Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245611 10 危険 CA Technologies - 複数の CA 製品で使用される CA BrightStor ARCserve Media Server の SUN RPC サービスにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2139 2012-06-26 15:46 2007-04-25 Show GitHub Exploit DB Packet Storm
245612 7.5 危険 BMC Software - BMC Patrol PerformAgent の bgs_sdservice.exe におけるバッファオーバーフローの脆弱性 - CVE-2007-2136 2012-06-26 15:46 2007-04-22 Show GitHub Exploit DB Packet Storm
245613 10 危険 fac guestbook - FAC Guestbook におけるデータベースをダウンロードされる脆弱性 - CVE-2007-2101 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
245614 10 危険 fac guestbook - FAC Guestbook におけるデータベースをダウンロードされる脆弱性 - CVE-2007-2100 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
245615 7.5 危険 anthologia - Anthologia の index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2094 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
245616 6.8 警告 cnstats - CNStats における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2087 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
245617 6.8 警告 cnstats - CNStats における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2086 2012-06-26 15:46 2007-04-18 Show GitHub Exploit DB Packet Storm
245618 7.5 危険 actionpoll - Robert Ladstaetter ActionPoll の db/PollDB.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2065 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
245619 7.5 危険 actionpoll - Robert Ladstaetter ActionPoll における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2064 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
245620 4.3 警告 AfterLogic - AfterLogic MailBee WebMail Pro の check_login.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2061 2012-06-26 15:46 2007-04-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219001 9.8 CRITICAL
Network 		rainbowpdf office_server_document_converter A heap-based overflow vulnerability exists in the PowerPoint document conversion function of Rainbow PDF Office Server Document Converter V7.0 Pro R1 (7,0,2018,1113). While parsing Document Summary P… CWE-787
 Out-of-bounds Write 		CVE-2019-5019 2024-11-21 13:44 2019-03-8 Show GitHub Exploit DB Packet Storm
219002 9.8 CRITICAL
Network 		wxjava_project wxjava An issue was discovered in weixin-java-tools v3.3.0. There is an XXE vulnerability in the getXmlDoc method of the BaseWxPayResult.java file. NOTE: this issue exists because of an incomplete fix for C… CWE-611
XXE 		CVE-2019-5312 2024-11-21 13:44 2019-01-5 Show GitHub Exploit DB Packet Storm
219003 6.1 MEDIUM
Network 		yunucms yunucms An issue was discovered in YUNUCMS V1.1.8. app/index/controller/Show.php has an XSS vulnerability via the index.php/index/show/index cw parameter. CWE-79
Cross-site Scripting 		CVE-2019-5311 2024-11-21 13:44 2019-01-5 Show GitHub Exploit DB Packet Storm
219004 6.1 MEDIUM
Network 		yunucms yunucms YUNUCMS 1.1.8 has XSS in app/admin/controller/System.php because crafted data can be written to the sys.php file, as demonstrated by site_title in an admin/system/basic POST request. CWE-79
Cross-site Scripting 		CVE-2019-5310 2024-11-21 13:44 2019-01-4 Show GitHub Exploit DB Packet Storm
219005 7.2 HIGH
Network 		vtiger vtiger_crm Vtiger CRM 7.1.0 before Hotfix2 allows uploading files with the extension "php3" in the logo upload field, if the uploaded file is in PNG format and has a size of 150x40. One can put PHP code into th… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-5009 2024-11-21 13:44 2019-01-4 Show GitHub Exploit DB Packet Storm
219006 7.1 HIGH
Local 		foxitsoftware foxit_reader
phantompdf 		An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is an Out-of-Bounds Read Information Disclosure and crash due to a NULL pointer dereference when reading TIFF data dur… CWE-125
CWE-476
Out-of-bounds Read
 NULL Pointer Dereference 		CVE-2019-5007 2024-11-21 13:44 2019-01-4 Show GitHub Exploit DB Packet Storm
219007 5.5 MEDIUM
Local 		foxitsoftware foxit_reader
phantompdf 		An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. It is a NULL pointer dereference during PDF parsing. CWE-476
 NULL Pointer Dereference 		CVE-2019-5006 2024-11-21 13:44 2019-01-4 Show GitHub Exploit DB Packet Storm
219008 5.5 MEDIUM
Local 		foxitsoftware foxit_reader
phantompdf 		An issue was discovered in Foxit Reader and PhantomPDF before 9.4 on Windows. They allowed Denial of Service (application crash) via image data, because two bytes are written to the end of the alloca… CWE-787
 Out-of-bounds Write 		CVE-2019-5005 2024-11-21 13:44 2019-01-4 Show GitHub Exploit DB Packet Storm
219009 9.8 CRITICAL
Network 		ibm financial_transaction_manager IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.9 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which coul… CWE-89
SQL Injection 		CVE-2019-4575 2024-11-21 13:43 2022-06-16 Show GitHub Exploit DB Packet Storm
219010 2.4 LOW
Physics 		ibm maximo_anywhere IBM Maximo Anywhere 7.6.4.0 applications could allow obfuscation of the application source code. IBM X-Force ID: 161494. NVD-CWE-noinfo
CVE-2019-4352 2024-11-21 13:43 2022-02-17 Show GitHub Exploit DB Packet Storm