Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246291	5	警告	comscripts	-	CS Guestbook における admin 名および MD5 パスワードハッシュを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-4937	2012-06-26 15:54	2007-09-18	Show	GitHub Exploit DB Packet Storm

246292	4.3	警告	アクシスコミュニケーションズ	-	AXIS カメラにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-4930	2012-06-26 15:54	2007-09-18	Show	GitHub Exploit DB Packet Storm

246293	4.3	警告	アクシスコミュニケーションズ	-	AXIS カメラにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4929	2012-06-26 15:54	2007-09-18	Show	GitHub Exploit DB Packet Storm

246294	4.9	警告	アクシスコミュニケーションズ	-	AXIS カメラにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2007-4928	2012-06-26 15:54	2007-09-18	Show	GitHub Exploit DB Packet Storm

246295	3.5	注意	アクシスコミュニケーションズ	-	AXIS カメラの axis-cgi/buffer/command.cgi におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-4927	2012-06-26 15:54	2007-09-18	Show	GitHub Exploit DB Packet Storm

246296	9.3	危険	アクシスコミュニケーションズ	-	AXIS カメラにおける重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2007-4926	2012-06-26 15:54	2007-09-18	Show	GitHub Exploit DB Packet Storm

246297	7.5	危険	ewire	-	ePC の ewirepcfunctions.php の ewirePC_Decrypt 関数における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2007-4925	2012-06-26 15:54	2007-09-18	Show	GitHub Exploit DB Packet Storm

246298	7.5	危険	ajax	-	Ajax File Browser の in _includes/settings.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4921	2012-06-26 15:54	2007-09-17	Show	GitHub Exploit DB Packet Storm

246299	7.5	危険	gelatocms	-	Gelato の classes/gelato.class.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4918	2012-06-26 15:54	2007-09-17	Show	GitHub Exploit DB Packet Storm

246300	10	危険	Boa	-	Boa 用の Intersil 拡張機能におけるメモリに格納された管理者パスワードを変更される脆弱性	CWE-20 不適切な入力確認	CVE-2007-4915	2012-06-26 15:54	2007-09-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220191	9.8	CRITICAL Network	accellion	file_transfer_appliance	Accellion File Transfer Appliance version FTA_8_0_540 suffers from an instance of CWE-798: Use of Hard-coded Credentials.	CWE-798 Use of Hard-coded Credentials	CVE-2019-5622	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220192	7.8	HIGH Local	abbs_software_audio_media_player_project	abbs_software_audio_media_player	ABBS Software Audio Media Player version 3.1 suffers from an instance of CWE-121: Stack-based Buffer Overflow.	CWE-787 Out-of-bounds Write	CVE-2019-5621	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220193	9.8	CRITICAL Network	hitachienergy	microscada_pro_sys600	ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function.	CWE-306 Missing Authentication for Critical Function	CVE-2019-5620	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220194	9.8	CRITICAL Network	aasync	aasync	AASync.com AASync version 2.2.1.0 suffers from an instance of CWE-121: Stack-based Buffer Overflow.	CWE-787 Out-of-bounds Write	CVE-2019-5619	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220195	7.8	HIGH Local	a-pdf	wav_to_mp3	A-PDF WAV to MP3 version 1.0.0 suffers from an instance of CWE-121: Stack-based Buffer Overflow.	CWE-787 Out-of-bounds Write	CVE-2019-5618	2024-11-21 13:45	2020-04-30	Show	GitHub Exploit DB Packet Storm

220196	9.8	CRITICAL Network	freebsd netapp	freebsd clustered_data_ontap	In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE before 11.3-RELEASE-p8, incomplete packet data validation may result in access…	CWE-119 CWE-20 Incorrect Access of Indexable Resource ('Range Error') Improper Input Validation	CVE-2019-5614	2024-11-21 13:45	2020-04-29	Show	GitHub Exploit DB Packet Storm

220197	7.8	HIGH Local	vmware	horizon_client remote_console workstation	For VMware Horizon Client for Windows (5.x and prior before 5.3.0), VMware Remote Console for Windows (10.x before 11.0.0), VMware Workstation for Windows (15.x before 15.5.2) the folder containing c…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-5543	2024-11-21 13:45	2020-03-17	Show	GitHub Exploit DB Packet Storm

220198	6.5	MEDIUM Network	barracuda	load_balancer_adc_firmware	Authenticated, administrative access to a Barracuda Load Balancer ADC running unpatched firmware <= v6.4 allows one to edit the LDAP service configuration of the balancer and change the LDAP server t…	CWE-522 Insufficiently Protected Credentials	CVE-2019-5648	2024-11-21 13:45	2020-03-12	Show	GitHub Exploit DB Packet Storm

220199	9.8	CRITICAL Network	freebsd	freebsd	In FreeBSD 12.0-RELEASE before 12.0-RELEASE-p13, a missing check in the ipsec packet processor allows reinjection of an old packet to be accepted by the ipsec endpoint. Depending on the higher-level …	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-5613	2024-11-21 13:45	2020-02-19	Show	GitHub Exploit DB Packet Storm

220200	6.5	MEDIUM Network	gitlab	gitlab	An authorization issue was discovered in GitLab EE < 12.1.2, < 12.0.4, and < 11.11.6 allowing the merge request approval rules to be overridden without appropriate permissions.	CWE-863 Incorrect Authorization	CVE-2019-5474	2024-11-21 13:45	2020-01-28	Show	GitHub Exploit DB Packet Storm