Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229931 7.8 危険 van dyke technologies - VanDyke VShell におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6031 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
229932 10 危険 weird solutions - Weird Solutions BOOTPTurbo における脆弱性 CWE-noinfo
情報不足 		CVE-2007-6030 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
229933 7.1 危険 w1.fi - wpa_supplicant の driver_wext.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6025 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
229934 6.8 警告 WordPress.org - Wordpress における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2007-6013 2012-12-20 18:33 2007-11-19 Show GitHub Exploit DB Packet Storm
229935 7.8 危険 pioneers - pioneers におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6010 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
229936 10 危険 TestLink Development Team - TestLink における脆弱性 CWE-287
不適切な認証 		CVE-2007-6006 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
229937 4.3 警告 webex communications - WebEx の GpcContainer.GpcContainer.1 ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-6005 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
229938 7.5 危険 toko - Toko Instan の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6004 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
229939 4.3 警告 Thomson - Thomson SpeedTouch 716 の cgi/b/ic/connect におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6003 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
229940 7.5 危険 SoftbizScripts - Softbiz Auctions Script の product_desc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5999 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223121 8.8 HIGH
Local 		xen
fedoraproject 		xen
fedora 		An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via degenerate chains of linear pagetables, because of an incorrect fix for CVE-2017-15595. "… CWE-682
 Incorrect Calculation 		CVE-2019-19578 2024-11-21 13:34 2019-12-12 Show GitHub Exploit DB Packet Storm
223122 7.2 HIGH
Physics 		xen
fedoraproject 		xen
fedora 		An issue was discovered in Xen through 4.12.x allowing x86 AMD HVM guest OS users to cause a denial of service or possibly gain privileges by triggering data-structure access during pagetable-height … CWE-401
CWE-662
 Missing Release of Memory after Effective Lifetime
 Improper Synchronization 		CVE-2019-19577 2024-11-21 13:34 2019-12-12 Show GitHub Exploit DB Packet Storm
223123 5.3 MEDIUM
Network 		last.fm last.fm_desktop The Last.fm desktop app (Last.fm Scrobbler) through 2.1.39 on macOS makes HTTP requests that include an API key without the use of SSL/TLS. Although there is an Enable SSL option, it is disabled by d… CWE-1188
CWE-319
 Insecure Default Initialization of Resource
Cleartext Transmission of Sensitive Information 		CVE-2019-19251 2024-11-21 13:34 2019-12-11 Show GitHub Exploit DB Packet Storm
223124 9.8 CRITICAL
Network 		broadcom nolio An unsafe deserialization vulnerability exists in CA Release Automation (Nolio) 6.6 with the DataManagement component that can allow a remote attacker to execute arbitrary code. CWE-502
 Deserialization of Untrusted Data 		CVE-2019-19230 2024-11-21 13:34 2019-12-10 Show GitHub Exploit DB Packet Storm
223125 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can lead to slab-out-of-bounds read access in f2fs_build_segment_manager in fs/f2fs/segment.c, related to init_min_max_mtime in fs… CWE-125
Out-of-bounds Read 		CVE-2019-19449 2024-11-21 13:34 2019-12-8 Show GitHub Exploit DB Packet Storm
223126 7.8 HIGH
Local 		linux
debian
canonical
netapp 		linux_kernel
debian_linux
ubuntu_linux
cloud_backup
steelstore_cloud_integrated_storage
data_availability_services
solidfire
hci_management_node
active_iq_unified_manager
a… 		In the Linux kernel 5.0.21 and 5.3.11, mounting a crafted btrfs filesystem image, performing some operations, and then making a syncfs system call can lead to a use-after-free in try_merge_free_space… CWE-416
 Use After Free 		CVE-2019-19448 2024-11-21 13:34 2019-12-8 Show GitHub Exploit DB Packet Storm
223127 7.8 HIGH
Local 		linux
netapp 		linux_kernel
cloud_backup
steelstore_cloud_integrated_storage
data_availability_services
active_iq_unified_manager
solidfire_baseboard_management_controller
hci_baseboard_management… 		In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orp… CWE-416
 Use After Free 		CVE-2019-19447 2024-11-21 13:34 2019-12-8 Show GitHub Exploit DB Packet Storm
223128 4.8 MEDIUM
Network 		sangoma freepbx In userman 13.0.76.43 through 15.0.20 in Sangoma FreePBX, XSS exists in the user management screen of the Administrator web site, i.e., the/admin/config.php?display=userman URI. An attacker with suff… CWE-79
Cross-site Scripting 		CVE-2019-19552 2024-11-21 13:34 2019-12-7 Show GitHub Exploit DB Packet Storm
223129 9.8 CRITICAL
Network 		cesnet
redhat
fedoraproject 		libyang
enterprise_linux
fedora 		In all versions of libyang before 1.0-r5, a stack-based buffer overflow was discovered in the way libyang parses YANG files with a leaf of type "identityref". An application that uses libyang to pars… CWE-787
 Out-of-bounds Write 		CVE-2019-19334 2024-11-21 13:34 2019-12-7 Show GitHub Exploit DB Packet Storm
223130 4.8 MEDIUM
Network 		sangoma freepbx In userman 13.0.76.43 through 15.0.20 in Sangoma FreePBX, XSS exists in the User Management screen of the Administrator web site. An attacker with access to the User Control Panel application can sub… CWE-79
Cross-site Scripting 		CVE-2019-19551 2024-11-21 13:34 2019-12-7 Show GitHub Exploit DB Packet Storm