Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229851 7.5 危険 prozilla - Prozilla Pub Site Directory の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4258 2012-12-20 18:33 2007-08-8 Show GitHub Exploit DB Packet Storm
229852 5 警告 ynp - YNP Portal System の showpage.cgi におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4256 2012-12-20 18:33 2007-08-8 Show GitHub Exploit DB Packet Storm
229853 4.3 警告 toolbar gaming - Internet Explorer 用の Toolbar Gaming ツールバーにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4248 2012-12-20 18:33 2007-08-8 Show GitHub Exploit DB Packet Storm
229854 9.3 危険 vietphp - VietPHP における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-4235 2012-12-20 18:33 2007-08-8 Show GitHub Exploit DB Packet Storm
229855 4.3 警告 PHPNUKE - PHP-Nuke の Search モジュールにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4212 2012-12-20 18:33 2007-08-7 Show GitHub Exploit DB Packet Storm
229856 7.5 危険 redline software - la-nai CMS の module.php における SQL インジェクションの脆弱性 - CVE-2007-4210 2012-12-20 18:33 2007-08-7 Show GitHub Exploit DB Packet Storm
229857 4.3 警告 The Sleuth Kit - Brian Carrier TSK の ext2fs.c におけるサービス運用妨害 (DoS) 脆弱性 - CVE-2007-4195 2012-12-20 18:33 2007-08-7 Show GitHub Exploit DB Packet Storm
229858 5 警告 TIBCO Software - TIBCO RV クライアントのデフォルト設定におけるメッセージの内容をキャプチャされる脆弱性 - CVE-2007-4160 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
229859 5 警告 TIBCO Software - TIBCO RV の特定のデーモンにおけるユーザ名などの重要な情報を取得される脆弱性 - CVE-2007-4159 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
229860 7.8 危険 TIBCO Software - TIBCO rvd におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-4158 2012-12-20 18:33 2007-08-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223511 8.8 HIGH
Network 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service via a XENMEM_add_to_physmap hypercall. p2m->max_mapped_gfn is used by the functions p2m_resolve_… CWE-193
 Off-by-one Error 		CVE-2019-18423 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223512 5.5 MEDIUM
Local 		totaldefense anti-virus The quarantine restoration function in Total Defense Anti-virus 11.5.2.28 is vulnerable to symbolic link attacks, allowing files to be written to privileged directories. CWE-59
Link Following 		CVE-2019-18645 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223513 8.8 HIGH
Network 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service or gain privileges by leveraging the erroneous enabling of interrupts. Interrupts are unconditio… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-18422 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223514 7.5 HIGH
Network 		xen
debian
fedoraproject
opensuse 		xen
debian_linux
fedora
leap 		An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations. There are issues … CWE-362
Race Condition 		CVE-2019-18421 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223515 6.5 MEDIUM
Network 		xen
debian
fedoraproject 		xen
debian_linux
fedora 		An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via a VCPUOP_initialise hypercall. hypercall_create_continuation() is a variadic function whi… CWE-134
Use of Externally-Controlled Format String 		CVE-2019-18420 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223516 5.9 MEDIUM
Network 		totaldefense anti-virus The malware scan function in Total Defense Anti-virus 11.5.2.28 is vulnerable to a TOCTOU bug; consequently, symbolic link attacks allow privileged files to be deleted. CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2019-18644 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223517 7.5 HIGH
Network 		themooltipass moolticute An issue was discovered in Mooltipass Moolticute through v0.42.1 and v0.42.x-testing through v0.42.5-testing. There is a NULL pointer dereference in MPDevice_win.cpp. CWE-476
 NULL Pointer Dereference 		CVE-2019-18635 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223518 9.8 CRITICAL
Network 		europa eidas-node_integration_package European Commission eIDAS-Node Integration Package before 2.3.1 has Missing Certificate Validation because a certain ExplicitKeyTrustEvaluator return value is not checked. NOTE: only 2.1 is confirmed… CWE-295
Improper Certificate Validation  		CVE-2019-18633 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223519 9.8 CRITICAL
Network 		europa eidas-node_integration_package European Commission eIDAS-Node Integration Package before 2.3.1 allows Certificate Faking because an attacker can sign a manipulated SAML response with a forged certificate. CWE-295
Improper Certificate Validation  		CVE-2019-18632 2024-11-21 13:33 2019-10-31 Show GitHub Exploit DB Packet Storm
223520 9.8 CRITICAL
Network 		opera mini Opera Mini for Android allows attackers to bypass intended restrictions on .apk file download/installation via an RTLO (aka Right to Left Override) approach, as demonstrated by misinterpretation of m… NVD-CWE-noinfo
CVE-2019-18624 2024-11-21 13:33 2019-10-30 Show GitHub Exploit DB Packet Storm