Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244911 4.9 警告 Dokeos - Dokeos の main/auth/profile.php における任意の PHP ファイルを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6479 2012-06-26 15:54 2007-12-20 Show GitHub Exploit DB Packet Storm
244912 4.3 警告 シトリックス・システムズ - Citrix Web インターフェースおよび NFuse のオンラインヘルプ機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6477 2012-06-26 15:54 2007-11-8 Show GitHub Exploit DB Packet Storm
244913 5 警告 gf 3xplorer - GF-3XPLORER における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-6476 2012-06-26 15:54 2007-12-20 Show GitHub Exploit DB Packet Storm
244914 6.4 警告 gf 3xplorer - GF-3XPLORER におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6475 2012-06-26 15:54 2007-12-20 Show GitHub Exploit DB Packet Storm
244915 4.3 警告 gf 3xplorer - GF-3XPLORER におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6474 2012-06-26 15:54 2007-12-20 Show GitHub Exploit DB Packet Storm
244916 7.5 危険 FreeWebshop - FreeWebshop の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6466 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
244917 4.3 警告 Ganglia - Ganglia の ganglia-web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6465 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
244918 6.8 警告 form tools - Form ツールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6464 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
244919 4.3 警告 Flyspray - Flyspray の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6461 2012-06-26 15:54 2007-12-9 Show GitHub Exploit DB Packet Storm
244920 4.3 警告 anon proxy server - Anon Proxy Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6460 2012-06-26 15:54 2007-12-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219051 6.8 MEDIUM
Adjacent 		huawei p30_pro_firmware
p30_firmware 		There is a man-in-the-middle (MITM) vulnerability on Huawei P30 smartphones versions before ELE-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1), and P30 Pro versions before VOG-AL00 9.1.0.162 (C01E160R1P12/… NVD-CWE-noinfo
CVE-2019-5215 2024-11-21 13:44 2019-06-5 Show GitHub Exploit DB Packet Storm
219052 3.9 LOW
Physics 		huawei mate20_firmware Mate20 Huawei smartphones versions earlier than HMA-AL00C00B175 have an out-of-bounds read vulnerability. An attacker with a high permission runs some specific commands on the smartphone. Due to insu… CWE-125
Out-of-bounds Read 		CVE-2019-5296 2024-11-21 13:44 2019-06-5 Show GitHub Exploit DB Packet Storm
219053 4.6 MEDIUM
Physics 		huawei y9_2019_firmware There is an information leak vulnerability in some Huawei phones, versions earlier than Jackman-L21 8.2.0.155(C185R1P2). When a local attacker uses the camera of a smartphone, the attacker can exploi… NVD-CWE-noinfo
CVE-2019-5281 2024-11-21 13:44 2019-06-5 Show GitHub Exploit DB Packet Storm
219054 5.5 MEDIUM
Local 		huawei mate_9_pro_fimware Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361(C636) versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privi… CWE-20
 Improper Input Validation  		CVE-2019-5244 2024-11-21 13:44 2019-06-5 Show GitHub Exploit DB Packet Storm
219055 8.1 HIGH
Network 		revive-adserver revive_adserver Use of cryptographically weak PRNG in the password recovery token generation of Revive Adserver < v4.2.1 causes a potential authentication bypass attack if an attacker exploits the password recovery … CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2019-5440 2024-11-21 13:44 2019-05-29 Show GitHub Exploit DB Packet Storm
219056 7.8 HIGH
Local 		haxx
opensuse
fedoraproject
debian
f5
netapp
oracle 		libcurl
leap
fedora
debian_linux
traffix_signaling_delivery_controller
steelstore_cloud_integrated_storage
solidfire
hci_management_node
enterprise_manager_ops_center
mysql… 		A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1. CWE-787
 Out-of-bounds Write 		CVE-2019-5436 2024-11-21 13:44 2019-05-29 Show GitHub Exploit DB Packet Storm
219057 3.7 LOW
Network 		haxx curl An integer overflow in curl's URL API results in a buffer overflow in libcurl 7.62.0 to and including 7.64.1. CWE-190
 Integer Overflow or Wraparound 		CVE-2019-5435 2024-11-21 13:44 2019-05-29 Show GitHub Exploit DB Packet Storm
219058 5.3 MEDIUM
Network 		harpjs harp Path traversal using symlink in npm harp module versions <= 0.29.0. CWE-59
Link Following 		CVE-2019-5438 2024-11-21 13:44 2019-05-11 Show GitHub Exploit DB Packet Storm
219059 5.3 MEDIUM
Network 		harpjs harp Information exposure through the directory listing in npm's harp module allows to access files that are supposed to be ignored according to the harp server rules.Vulnerable versions are <= 0.29.0 and… CWE-200
Information Exposure 		CVE-2019-5437 2024-11-21 13:44 2019-05-11 Show GitHub Exploit DB Packet Storm
219060 8.1 HIGH
Network 		sqlite
canonical 		sqlite
ubuntu_linux 		An exploitable use after free vulnerability exists in the window function functionality of Sqlite3 3.26.0. A specially crafted SQL command can cause a use after free vulnerability, potentially result… CWE-416
 Use After Free 		CVE-2019-5018 2024-11-21 13:44 2019-05-11 Show GitHub Exploit DB Packet Storm