Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246161 4.3 警告 Cerberus, LLC - Cerberus FTP Server の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5930 2012-06-26 15:54 2007-11-10 Show GitHub Exploit DB Packet Storm
246162 4.3 警告 CA Technologies - CA eTrust SiteMinder Agent の forms/smpwservices.fcc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5923 2012-06-26 15:54 2007-11-9 Show GitHub Exploit DB Packet Storm
246163 5 警告 cypress
bitchx		 - BitchX 用の Cypress スクリプト の modules/mdop.m におけるバックドアを含む脆弱性 CWE-200
情報漏えい 		CVE-2007-5922 2012-06-26 15:54 2007-11-9 Show GitHub Exploit DB Packet Storm
246164 6.8 警告 アドビシステムズ - Adobe ColdFusion におけるセッションハイジャックの脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-5905 2012-06-26 15:54 2007-11-13 Show GitHub Exploit DB Packet Storm
246165 5 警告 alhem - C++ Sockets Library の HTTPSocket.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5893 2012-06-26 15:54 2007-11-7 Show GitHub Exploit DB Packet Storm
246166 10 危険 easygb - easyGB の index.php におけるディレクトリトラバーサルの脆弱性 CWE-Other
その他 		CVE-2007-5890 2012-06-26 15:54 2007-11-7 Show GitHub Exploit DB Packet Storm
246167 4.3 警告 Coppermine Photo Gallery - CPG の displayecard.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5888 2012-06-26 15:54 2007-11-7 Show GitHub Exploit DB Packet Storm
246168 4.6 警告 bitchx - BitchX の e_hostname 関数における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2007-5839 2012-06-26 15:54 2007-11-6 Show GitHub Exploit DB Packet Storm
246169 7.5 危険 afcommerce - Amazing Flash AFCommerce における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5836 2012-06-26 15:54 2007-11-5 Show GitHub Exploit DB Packet Storm
246170 5 警告 bosdev - BosDev BosNews の Install.php におけるサービス運用妨害 (ファイルの上書き) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5835 2012-06-26 15:54 2007-11-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
218681 8.8 HIGH
Network 		labkey labkey_server An issue was discovered in LabKey Server 19.1.0. It is possible to force a logged-in administrator to execute code through a /reports-viewScriptReport.view CSRF vulnerability. CWE-352
 Origin Validation Error 		CVE-2019-9926 2024-11-21 13:52 2019-10-30 Show GitHub Exploit DB Packet Storm
218682 5.4 MEDIUM
Network 		labkey labkey_server An issue was discovered in LabKey Server 19.1.0. The display name of a user is vulnerable to stored XSS that can execute on administrators from security/permissions.view, security/addUsers.view, or w… CWE-79
Cross-site Scripting 		CVE-2019-9758 2024-11-21 13:52 2019-10-30 Show GitHub Exploit DB Packet Storm
218683 7.5 HIGH
Network 		labkey labkey_server An issue was discovered in LabKey Server 19.1.0. Sending an SVG containing an XXE payload to the endpoint visualization-exportImage.view or visualization-exportPDF.view allows local files to be read. CWE-611
XXE 		CVE-2019-9757 2024-11-21 13:52 2019-10-30 Show GitHub Exploit DB Packet Storm
218684 4.5 MEDIUM
Adjacent 		symantec messaging_gateway Symantec Messaging Gateway (prior to 10.7.0), may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data. NVD-CWE-noinfo
CVE-2019-9699 2024-11-21 13:52 2019-10-25 Show GitHub Exploit DB Packet Storm
218685 7.8 HIGH
Local 		cloudcti hip_integrator_recognition_configuration_tool CloudCTI HIP Integrator Recognition Configuration Tool allows privilege escalation via its EXQUISE integration. This tool communicates with a service (Recognition Update Client Service) via an insecu… CWE-269
 Improper Privilege Management 		CVE-2019-9745 2024-11-21 13:52 2019-10-15 Show GitHub Exploit DB Packet Storm
218686 7.8 HIGH
Local 		libreoffice libreoffice LibreOffice documents can contain macros. The execution of those macros is controlled by the document security settings, typically execution of macros are blocked by default. A URL decoding flaw exis… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2019-9853 2024-11-21 13:52 2019-09-28 Show GitHub Exploit DB Packet Storm
218687 6.5 MEDIUM
Network 		libav libav A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuse… CWE-787
 Out-of-bounds Write 		CVE-2019-9720 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
218688 8.8 HIGH
Network 		libav libav A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuse… CWE-787
 Out-of-bounds Write 		CVE-2019-9719 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
218689 6.5 MEDIUM
Network 		libav libav In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c has a complex format … CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-9717 2024-11-21 13:52 2019-09-20 Show GitHub Exploit DB Packet Storm
218690 5.3 MEDIUM
Network 		dahuasecurity ipc-hdw1x2x_firmware
ipc-hfw1x2x_firmware
ipc-hdw2x2x_firmware
ipc-hfw2x2x_firmware
ipc-hdw4x2x_firmware
ipc-hfw4x2x_firmware
ipc-hdbw4x2x_firmware
ipc-hdw5x2x_firmware
ipc-hf… 		Some Dahua products have information leakage issues. Attackers can obtain the IP address and device model information of the device by constructing malicious data packets. Affected products include: … NVD-CWE-noinfo
CVE-2019-9680 2024-11-21 13:52 2019-09-19 Show GitHub Exploit DB Packet Storm