Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246271	4.3	警告	Drupal	-	Drupal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4064	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

246272	4.3	警告	Drupal	-	Drupal におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-4063	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

246273	9	危険	frank yaul	-	Frank Yaul corehttp の http.c の HttpSprockMake 関数におけるバッファオーバーフローの脆弱性	-	CVE-2007-4060	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246274	4.3	警告	DELL EMC (旧 EMC Corporation)	-	EMC VMware の vielib.dll の特定の ActiveX コントロールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4058	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246275	7.5	危険	adult directory	-	Prozilla Adult Directory の Directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4056	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246276	7.5	危険	8pixel	-	SimpleBlog の comments_get.asp における SQL インジェクションの脆弱性	-	CVE-2007-4055	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246277	10	危険	adempiere	-	ADempiere Bazaar の WebUI におけるシステムレベルのウインドウにアクセスされる脆弱性	-	CVE-2007-4050	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

246278	6.4	警告	geoblog	-	geoBlog における任意のブログを削除される脆弱性	-	CVE-2007-4047	2012-06-26 15:54	2007-07-27	Show	GitHub Exploit DB Packet Storm

246279	6.8	警告	crystal reality llc	-	CrystalPlayer Pro におけるバッファオーバーフローの脆弱性	-	CVE-2007-4032	2012-06-26 15:54	2007-07-27	Show	GitHub Exploit DB Packet Storm

246280	6.6	警告	areca	-	Areca CLI の cli32 におけるバッファオーバーフローの脆弱性	-	CVE-2007-4027	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219571	6.1	MEDIUM Network	arubanetworks	arubaos	Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker would be able to accomplish this by sending certain URL parameter…	CWE-74 Injection	CVE-2019-5314	2024-11-21 13:44	2019-09-14	Show	GitHub Exploit DB Packet Storm

219572	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the Host Access Point Daemon (hostapd) on the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) wireless router. A SOAP request sent in…	CWE-476 NULL Pointer Dereference	CVE-2019-5055	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

219573	7.5	HIGH Network	netgear	wnr2000_firmware	An exploitable denial-of-service vulnerability exists in the session handling functionality of the NETGEAR N300 (WNR2000v5 with Firmware Version V1.0.0.70) HTTP server. An HTTP request with an empty …	CWE-476 NULL Pointer Dereference	CVE-2019-5054	2024-11-21 13:44	2019-09-12	Show	GitHub Exploit DB Packet Storm

219574	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab email notification feature which could result in a persistent XSS. This was addressed in GitLab 12.1.2, 12.0.4, and 11.11.6.	CWE-79 Cross-site Scripting	CVE-2019-5471	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

219575	5.4	MEDIUM Network	gitlab	gitlab	An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.…	CWE-79 Cross-site Scripting	CVE-2019-5467	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

219576	5.3	MEDIUM Network	gitlab	gitlab	An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.…	CWE-200 CWE-862 Information Exposure Missing Authorization	CVE-2019-5463	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

219577	3.5	LOW Adjacent	gitlab	gitlab	An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This…	CWE-20 Improper Input Validation	CVE-2019-5461	2024-11-21 13:44	2019-09-10	Show	GitHub Exploit DB Packet Storm

219578	6.5	MEDIUM Network	epignosishq	efront_lms	An exploitable SQL injection vulnerability exists in the unauthenticated portion of eFront LMS, versions v5.2.12 and earlier. Specially crafted web request to login page can cause SQL injections, res…	CWE-89 SQL Injection	CVE-2019-5070	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm

219579	8.8	HIGH Network	epignosishq	efront_lms	A code execution vulnerability exists in Epignosis eFront LMS v5.2.12. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker c…	CWE-502 Deserialization of Untrusted Data	CVE-2019-5069	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm

219580	5.3	MEDIUM Network	blynk	blynk-library	An exploitable information disclosure vulnerability exists in the packet-parsing functionality of Blynk-Library v0.6.1. A specially crafted packet can cause an unterminated strncpy, resulting in info…	CWE-125 Out-of-bounds Read	CVE-2019-5065	2024-11-21 13:44	2019-09-6	Show	GitHub Exploit DB Packet Storm