Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245521	9.3	危険	アップル	-	Apple QuickTime for Java における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-2388	2012-06-26 15:46	2007-05-29	Show	GitHub Exploit DB Packet Storm

245522	10	危険	アップル	-	Intel ハードウェア上の Apple Xserve Lights-Out Management における管理アクセス権を取得される脆弱性	-	CVE-2007-2387	2012-06-26 15:46	2007-05-31	Show	GitHub Exploit DB Packet Storm

245523	9.4	危険	アップル	-	Apple Mac OS X の mDNSResponder におけるバッファオーバーフローの脆弱性	-	CVE-2007-2386	2012-06-26 15:46	2007-05-24	Show	GitHub Exploit DB Packet Storm

245524	5	警告	Google	-	GWT フレームワークにおけるデータを取得される脆弱性	-	CVE-2007-2378	2012-06-26 15:46	2007-04-30	Show	GitHub Exploit DB Packet Storm

245525	5	警告	Direct Web Remoting	-	Getahead DWR フレームワークにおけるデータを取得される脆弱性	-	CVE-2007-2377	2012-06-26 15:46	2007-04-30	Show	GitHub Exploit DB Packet Storm

245526	5	警告	The Dojo Foundation	-	Dojo のフレームワークにおけるデータを取得される脆弱性	-	CVE-2007-2376	2012-06-26 15:46	2007-04-30	Show	GitHub Exploit DB Packet Storm

245527	9.3	危険	マイクロソフト	-	複数の Microsoft Windows 製品における任意のコードを実行される脆弱性	-	CVE-2007-2374	2012-06-26 15:46	2007-04-30	Show	GitHub Exploit DB Packet Storm

245528	10	危険	gregory kokanosky	-	Gregory Kokanosky phpMyNewsletter における電子メールメッセージを作成される脆弱性	-	CVE-2007-2372	2012-06-26 15:46	2007-04-30	Show	GitHub Exploit DB Packet Storm

245529	10	危険	gregory kokanosky	-	Gregory Kokanosky phpMyNewsletter の admin/index.php における静的コードを挿入される脆弱性	-	CVE-2007-2371	2012-06-26 15:46	2007-04-30	Show	GitHub Exploit DB Packet Storm

245530	7.4	危険	コーレル株式会社	-	Corel Paint Shop Pro におけるバッファオーバーフローの脆弱性	-	CVE-2007-2366	2012-06-26 15:46	2007-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219121	8.8	HIGH Network	open-emr	openemr	In OpenEMR 5.0.1 and earlier, an authenticated attacker can execute arbitrary commands on the host system via the Scanned Forms interface when creating a new form.	CWE-78 OS Command	CVE-2019-3968	2024-11-21 13:42	2019-08-21	Show	GitHub Exploit DB Packet Storm

219122	6.5	MEDIUM Network	dell	emc_powerconnect_8024_firmware emc_powerconnect_7000_firmware emc_powerconnect_m6348_firmware emc_powerconnect_m6220_firmware emc_powerconnect_m8024_firmware emc_powerconnect_m8024-k_f…	Dell EMC PowerConnect 8024, 7000, M6348, M6220, M8024 and M8024-K running firmware versions prior to 5.1.15.2 contain a plain-text password storage vulnerability. TACACS\Radius credentials are stored…	CWE-522 Insufficiently Protected Credentials	CVE-2019-3753	2024-11-21 13:42	2019-08-21	Show	GitHub Exploit DB Packet Storm

219123	6.5	MEDIUM Network	open-emr	openemr	In OpenEMR 5.0.1 and earlier, the patient file download interface contains a directory traversal flaw that allows authenticated attackers to download arbitrary files from the host system.	CWE-22 Path Traversal	CVE-2019-3967	2024-11-21 13:42	2019-08-21	Show	GitHub Exploit DB Packet Storm

219124	6.1	MEDIUM Network	open-emr	openemr	In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the foreign_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's sess…	CWE-79 Cross-site Scripting	CVE-2019-3966	2024-11-21 13:42	2019-08-21	Show	GitHub Exploit DB Packet Storm

219125	6.1	MEDIUM Network	open-emr	openemr	In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the document_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's ses…	CWE-79 Cross-site Scripting	CVE-2019-3965	2024-11-21 13:42	2019-08-21	Show	GitHub Exploit DB Packet Storm

219126	6.1	MEDIUM Network	open-emr	openemr	In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the doc_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's session.	CWE-79 Cross-site Scripting	CVE-2019-3964	2024-11-21 13:42	2019-08-21	Show	GitHub Exploit DB Packet Storm

219127	6.1	MEDIUM Network	open-emr	openemr	In OpenEMR 5.0.1 and earlier, controller.php contains a reflected XSS vulnerability in the patient_id parameter. This could allow an attacker to execute arbitrary code in the context of a user's sess…	CWE-79 Cross-site Scripting	CVE-2019-3963	2024-11-21 13:42	2019-08-21	Show	GitHub Exploit DB Packet Storm

219128	8.1	HIGH Network	tenable	nessus	Nessus 8.5.2 and earlier on Windows platforms were found to contain an issue where certain system files could be overwritten arbitrarily, potentially creating a denial of service condition.	NVD-CWE-noinfo	CVE-2019-3974	2024-11-21 13:42	2019-08-16	Show	GitHub Exploit DB Packet Storm

219129	5.4	MEDIUM Network	zte	zxhn_f670_firmware	All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability (XSS). Due to incomplete input validation, an authorized user can exploit this vulnerabilit…	CWE-79 Cross-site Scripting	CVE-2019-3418	2024-11-21 13:42	2019-08-16	Show	GitHub Exploit DB Packet Storm

219130	8.8	HIGH Network	zte	zxhn_f670_firmware	All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by command injection vulnerability. Due to insufficient parameter validation check, an authorized user can exploit this vulnerabi…	CWE-78 OS Command	CVE-2019-3417	2024-11-21 13:42	2019-08-16	Show	GitHub Exploit DB Packet Storm