Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246181	9.3	危険	EdrawSoft	-	EDraw Office Viewer コンポーネントの officeviewer.ocx における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4420	2012-06-26 15:54	2007-08-18	Show	GitHub Exploit DB Packet Storm

246182	6.8	警告	シスコシステムズ	-	Cisco VPN Client における権限を取得される脆弱性	-	CVE-2007-4415	2012-06-26 15:54	2007-08-15	Show	GitHub Exploit DB Packet Storm

246183	6.8	警告	シスコシステムズ	-	Windows 上の Cisco VPN Client における権限を取得される脆弱性	-	CVE-2007-4414	2012-06-26 15:54	2007-08-15	Show	GitHub Exploit DB Packet Storm

246184	7.2	危険	bluecat networks	-	BlueCat Networks Adonis DNS/DHCP アプライアンスの CLI における使用 OS の root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-4390	2012-06-26 15:54	2007-08-17	Show	GitHub Exploit DB Packet Storm

246185	7.8	危険	2wire	-	複数の 2wire 製品の /xslt におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-4389	2012-06-26 15:54	2007-08-17	Show	GitHub Exploit DB Packet Storm

246186	10	危険	2wire	-	2wire の 1701HG および 2071 Gateway における空パスワードの脆弱性	-	CVE-2007-4388	2012-06-26 15:54	2007-08-17	Show	GitHub Exploit DB Packet Storm

246187	4.3	警告	2wire	-	2wire 1701HG および 2071 Gateway の /xslt におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-4387	2012-06-26 15:54	2007-08-17	Show	GitHub Exploit DB Packet Storm

246188	6	警告	getmyownarcade	-	GetMyOwnArcade の search.php における SQL インジェクションの脆弱性	-	CVE-2007-4386	2012-06-26 15:54	2007-08-17	Show	GitHub Exploit DB Packet Storm

246189	5	警告	counterpath	-	CounterPath X-Lite および eyeBeam におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4382	2012-06-26 15:54	2007-08-17	Show	GitHub Exploit DB Packet Storm

246190	5.8	警告	diskeeper	-	Diskeeper の管理者用インターフェースにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-4375	2012-06-26 15:54	2007-08-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220161	9.8	CRITICAL Network	aspose	aspose.pdf_for_c\+\+	An exploitable use-after-free vulnerability exists in the way LZW-compressed streams are processed in Aspose.PDF 19.2 for C++. A specially crafted PDF can cause a dangling heap pointer, resulting in …	CWE-416 Use After Free	CVE-2019-5066	2024-11-21 13:44	2019-09-19	Show	GitHub Exploit DB Packet Storm

220162	8.8	HIGH Network	aspose	aspose.pdf_for_c\+\+	An exploitable Use-After-Free vulnerability exists in the way FunctionType 0 PDF elements are processed in Aspose.PDF 19.2 for C++. A specially crafted PDF can cause a dangling heap pointer, resultin…	CWE-416 Use After Free	CVE-2019-5042	2024-11-21 13:44	2019-09-19	Show	GitHub Exploit DB Packet Storm

220163	7.2	HIGH Network	arubanetworks	arubaos	A command injection vulnerability is present in the web management interface of ArubaOS that permits an authenticated user to execute arbitrary commands on the underlying operating system. A maliciou…	CWE-78 OS Command	CVE-2019-5315	2024-11-21 13:44	2019-09-14	Show	GitHub Exploit DB Packet Storm

220164	6.1	MEDIUM Network	arubanetworks	arubaos	Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker would be able to accomplish this by sending certain URL parameter…	CWE-74 Injection	CVE-2019-5314	2024-11-21 13:44	2019-09-14	Show	GitHub Exploit DB Packet Storm

220165	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon (hostapd) on the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) wireless router. A SOAP request sent in…	CWE-476 NULL Pointer Dereference	CVE-2019-5055	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

220166	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the session handling functionality of the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) HTTP server. An HTTP request with an empty …	CWE-476 NULL Pointer Dereference	CVE-2019-5054	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

220167	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab email notification feature which could result in a persistent XSS. This was addressed in GitLab 12.1.2, 12.0.4, and 11.11.6.	CWE-79 Cross-site Scripting	CVE-2019-5471	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

220168	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.…	CWE-79 Cross-site Scripting	CVE-2019-5467	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

220169	5.3	MEDIUM Network	gitlab	gitlab	An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.…	CWE-200 CWE-862 Information Exposure Missing Authorization	CVE-2019-5463	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

220170	3.5	LOW Adjacent	gitlab	gitlab	An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This…	CWE-20 Improper Input Validation	CVE-2019-5461	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm