Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250271 7.5 危険 badblue - BadBlue の ext.dll の PassThru 機能におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-6377 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
250272 7.5 危険 francisco burzi - Francisco Burzi PHP-Nuke の autohtml.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-6376 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
250273 7.5 危険 Bitweaver - Bitweaver における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-6375 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
250274 4.3 警告 Bitweaver - Bitweaver におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6374 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
250275 7.5 危険 gestdown - GestDown における任意の SQL コマンドを実行される脆弱性 CWE-89
SQLインジェクション
CVE-2007-6373 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
250276 5 警告 ezcontents - ezContents の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-6368 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
250277 4.3 警告 bcoos - bcoos の modules/ecal/display.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6365 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
250278 5 警告 gekkoware - Gekko における temp/ 配下の特定のファイルを読み取られる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-6361 2012-06-26 15:54 2007-12-14 Show GitHub Exploit DB Packet Storm
250279 4.9 警告 glyph and cog - alternate pdftops filter の pdftops.pl における任意のファイルを上書きされる脆弱性 CWE-DesignError
CVE-2007-6358 2012-06-26 15:54 2007-12-3 Show GitHub Exploit DB Packet Storm
250280 5 警告 aertherwide - exiftags におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題
CVE-2007-6356 2012-06-26 15:54 2007-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248021 8.8 HIGH
Network
paessler prtg_network_monitor PRTG Network Monitor before 18.3.44.2054 allows a remote authenticated attacker (with read-write privileges) to execute arbitrary code and OS commands with system privileges. When creating an HTTP Ad… CWE-20
 Improper Input Validation 
CVE-2018-19204 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248022 7.5 HIGH
Network
paessler prtg_network_monitor PRTG Network Monitor before 18.2.41.1652 allows remote unauthenticated attackers to terminate the PRTG Core Server Service via a special HTTP request. NVD-CWE-noinfo
CVE-2018-19203 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248023 7.5 HIGH
Network
uriparser_project
debian
uriparser
debian_linux
An issue was discovered in uriparser before 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri* function. CWE-476
 NULL Pointer Dereference
CVE-2018-19200 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248024 9.8 CRITICAL
Network
uriparser_project
debian
uriparser
debian_linux
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an integer overflow via a uriComposeQuery* or uriComposeQueryEx* function because of an unchecked multiplication. CWE-190
 Integer Overflow or Wraparound
CVE-2018-19199 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248025 9.8 CRITICAL
Network
uriparser_project
debian
uriparser
debian_linux
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an out-of-bounds write via a uriComposeQuery* or uriComposeQueryEx* function because the '&' character is mishandled in certain co… CWE-787
 Out-of-bounds Write
CVE-2018-19198 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248026 4.9 MEDIUM
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. admin\controller\database.php allows arbitrary directory deletion via admin/index.php?c=database&a=import&paths[]=../ directory traversal. CWE-22
Path Traversal
CVE-2018-19197 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm
248027 9.8 CRITICAL
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. It allows remote attackers to execute arbitrary code by using the type parameter to bypass the standard admin\controller\uploadfile.php restrictions on up… CWE-94
Code Injection
CVE-2018-19196 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm
248028 6.1 MEDIUM
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. There is XSS related to the template\default\show_product.html file. CWE-79
Cross-site Scripting
CVE-2018-19195 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm
248029 5.3 MEDIUM
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. /admin/index.php?c=database allows full path disclosure in a "failed to open stream" error message. CWE-200
Information Exposure
CVE-2018-19194 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm
248030 6.1 MEDIUM
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. There is XSS via the largest input box on the "New news" screen. CWE-79
Cross-site Scripting
CVE-2018-19193 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm