Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258691 6.8 警告 IBM - IBM Lotus Domino Web Access におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-0921 2010-03-16 11:15 2010-03-3 Show GitHub Exploit DB Packet Storm
258692 4.3 警告 IBM - IBM Lotus Domino Web Access におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0920 2010-03-16 11:14 2010-03-3 Show GitHub Exploit DB Packet Storm
258693 10 危険 IBM - IBM Lotus Domino Web Access の UltraLite 機能における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0918 2010-03-16 11:14 2010-03-3 Show GitHub Exploit DB Packet Storm
258694 4.9 警告 サイバートラスト株式会社
レッドハット
SystemTap		 - SystemTap の _get_argv および _get_compat_argv 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2010-0411 2010-03-16 11:14 2010-02-8 Show GitHub Exploit DB Packet Storm
258695 10 危険 サイバートラスト株式会社
レッドハット
SystemTap		 - SystemTap の stap-server における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4273 2010-03-16 11:14 2010-01-26 Show GitHub Exploit DB Packet Storm
258696 6.5 警告 サイバートラスト株式会社
Linux
レッドハット		 - KVM の x86 エミュレータにおける権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0298 2010-03-16 11:13 2010-02-9 Show GitHub Exploit DB Packet Storm
258697 4.4 警告 サイバートラスト株式会社
Fabrice Bellard
レッドハット		 - QEMU の usb_host_handle_control 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0297 2010-03-16 11:13 2010-02-9 Show GitHub Exploit DB Packet Storm
258698 6.8 警告 サン・マイクロシステムズ
freedesktop.org		 - Poppler における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-3605 2010-03-15 16:40 2009-11-2 Show GitHub Exploit DB Packet Storm
258699 4.1 警告 Linux
レッドハット		 - Linux kernel の smbfs に関する脆弱性 - CVE-2006-5871 2010-03-15 16:40 2005-10-5 Show GitHub Exploit DB Packet Storm
258700 7.8 危険 Linux
レッドハット		 - Linux kernel の selinux_parse_skb_ipv6 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2005-4886 2010-03-15 16:40 2005-10-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223411 6.5 MEDIUM
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6985 allows directory traversal. An authenticated user could delete arbitrary files or could create files in new folders in arbitrary locations on the mail … CWE-22
Path Traversal 		CVE-2019-7213 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
223412 8.2 HIGH
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6985 has hardcoded secret keys. An unauthenticated attacker could access other users’ emails and file attachments. It was also possible to interact with mai… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-7212 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
223413 6.1 MEDIUM
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6995 has stored XSS. JavaScript code could be executed on the application by opening a malicious email or when viewing a malicious file attachment. CWE-79
Cross-site Scripting 		CVE-2019-7211 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
223414 9.8 CRITICAL
Network 		canonical snapd
ubuntu_linux 		Canonical snapd before version 2.37.1 incorrectly performed socket owner validation, allowing an attacker to run arbitrary commands as root. This issue affects: Canonical snapd versions prior to 2.37… CWE-863
 Incorrect Authorization 		CVE-2019-7304 2024-11-21 13:47 2019-04-24 Show GitHub Exploit DB Packet Storm
223415 7.5 HIGH
Network 		canonical snapd
ubuntu_linux 		A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to ma… NVD-CWE-Other
CVE-2019-7303 2024-11-21 13:47 2019-04-24 Show GitHub Exploit DB Packet Storm
223416 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 9.x, 10.x, and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Incorrect Access Control. A user retains t… CWE-269
 Improper Privilege Management 		CVE-2019-7155 2024-11-21 13:47 2019-04-17 Show GitHub Exploit DB Packet Storm
223417 6.1 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows XSS (issue 2 of 2). The user status field contains a lack o… CWE-79
Cross-site Scripting 		CVE-2019-6796 2024-11-21 13:47 2019-04-12 Show GitHub Exploit DB Packet Storm
223418 6.1 MEDIUM
Network 		zarafa webaccess Unauthenticated reflected cross-site scripting (XSS) exists in Zarafa Webapp 2.0.1.47791 and earlier. NOTE: this is a discontinued product. The issue was fixed in later Zarafa Webapp versions; howeve… CWE-79
Cross-site Scripting 		CVE-2019-7219 2024-11-21 13:47 2019-04-12 Show GitHub Exploit DB Packet Storm
223419 9.8 CRITICAL
Network 		magento magento An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which causes sensitive data leakage. This issue is fixed in Magento 2.1 prior to 2.1.18… CWE-89
SQL Injection 		CVE-2019-7139 2024-11-21 13:47 2019-04-11 Show GitHub Exploit DB Packet Storm
223420 9.8 CRITICAL
Network 		roxyfileman roxy_fileman Roxy Fileman 1.4.5 allows attackers to execute renamefile.php (aka Rename File), createdir.php (aka Create Directory), fileslist.php (aka Echo File List), and movefile.php (aka Move File) operations. NVD-CWE-noinfo
CVE-2019-7174 2024-11-21 13:47 2019-04-10 Show GitHub Exploit DB Packet Storm