Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 2:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229851 7.5 危険 Trivantis Corporation Inc. - Trivantis CourseMill Enterprise Learning Management System の userlogin.jsp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6338 2012-12-20 18:34 2007-12-14 Show GitHub Exploit DB Packet Storm
229852 5 警告 sergey lyubka - Windows 上で稼動する Sergey Lyubka Simple HTTPD におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6326 2012-12-20 18:34 2007-12-13 Show GitHub Exploit DB Packet Storm
229853 5 警告 xml2owl - xml2owl の filedownload.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6322 2012-12-20 18:34 2007-12-13 Show GitHub Exploit DB Packet Storm
229854 4.3 警告 Roundcube.net - RoundCube webmail におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6321 2012-12-20 18:34 2007-12-11 Show GitHub Exploit DB Packet Storm
229855 6.8 警告 WordPress.org - WordPress の wp-includes/query.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6318 2012-12-20 18:34 2007-12-11 Show GitHub Exploit DB Packet Storm
229856 5.5 警告 Real Time Logic - BarracudaDrive Web Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6317 2012-12-20 18:34 2007-12-11 Show GitHub Exploit DB Packet Storm
229857 4.3 警告 Real Time Logic - BarracudaDrive Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6316 2012-12-20 18:34 2007-12-11 Show GitHub Exploit DB Packet Storm
229858 4 警告 Real Time Logic - Group Chat の BarracudaDrive Web Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2007-6315 2012-12-20 18:34 2007-12-11 Show GitHub Exploit DB Packet Storm
229859 5 警告 Real Time Logic - BarracudaDrive Web Server における Web スクリプトに対するソースコードを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6314 2012-12-20 18:34 2007-12-11 Show GitHub Exploit DB Packet Storm
229860 4.3 警告 ウェブセンス - Websense Enterprise および Web Security Suite の Web Reporting Tools portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6312 2012-12-20 18:34 2007-12-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223221 4.8 MEDIUM
Adjacent 		microfocus solutions_business_manager Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to reflected XSS. CWE-79
Cross-site Scripting 		CVE-2019-18944 2024-11-21 13:33 2021-02-26 Show GitHub Exploit DB Packet Storm
223222 8.0 HIGH
Adjacent 		microfocus solutions_business_manager Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to XML External Entity Processing (XXE) on certain operations. CWE-611
XXE 		CVE-2019-18943 2024-11-21 13:33 2021-02-26 Show GitHub Exploit DB Packet Storm
223223 4.8 MEDIUM
Adjacent 		microfocus solutions_business_manager Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to stored XSS. The application reflects previously stored user input without encoding. CWE-79
Cross-site Scripting 		CVE-2019-18942 2024-11-21 13:33 2021-02-26 Show GitHub Exploit DB Packet Storm
223224 7.8 HIGH
Local 		autotrace_project
fedoraproject 		autotrace
fedora 		A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image. This may occur after the use-after-free in CVE-2017-9182. CWE-415
 Double Free 		CVE-2019-19005 2024-11-21 13:33 2021-02-12 Show GitHub Exploit DB Packet Storm
223225 3.3 LOW
Local 		autotrace_project
fedoraproject 		autotrace
fedora 		A biWidth*biBitCnt integer overflow in input-bmp.c in autotrace 0.31.1 allows attackers to provide an unexpected input value to malloc via a malformed bitmap image. CWE-190
 Integer Overflow or Wraparound 		CVE-2019-19004 2024-11-21 13:33 2021-02-12 Show GitHub Exploit DB Packet Storm
223226 9.8 CRITICAL
Network 		sparkdevnetwork rock_rms Rock RMS versions before 8.10 and versions 9.0 through 9.3 fails to properly validate files uploaded in the application. The only protection mechanism is a file-extension blacklist that can be bypass… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-18643 2024-11-21 13:33 2021-01-8 Show GitHub Exploit DB Packet Storm
223227 9.8 CRITICAL
Network 		sparkdevnetwork rock_rms Rock RMS version before 8.6 is vulnerable to account takeover by tampering with the user ID parameter in the profile update feature. The lack of validation and use of sequential user IDs allows any u… NVD-CWE-noinfo
CVE-2019-18642 2024-11-21 13:33 2021-01-8 Show GitHub Exploit DB Packet Storm
223228 6.5 MEDIUM
Network 		un4seen bass The BASS Audio Library 2.4.14 under Windows is prone to a BASS_StreamCreateFile Denial of Service vulnerability (infinite loop) via a crafted .mp3 file. This weakness could allow attackers to consume… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-18796 2024-11-21 13:33 2020-10-16 Show GitHub Exploit DB Packet Storm
223229 6.5 MEDIUM
Network 		un4seen bass The BASS Audio Library 2.4.14 under Windows is prone to a BASS_StreamCreateFile out of bounds read vulnerability via a crafted .wav file. An attacker can exploit this issues to gain access to sensiti… CWE-125
Out-of-bounds Read 		CVE-2019-18795 2024-11-21 13:33 2020-10-16 Show GitHub Exploit DB Packet Storm
223230 6.5 MEDIUM
Network 		un4seen bass The BASS Audio Library 2.4.14 under Windows is prone to a BASS_StreamCreateFile Use after Free vulnerability via a crafted .ogg file. An attacker can exploit this to gain access to sensitive informat… CWE-416
 Use After Free 		CVE-2019-18794 2024-11-21 13:33 2020-10-16 Show GitHub Exploit DB Packet Storm