8	MEDIUM Physics	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device. This occurs because passe…	CWE-78 OS Command	CVE-2019-18424	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm