Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 15, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245461	7.8	危険	audio cd tools	-	Audio CD Ripper OCX ActiveX コントロールの Init 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2603	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

245462	9.3	危険	divx city	-	fix.dll の GDivX Zenith Player AviFixer クラスの ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-2601	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

245463	7.5	危険	agner fog	-	aForum の common/func.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2596	2012-06-26 15:46	2007-05-11	Show	GitHub Exploit DB Packet Storm

245464	9.3	危険	BarCodeWiz, Inc.	-	BarCodeWiz ActiveX コントロールおよび BarcodeWiz.dll の Verify 関数におけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2585	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

245465	1.9	注意	アップル	-	Apple Safari における重要な情報を取得される脆弱性	-	CVE-2007-2580	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

245466	5.8	警告	acp3	-	ACP3 におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2579	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

245467	7.5	危険	acp3	-	ACP3 の search/list/action_search/index.php における詳細不明な脆弱性	-	CVE-2007-2578	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

245468	7.5	危険	acp3	-	ACP3 における SQL インジェクションの脆弱性	-	CVE-2007-2577	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

245469	6.8	警告	east wind software	-	East Wind Software advdaudio.ocx ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-2576	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

245470	7.5	危険	fipsasp	-	fipsCMS の index.asp における SQL インジェクションの脆弱性	-	CVE-2007-2561	2012-06-26 15:46	2007-05-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219131	7.1	HIGH Network	mcafee	web_gateway	Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows remote attackers to conduct clickjacking attacks via a crafted web page that contains …	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2019-3639	2024-11-21 13:42	2019-08-15	Show	GitHub Exploit DB Packet Storm

219132	6.7	MEDIUM Local	mcafee	file_and_removable_media_protection	Privilege Escalation vulnerability in McAfee FRP 5.x prior to 5.1.0.209 allows local users to gain elevated privileges via running McAfee Tray with elevated privileges.	NVD-CWE-noinfo	CVE-2019-3637	2024-11-21 13:42	2019-08-15	Show	GitHub Exploit DB Packet Storm

219133	6.5	MEDIUM Network	mcafee	web_gateway	Exfiltration of Data in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows attackers to obtain sensitive data via crafting a complex webpage that will trigger the Web Gateway to block the user…	NVD-CWE-noinfo	CVE-2019-3635	2024-11-21 13:42	2019-08-15	Show	GitHub Exploit DB Packet Storm

219134	7.8	HIGH Local	dell	digital_delivery	Dell/Alienware Digital Delivery versions prior to 4.0.41 contain a privilege escalation vulnerability. A local non-privileged malicious user could exploit a Universal Windows Platform application by …	CWE-22 CWE-362 Path Traversal Race Condition	CVE-2019-3744	2024-11-21 13:42	2019-08-10	Show	GitHub Exploit DB Packet Storm

219135	7.8	HIGH Local	dell	digital_delivery	Dell/Alienware Digital Delivery versions prior to 3.5.2013 contain a privilege escalation vulnerability. A local non-privileged malicious user could exploit a named pipe that performs binary deserial…	NVD-CWE-noinfo	CVE-2019-3742	2024-11-21 13:42	2019-08-10	Show	GitHub Exploit DB Packet Storm

219136	7.8	HIGH Local	pivotal apigee newrelic microsoft appdynamics bluemedora contrastsecurity cyberark datadoghq datastax dynatrace forgerock google ibm pagerduty riverbed signalsciences wavefront tibco solace snyk samba splunk sumologic synopsys yugabyte anynines	cloud_foundry_notifications cloud_foundry_log_cache_release cloud_foundry_deployment_concourse_tasks cloud_foundry_deployment cloud_foundry_smoke_test cloud_foundry_routing_release …	CF CLI version prior to v6.45.0 (bosh release version 1.16.0) writes the client id and secret to its config file when the user authenticates with --client-credentials flag. A local authenticated mali…	CWE-200 Information Exposure	CVE-2019-3800	2024-11-21 13:42	2019-08-6	Show	GitHub Exploit DB Packet Storm

219137	6.8	MEDIUM Physics	dell	chengming_3967_firmware chengming_3977_firmware chengming_3980_firmware g3_3579_firmware g3_3779_firmware g5_5587_firmware g5_5590_firmware g7_7588_firmware g7_7590_firmware	Select Dell Client Commercial and Consumer platforms contain an Improper Access Vulnerability. An unauthenticated attacker with physical access to the system could potentially bypass intended Secure …	NVD-CWE-noinfo	CVE-2019-3717	2024-11-21 13:42	2019-08-6	Show	GitHub Exploit DB Packet Storm

219138	8.1	HIGH Network	gnome redhat	evolution-ews enterprise_linux	It was discovered evolution-ews before 3.31.3 does not check the validity of SSL certificates. An attacker could abuse this flaw to get confidential information by tricking the user into connecting t…	CWE-295 Improper Certificate Validation	CVE-2019-3890	2024-11-21 13:42	2019-08-1	Show	GitHub Exploit DB Packet Storm

219139	5.4	MEDIUM Network	redhat	openshift	A vulnerability exists in the garbage collection mechanism of atomic-openshift. An attacker able spoof the UUID of a valid object from another namespace is able to delete children of those objects. V…	-	CVE-2019-3884	2024-11-21 13:42	2019-08-1	Show	GitHub Exploit DB Packet Storm

219140	7.2	HIGH Network	wallaceit	wallacepos	Unrestricted upload of file with dangerous type in WallacePOS 1.4.3 allows a remote, authenticated attacker to execute arbitrary code by uploading a malicious PHP file.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-3960	2024-11-21 13:42	2019-08-1	Show	GitHub Exploit DB Packet Storm