Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230141	9.3	危険	x multimedia system	-	xmms における整数アンダーフローの脆弱性	-	CVE-2007-0654	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

230142	9.3	危険	x multimedia system	-	xmms における整数オーバーフローの脆弱性	-	CVE-2007-0653	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

230143	7.5	危険	rbl	-	Raymond BERTHOU script collection の tForum における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-0642	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230144	7.5	危険	shaffer solutions corp	-	SSC DiskAccess NFS Client の EnumPrintersA 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-0641	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230145	10	危険	Zabbix	-	ZABBIX におけるバッファオーバーフローの脆弱性	-	CVE-2007-0640	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230146	5	警告	vlad alexa mancini	-	Vlad Alexa Mancini PHPFootball の show.php における重要な情報を取得される脆弱性	-	CVE-2007-0638	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230147	7.5	危険	t-systems solutions for research gmbh	-	MyNews の include/themes/themefunc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0633	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230148	7.5	危険	x-dev	-	X-dev xNews の classes/class.news.php における SQL インジェクションの脆弱性	-	CVE-2007-0630	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230149	6.4	警告	plain black	-	Plain Black WebGUI の www_purgeList メソッドにおける許可されていないアセットを削除される脆弱性	-	CVE-2007-0629	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230150	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Access Manager におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0628	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213531	9.8	CRITICAL Network	mozilla	thunderbird firefox firefox_esr	A use-after-free vulnerability can occur when a raw pointer to a DOM element on a page is obtained using JavaScript and the element is then removed while still in use. This results in a potentially e…	CWE-416 Use After Free	CVE-2019-9790	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

213532	9.8	CRITICAL Network	mozilla	firefox	Mozilla developers and community members reported memory safety bugs present in Firefox 65. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of…	CWE-787 Out-of-bounds Write	CVE-2019-9789	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

213533	9.8	CRITICAL Network	mozilla redhat	firefox firefox_esr thunderbird enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus	The type inference system allows the compilation of functions that can cause type confusions between arbitrary objects when compiled through the IonMonkey just-in-time (JIT) compiler and when the con…	CWE-843 Type Confusion	CVE-2019-9791	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

213534	9.8	CRITICAL Network	mozilla redhat	firefox firefox_esr thunderbird enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus	Mozilla developers and community members reported memory safety bugs present in Firefox 65, Firefox ESR 60.5, and Thunderbird 60.5. Some of these bugs showed evidence of memory corruption and we pres…	CWE-787 Out-of-bounds Write	CVE-2019-9788	2024-11-21 13:52	2019-04-27	Show	GitHub Exploit DB Packet Storm

213535	6.1	MEDIUM Network	wordfence	wordfence	The Wordfence plugin 7.2.3 for WordPress allows XSS via a unique attack vector. NOTE: It has been asserted that this is not a valid vulnerability in the context of the Wordfence WordPress plugin as t…	CWE-79 Cross-site Scripting	CVE-2019-9669	2024-11-21 13:52	2019-04-26	Show	GitHub Exploit DB Packet Storm

213536	10.0	CRITICAL Network	envoyproxy	envoy	Envoy 1.9.0 and before does not normalize HTTP URL paths. A remote attacker may craft a relative path, e.g., something/../admin, to bypass access control, e.g., a block on /admin. A backend server co…	CWE-706 Use of Incorrectly-Resolved Name or Reference	CVE-2019-9901	2024-11-21 13:52	2019-04-26	Show	GitHub Exploit DB Packet Storm

213537	8.3	HIGH Network	envoyproxy redhat	envoy openshift_service_mesh	When parsing HTTP/1.x header values, Envoy 1.9.0 and before does not reject embedded zero characters (NUL, ASCII 0x0). This allows remote attackers crafting header values containing embedded NUL char…	CWE-74 Injection	CVE-2019-9900	2024-11-21 13:52	2019-04-26	Show	GitHub Exploit DB Packet Storm

213538	6.5	MEDIUM Network	google	tensorflow	NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file.	CWE-476 NULL Pointer Dereference	CVE-2019-9635	2024-11-21 13:52	2019-04-25	Show	GitHub Exploit DB Packet Storm

213539	9.8	CRITICAL Network	western_digital	my_cloud_mirror_gen_2_firmware my_cloud_ex2_ultra_firmware my_cloud_ex2100_firmware my_cloud_ex4100 my_cloud_dl2100 my_cloud_dl4100_firmware my_cloud_pr2100_firmware my_cloud_pr4…	Western Digital My Cloud, My Cloud Mirror Gen2, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, My Cloud DL4100, My Cloud PR2100 and My Cloud PR4100 firmware before 2.31.174 is…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-9951	2024-11-21 13:52	2019-04-25	Show	GitHub Exploit DB Packet Storm

213540	9.8	CRITICAL Network	westerndigital	my_cloud_firmware my_cloud_mirror_gen2_firmware my_cloud_ex2_ultra_firmware my_cloud_ex2100_firmware my_cloud_ex4100_firmware my_cloud_dl2100_firmware my_cloud_dl4100_firmware my…	Western Digital My Cloud, My Cloud Mirror Gen2, My Cloud EX2 Ultra, My Cloud EX2100, My Cloud EX4100, My Cloud DL2100, My Cloud DL4100, My Cloud PR2100 and My Cloud PR4100 firmware before 2.31.174 is…	CWE-521 Weak Password Requirements	CVE-2019-9950	2024-11-21 13:52	2019-04-25	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed