Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229761 4.3 警告 xmb forum - XMB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6728 2012-12-20 18:34 2009-07-5 Show GitHub Exploit DB Packet Storm
229762 10 危険 synce - SynCE (SynCE-dccm) の vdccm におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6703 2012-12-20 18:34 2008-03-4 Show GitHub Exploit DB Packet Storm
229763 7.5 危険 Simple DirectMedia Layer - SDL_image の IMG_gif.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6697 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
229764 2.1 注意 webcalendar - WebCalendar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6696 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
229765 5 警告 VideoLAN - VideoLAN VLC の RTSP モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6684 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
229766 5 警告 VideoLAN - VideoLAN VLC のブラウザプラグインにおける任意のファイルを上書きされる脆弱性 CWE-DesignError
CVE-2007-6683 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
229767 7.5 危険 VideoLAN - VideoLAN VLC の httpd_FileCallBack 関数 におけるフォーマットストリングの脆弱性 CWE-DesignError
CVE-2007-6682 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
229768 7.5 危険 VideoLAN - VideoLAN VLC の modules/demux/subtitle.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6681 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
229769 5 警告 uber uploader - UU の初期設定におけるアップロードに危険な拡張子を使用される脆弱性 CWE-16
環境設定 		CVE-2007-6676 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
229770 4.3 警告 rapidshare - RapidShare Database の Default.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6674 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223771 6.5 MEDIUM
Network 		osisoft pi_vision OSIsoft PI Vision, All versions of PI Vision prior to 2019. The affected product is vulnerable to an improper access control, which may return unauthorized tag data when viewing analysis data referen… NVD-CWE-Other
CVE-2019-18275 2024-11-21 13:32 2020-01-16 Show GitHub Exploit DB Packet Storm
223772 4.8 MEDIUM
Network 		osisoft pi_vision OSIsoft PI Vision, PI Vision 2017 R2 and PI Vision 2017 R2 SP1. The affected product is vulnerable to cross-site scripting, which may allow invalid input to be introduced. CWE-79
Cross-site Scripting 		CVE-2019-18273 2024-11-21 13:32 2020-01-16 Show GitHub Exploit DB Packet Storm
223773 8.8 HIGH
Network 		osisoft pi_vision OSIsoft PI Vision, All versions of PI Vision prior to 2019. The affected product is vulnerable to a cross-site request forgery that may be introduced on the PI Vision administration site. CWE-352
 Origin Validation Error 		CVE-2019-18271 2024-11-21 13:32 2020-01-16 Show GitHub Exploit DB Packet Storm
223774 4.7 MEDIUM
Local 		osisoft pi_vision In OSIsoft PI System multiple products and versions, a local attacker could view sensitive information in log files when service accounts are customized during installation or upgrade of PI Vision. T… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2019-18244 2024-11-21 13:32 2020-01-16 Show GitHub Exploit DB Packet Storm
223775 7.8 HIGH
Local 		totalav totalav_2020 TotalAV 2020 4.14.31 has a quarantine flaw that allows privilege escalation. Exploitation uses an NTFS directory junction to restore a malicious DLL from quarantine into the system32 folder. NVD-CWE-noinfo
CVE-2019-18194 2024-11-21 13:32 2020-01-11 Show GitHub Exploit DB Packet Storm
223776 4.3 MEDIUM
Network 		otrs
debian
opensuse 		otrs
debian_linux
leap
backports_sle 		An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.12, and Community Edition 5.0.x through 5.0.38 and 6.0.x through 6.0.23. An attacker who is logged into OTRS as an agent… NVD-CWE-noinfo
CVE-2019-18179 2024-11-21 13:32 2020-01-7 Show GitHub Exploit DB Packet Storm
223777 9.8 CRITICAL
Network 		dlink dir-859_firmware
dir-822_firmware
dir-823_firmware
dir-865l_firmware
dir-868l_firmware
dir-869_firmware
dir-880l_firmware
dir-890l_firmware
dir-890r_firmware
dir-885l_firmw… 		The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially crafted… CWE-78
OS Command  		CVE-2019-17621 2024-11-21 13:32 2019-12-31 Show GitHub Exploit DB Packet Storm
223778 6.1 MEDIUM
Network 		reliablecontrols mach-prowebsys_firmware
mach-prowebcom_firmware 		Reliable Controls MACH-ProWebCom/Sys, all versions prior to 2.15 (Firmware versions prior to 8.26.4), may allow attacker to execute commands on behalf of the user when an authenticated user clicks on… CWE-79
Cross-site Scripting 		CVE-2019-18249 2024-11-21 13:32 2019-12-25 Show GitHub Exploit DB Packet Storm
223779 8.8 HIGH
Network 		orckestra c1_cms An issue was discovered in Orckestra C1 CMS through 6.6. The EntityTokenSerializer class in Composite.dll is prone to unvalidated deserialization of wrapped BinaryFormatter payloads, leading to arbit… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-18211 2024-11-21 13:32 2019-12-24 Show GitHub Exploit DB Packet Storm
223780 7.8 HIGH
Local 		we-con plc_editor Multiple buffer overflow vulnerabilities exist when the PLC Editor Version 1.3.5_20190129 processes project files. An attacker could use a specially crafted project file to exploit and execute code u… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-18236 2024-11-21 13:32 2019-12-24 Show GitHub Exploit DB Packet Storm