Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246271	4.3	警告	Drupal	-	Drupal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4064	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

246272	4.3	警告	Drupal	-	Drupal におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-4063	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

246273	9	危険	frank yaul	-	Frank Yaul corehttp の http.c の HttpSprockMake 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-4060	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246274	4.3	警告	DELL EMC (旧 EMC Corporation)	-	EMC VMware の vielib.dll の特定の ActiveX コントロールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4058	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246275	7.5	危険	adult directory	-	Prozilla Adult Directory の Directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4056	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246276	7.5	危険	8pixel	-	SimpleBlog の comments_get.asp における SQL インジェクションの脆弱性	-	CVE-2007-4055	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246277	10	危険	adempiere	-	ADempiere Bazaar の WebUI におけるシステムレベルのウインドウにアクセスされる脆弱性	-	CVE-2007-4050	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246278	6.4	警告	geoblog	-	geoBlog における任意のブログを削除される脆弱性	-	CVE-2007-4047	2012-06-26 15:54	2007-07-27	Show	GitHub Exploit DB Packet Storm

246279	6.8	警告	crystal reality llc	-	CrystalPlayer Pro におけるバッファオーバーフローの脆弱性	-	CVE-2007-4032	2012-06-26 15:54	2007-07-27	Show	GitHub Exploit DB Packet Storm

246280	6.6	警告	areca	-	Areca CLI の cli32 におけるバッファオーバーフローの脆弱性	-	CVE-2007-4027	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219551	8.8	HIGH Network	youphptube	youphptube	SQL injection vulnerabilities exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with Parameter uuid in /o…	CWE-89 SQL Injection	CVE-2019-5121	2024-11-21 13:44	2019-10-26	Show	GitHub Exploit DB Packet Storm

219552	8.8	HIGH Network	youphptube	youphptube	An exploitable SQL injection vulnerability exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with paramet…	CWE-89 SQL Injection	CVE-2019-5120	2024-11-21 13:44	2019-10-26	Show	GitHub Exploit DB Packet Storm

219553	8.8	HIGH Network	youphptube	youphptube	An exploitable SQL injection vulnerability exist in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with paramete…	CWE-89 SQL Injection	CVE-2019-5119	2024-11-21 13:44	2019-10-26	Show	GitHub Exploit DB Packet Storm

219554	8.8	HIGH Network	youphptube	youphptube	Exploitable SQL injection vulnerabilities exists in the authenticated portion of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with param…	CWE-89 SQL Injection	CVE-2019-5117	2024-11-21 13:44	2019-10-26	Show	GitHub Exploit DB Packet Storm

219555	8.8	HIGH Network	youphptube	youphptube	An exploitable SQL injection vulnerability exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause a SQL injection. An attacker can send a web request with parame…	CWE-89 SQL Injection	CVE-2019-5116	2024-11-21 13:44	2019-10-26	Show	GitHub Exploit DB Packet Storm

219556	9.9	CRITICAL Network	youphptube	youphptube	An exploitable SQL injection vulnerability exists in the authenticated portion of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with para…	CWE-89 SQL Injection	CVE-2019-5114	2024-11-21 13:44	2019-10-26	Show	GitHub Exploit DB Packet Storm

219557	7.8	HIGH Local	wacom	driver	An exploitable privilege escalation vulnerability exists in the Wacom, driver version 6.3.32-3, update helper service in the start/stopLaunchDProcess command. The command takes a user-supplied string…	CWE-88 Argument Injection	CVE-2019-5013	2024-11-21 13:44	2019-10-25	Show	GitHub Exploit DB Packet Storm

219558	7.8	HIGH Local	wacom	driver	An exploitable privilege escalation vulnerability exists in the Wacom, driver version 6.3.32-3, update helper service in the startProcess command. The command takes a user-supplied script argument an…	CWE-88 Argument Injection	CVE-2019-5012	2024-11-21 13:44	2019-10-25	Show	GitHub Exploit DB Packet Storm

219559	7.8	HIGH Local	gonitro	nitropdf	An exploitable use-after-free vulnerability exists in the Length parsing function of NitroPDF. A specially crafted PDF can cause a type confusion, resulting in a use-after-free condition. An attacker…	CWE-416 Use After Free	CVE-2019-5053	2024-11-21 13:44	2019-10-10	Show	GitHub Exploit DB Packet Storm

219560	7.8	HIGH Local	gonitro	nitropdf	A specifically crafted PDF file can lead to a heap corruption when opened in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger thi…	CWE-787 Out-of-bounds Write	CVE-2019-5050	2024-11-21 13:44	2019-10-10	Show	GitHub Exploit DB Packet Storm