Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
246351	7.5	危険	eb design pty ltd	-	EB Design ebCrypt の EbCrypt.eb_c_PRNGenerator.1 ActiveX コントロールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5110	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246352	4.3	警告	flatnuke	-	FlatNuke の index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-5109	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246353	10	危険	ask.com	-	IAC Search & Media ask.com toolbar における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2007-5108	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246354	9.3	危険	ask.com	-	IAC Search & Media ask.com Ask Toolbar の askBar.dll の AskJeevesToolBar.SettingsPlugin.1 ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5107	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246355	7.5	危険	bcoos	-	bcoos の Arcade モジュールの index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5104	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246356	7.2	危険	furquim	-	ChironFS における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5101	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246357	7.5	危険	david watters	-	David Watters Helplink の show.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5099	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246358	6.8	警告	dragonfrugal	-	DFD Cart における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5098	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246359	7.5	危険	guanxicrm	-	guanxiCRM Business Solution の modules/webmail2/inc/rfc822.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5096	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

246360	4.3	警告	EGroupware	-	eGroupWare におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5091	2012-06-26 15:54	2007-09-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218901	9.8	CRITICAL Network	irisnet	irisnet-crypto	In irisnet-crypto before 1.1.7 for IRISnet, the util/utils.js file allows code execution because of unsafe eval usage.	CWE-94 Code Injection	CVE-2019-9115	2024-11-21 13:51	2019-02-25	Show	GitHub Exploit DB Packet Storm

218902	8.8	HIGH Network	libming	ming	Ming (aka libming) 0.4.8 has an out of bounds write vulnerability in the function strcpyext() in the decompile.c file in libutil.a.	CWE-787 Out-of-bounds Write	CVE-2019-9114	2024-11-21 13:51	2019-02-25	Show	GitHub Exploit DB Packet Storm

218903	8.8	HIGH Network	libming	ming	Ming (aka libming) 0.4.8 has a NULL pointer dereference in the function getString() in the decompile.c file in libutil.a.	CWE-476 NULL Pointer Dereference	CVE-2019-9113	2024-11-21 13:51	2019-02-25	Show	GitHub Exploit DB Packet Storm

218904	5.5	MEDIUM Local	micode	xiaomi_perseus-p-oss	The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in _sde_debugf…	CWE-190 Integer Overflow or Wraparound	CVE-2019-9112	2024-11-21 13:51	2019-02-25	Show	GitHub Exploit DB Packet Storm

218905	5.5	MEDIUM Local	micode	xiaomi_perseus-p-oss	The msm gpu driver for custom Linux kernels on the Xiaomi perseus-p-oss MIX 3 device through 2018-11-26 has an integer overflow and OOPS because of missing checks of the count argument in sde_evtlog_…	CWE-190 Integer Overflow or Wraparound	CVE-2019-9111	2024-11-21 13:51	2019-02-25	Show	GitHub Exploit DB Packet Storm

218906	6.1	MEDIUM Network	wuzhicms	wuzhi_cms	XSS exists in WUZHI CMS 4.1.0 via index.php?m=content&f=postinfo&v=listing&set_iframe=[XSS] to coreframe/app/content/postinfo.php.	CWE-79 Cross-site Scripting	CVE-2019-9110	2024-11-21 13:51	2019-02-25	Show	GitHub Exploit DB Packet Storm

218907	6.1	MEDIUM Network	wuzhicms	wuzhi_cms	XSS exists in WUZHI CMS 4.1.0 via index.php?m=message&f=message&v=add&username=[XSS] to coreframe/app/message/message.php.	CWE-79 Cross-site Scripting	CVE-2019-9109	2024-11-21 13:51	2019-02-25	Show	GitHub Exploit DB Packet Storm

218908	7.5	HIGH Network	flexera	flexnet_publisher	A Denial of Service (DoS) vulnerability was discovered in FlexNet Publisher's lmadmin 11.16.5, when doing a crafted POST request on lmadmin using the web-based tool.	NVD-CWE-noinfo	CVE-2019-8963	2024-11-21 13:50	2023-03-30	Show	GitHub Exploit DB Packet Storm

218909	8.8	HIGH Network	webkitgtk wpewebkit redhat	webkitgtk wpe_webkit enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux_server enterprise_linux_for_power_little_endian…	A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple m…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-8720	2024-11-21 13:50	2023-03-7	Show	GitHub Exploit DB Packet Storm

218910	5.3	MEDIUM Network	pilz	pmc	In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), an attacker can identify valid usernames.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2019-9011	2024-11-21 13:50	2022-12-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed