Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229911	7.5	危険	vu	-	VU Mass Mailer の redir.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6138	2012-12-20 18:33	2007-11-27	Show	GitHub Exploit DB Packet Storm

229912	4.3	警告	phpslideshow	-	PHPSlideShow の phpslideshow.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6135	2012-12-20 18:33	2007-11-27	Show	GitHub Exploit DB Packet Storm

229913	7.5	危険	PHPKIT	-	PHPKIT の pkinc/public/article.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6134	2012-12-20 18:33	2007-11-27	Show	GitHub Exploit DB Packet Storm

229914	2.1	注意	レッドハット	-	scanbuttond の buttonpressed.sh における任意のファイルを上書きされる脆弱性	CWE-16 環境設定	CVE-2007-6131	2012-12-20 18:33	2007-11-14	Show	GitHub Exploit DB Packet Storm

229915	7.5	危険	project alumni	-	project alumni における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6127	2012-12-20 18:33	2007-11-26	Show	GitHub Exploit DB Packet Storm

229916	4.3	警告	project alumni	-	project alumni におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6126	2012-12-20 18:33	2007-11-26	Show	GitHub Exploit DB Packet Storm

229917	7.5	危険	softbiz	-	Softbiz Freelancers Script の search_form.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6125	2012-12-20 18:33	2007-11-26	Show	GitHub Exploit DB Packet Storm

229918	4.3	警告	softbiz	-	Softbiz Freelancers Script の signin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6124	2012-12-20 18:33	2007-11-26	Show	GitHub Exploit DB Packet Storm

229919	6.8	警告	talkback	-	TalkBack における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6105	2012-12-20 18:33	2007-11-23	Show	GitHub Exploit DB Packet Storm

229920	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin の libraries/auth/cookie.auth.lib.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6100	2012-12-20 18:33	2007-11-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223561	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some circumstances.	NVD-CWE-noinfo	CVE-2019-18363	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223562	5.3	MEDIUM Network	jetbrains	mps	JetBrains MPS before 2019.2.2 exposed listening ports to the network.	NVD-CWE-noinfo	CVE-2019-18362	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223563	5.3	MEDIUM Local	jetbrains	intellij_idea	JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.	NVD-CWE-noinfo	CVE-2019-18361	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223564	5.3	MEDIUM Network	jetbrains	hub	In JetBrains Hub versions earlier than 2019.1.11738, username enumeration was possible through password recovery.	NVD-CWE-noinfo	CVE-2019-18360	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

223565	9.8	CRITICAL Network	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. There is missing descriptor table limit checking in x8…	CWE-269 Improper Privilege Management	CVE-2019-18425	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

223566	6.8	MEDIUM Physics	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device. This occurs because passe…	CWE-78 OS Command	CVE-2019-18424	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

223567	8.8	HIGH Network	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service via a XENMEM_add_to_physmap hypercall. p2m->max_mapped_gfn is used by the functions p2m_resolve_…	CWE-193 Off-by-one Error	CVE-2019-18423	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

223568	5.5	MEDIUM Local	totaldefense	anti-virus	The quarantine restoration function in Total Defense Anti-virus 11.5.2.28 is vulnerable to symbolic link attacks, allowing files to be written to privileged directories.	CWE-59 Link Following	CVE-2019-18645	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

223569	8.8	HIGH Network	xen debian fedoraproject	xen debian_linux fedora	An issue was discovered in Xen through 4.12.x allowing ARM guest OS users to cause a denial of service or gain privileges by leveraging the erroneous enabling of interrupts. Interrupts are unconditio…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-18422	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

223570	7.5	HIGH Network	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations. There are issues …	CWE-362 Race Condition	CVE-2019-18421	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed