Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253731 6.8 警告 アップル
サイバートラスト株式会社
Python Software Foundation
サン・マイクロシステムズ
レッドハット		 - Python の imageop.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-1679 2010-01-19 15:48 2008-04-22 Show GitHub Exploit DB Packet Storm
253732 5.8 警告 アップル
サイバートラスト株式会社
Python Software Foundation
サン・マイクロシステムズ
レッドハット		 - Python の imageop モジュールにおける複数の整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-4965 2010-01-19 15:47 2007-09-18 Show GitHub Exploit DB Packet Storm
253733 7.5 危険 アップル - Mac OS X 用の Java における任意のコードを実行される脆弱性 CWE-310
暗号の問題 		CVE-2009-2843 2010-01-18 12:22 2009-12-3 Show GitHub Exploit DB Packet Storm
253734 6.8 警告 アップル
GNU Project
サン・マイクロシステムズ
サイバートラスト株式会社
レッドハット		 - GNU tar の contains_dot_dot() 関数におけるディレクトリトラバーサルの脆弱性 - CVE-2007-4131 2010-01-18 12:21 2007-08-23 Show GitHub Exploit DB Packet Storm
253735 4.6 警告 IBM - IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4150 2010-01-15 14:10 2009-12-2 Show GitHub Exploit DB Packet Storm
253736 2.1 注意 サン・マイクロシステムズ - Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4080 2010-01-15 14:10 2009-11-24 Show GitHub Exploit DB Packet Storm
253737 5 警告 サン・マイクロシステムズ - Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4075 2010-01-15 14:09 2009-11-23 Show GitHub Exploit DB Packet Storm
253738 2.6 注意 オラクル - Oracle Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2010-01-14 15:01 2010-01-14 Show GitHub Exploit DB Packet Storm
253739 9.3 危険 マイクロソフト - Microsoft Internet Explorer に脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3672 2010-01-14 12:08 2009-11-25 Show GitHub Exploit DB Packet Storm
253740 9.3 危険 サン・マイクロシステムズ
VMware		 - Sun Java SE の java.lang パッケージにおける脆弱性 CWE-362
競合状態 		CVE-2009-2724 2010-01-14 12:08 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213411 7.5 HIGH
Network 		citrix sharefile Citrix ShareFile before 19.12 allows User Enumeration. It is possible to enumerate application username based on different server responses using the request to check the otp code. No authentication … CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-7217 2024-11-21 13:47 2019-05-14 Show GitHub Exploit DB Packet Storm
213412 7.5 HIGH
Network 		qnap myqnapcloud Buffer Overflow vulnerability in myQNAPcloud Connect 1.3.3.0925 and earlier could allow remote attackers to crash the program. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-7181 2024-11-21 13:47 2019-05-10 Show GitHub Exploit DB Packet Storm
213413 9.8 CRITICAL
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6985 allows deserialization of untrusted data. An unauthenticated attacker could run commands on the server when port 17001 was remotely accessible. This po… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-7214 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
213414 6.5 MEDIUM
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6985 allows directory traversal. An authenticated user could delete arbitrary files or could create files in new folders in arbitrary locations on the mail … CWE-22
Path Traversal 		CVE-2019-7213 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
213415 8.2 HIGH
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6985 has hardcoded secret keys. An unauthenticated attacker could access other users’ emails and file attachments. It was also possible to interact with mai… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-7212 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
213416 6.1 MEDIUM
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6995 has stored XSS. JavaScript code could be executed on the application by opening a malicious email or when viewing a malicious file attachment. CWE-79
Cross-site Scripting 		CVE-2019-7211 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
213417 9.8 CRITICAL
Network 		canonical snapd
ubuntu_linux 		Canonical snapd before version 2.37.1 incorrectly performed socket owner validation, allowing an attacker to run arbitrary commands as root. This issue affects: Canonical snapd versions prior to 2.37… CWE-863
 Incorrect Authorization 		CVE-2019-7304 2024-11-21 13:47 2019-04-24 Show GitHub Exploit DB Packet Storm
213418 7.5 HIGH
Network 		canonical snapd
ubuntu_linux 		A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to ma… NVD-CWE-Other
CVE-2019-7303 2024-11-21 13:47 2019-04-24 Show GitHub Exploit DB Packet Storm
213419 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 9.x, 10.x, and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Incorrect Access Control. A user retains t… CWE-269
 Improper Privilege Management 		CVE-2019-7155 2024-11-21 13:47 2019-04-17 Show GitHub Exploit DB Packet Storm
213420 6.1 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows XSS (issue 2 of 2). The user status field contains a lack o… CWE-79
Cross-site Scripting 		CVE-2019-6796 2024-11-21 13:47 2019-04-12 Show GitHub Exploit DB Packet Storm