Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246331 4.3 警告 gadu-gadu - Gadu-Gadu の GG Client の HandleEmotsConfig 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6411 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
246332 4.3 警告 gadu-gadu - Gadu-Gadu におけるクロスサイトリクエストフォージェリ攻撃の脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-6410 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
246333 4.3 警告 gadu-gadu - Gadu-Gadu の gg プロトコルハンドラにおけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2007-6409 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
246334 4.3 警告 CA Technologies - CA eTrust Threat Management Console におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6406 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
246335 6.5 警告 ace image hosting script - Ace Image Hosting Script の albums.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6393 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
246336 7.5 危険 dominion web - DWdirectory における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6392 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
246337 2.1 注意 GNOME Project - GNOME screensaver の通知機能におけるクリップボードの内容などを読まれる脆弱性 CWE-DesignError
CVE-2007-6389 2012-06-26 15:54 2007-12-11 Show GitHub Exploit DB Packet Storm
246338 7.5 危険 BEAシステムズ - BEA WebLogic Mobility Server の Image Converter 機能におけるアプリケーションファイルおよびリソースアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2007-6384 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
246339 5.5 警告 chandler project - Cosmo のDAV コンポーネントにおける他ユーザのホームコレクションの任意のリソースを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6383 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
246340 7.5 危険 e-xoops - exoops における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6380 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
218831 6.5 MEDIUM
Network 		amazon_affiliate_store_project amazon_affiliate_store PHP Scripts Mall Amazon Affiliate Store 2.1.6 allows Parameter Tampering of the payment amount. NVD-CWE-noinfo
CVE-2019-9864 2024-11-21 13:52 2019-03-29 Show GitHub Exploit DB Packet Storm
218832 9.8 CRITICAL
Network 		abus secvest_wireless_alarm_system_fuaa50000_firmware
secvest_wireless_remote_control_fube50014_firmware
secvest_wireless_remote_control_fube50015_firmware 		Due to the use of an insecure algorithm for rolling codes in the ABUS Secvest wireless alarm system FUAA50000 3.01.01 and its remote controls FUBE50014 and FUBE50015, an attacker is able to predict v… CWE-330
 Use of Insufficiently Random Values 		CVE-2019-9863 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
218833 6.5 MEDIUM
Adjacent 		abus secvest_wireless_alarm_system_fuaa50000_firmware
secvest_wireless_remote_control_fube50014_firmware
secvest_wireless_remote_control_fube50015_firmware 		An issue was discovered on ABUS Secvest wireless alarm system FUAA50000 3.01.01 in conjunction with Secvest remote control FUBE50014 or FUBE50015. Because "encrypted signal transmission" is missing, … CWE-311
Missing Encryption of Sensitive Data 		CVE-2019-9862 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
218834 7.5 HIGH
Network 		abus secvest_wireless_alarm_system_fuaa50000_firmware
secvest_wireless_remote_control_fube50014_firmware
secvest_wireless_remote_control_fube50015_firmware 		Due to unencrypted signal communication and predictability of rolling codes, an attacker can "desynchronize" an ABUS Secvest wireless remote control (FUBE50014 or FUBE50015) relative to its controlle… CWE-330
CWE-319
 Use of Insufficiently Random Values
Cleartext Transmission of Sensitive Information 		CVE-2019-9860 2024-11-21 13:52 2019-03-28 Show GitHub Exploit DB Packet Storm
218835 6.5 MEDIUM
Network 		znc
canonical
fedoraproject 		znc
ubuntu_linux
fedora 		ZNC before 1.7.3-rc1 allows an existing remote user to cause a Denial of Service (crash) via invalid encoding. CWE-20
 Improper Input Validation  		CVE-2019-9917 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
218836 8.8 HIGH
Network 		phoenixcontact fl_nat_smn_8tx-m-dmg_firmware
fl_nat_smn_8tx-m_firmware
fl_nat_smn_8tx_firmware
fl_nat_smcs_8tx_firmware 		An issue was discovered on PHOENIX CONTACT FL NAT SMCS 8TX, FL NAT SMN 8TX, FL NAT SMN 8TX-M, and FL NAT SMN 8TX-M-DMG devices. There is unauthorized access to the WEB-UI by attackers arriving from t… CWE-384
 Session Fixation 		CVE-2019-9744 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
218837 8.8 HIGH
Network 		phoenixcontact rad-80211-xd\/hp-bus_firmware
rad-80211-xd_firmware 		An issue was discovered on PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS devices. Command injection can occur in the WebHMI component. CWE-77
Command Injection 		CVE-2019-9743 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
218838 6.1 MEDIUM
Network 		wikindx_project wikindx A cross-site scripting (XSS) vulnerability in ressource view in core/modules/resource/RESOURCEVIEW.php in Wikindx prior to version 5.7.0 allows remote attackers to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2019-9961 2024-11-21 13:52 2019-03-27 Show GitHub Exploit DB Packet Storm
218839 7.4 HIGH
Network 		hashicorp consul HashiCorp Consul 1.4.3 lacks server hostname verification for agent-to-agent TLS communication. In other words, the product behaves as if verify_server_hostname were set to false, even when it is act… CWE-346
 Origin Validation Error 		CVE-2019-9764 2024-11-21 13:52 2019-03-26 Show GitHub Exploit DB Packet Storm
218840 6.1 MEDIUM
Network 		warfareplugins social_warfare
social_warfare_pro 		The social-warfare plugin before 3.5.3 for WordPress has stored XSS via the wp-admin/admin-post.php?swp_debug=load_options swp_url parameter, as exploited in the wild in March 2019. This affects Soci… CWE-79
Cross-site Scripting 		CVE-2019-9978 2024-11-21 13:52 2019-03-25 Show GitHub Exploit DB Packet Storm