Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250451 7.5 危険 derek leung - pSlash における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5014 2012-06-26 15:54 2007-09-20 Show GitHub Exploit DB Packet Storm
250452 6.8 警告 GNOME Project - balsa の ir_fetch_seq 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5007 2012-06-26 15:54 2007-09-6 Show GitHub Exploit DB Packet Storm
250453 10 危険 CA Technologies - CA BrightStor ARCserve Backup for Laptops and Desktops のコマンドハンドラにおけるユーザを追加および削除される脆弱性 CWE-287
不適切な認証 		CVE-2007-5006 2012-06-26 15:54 2007-09-20 Show GitHub Exploit DB Packet Storm
250454 10 危険 CA Technologies - CA BrightStor ARCserve Backup for Laptops and Desktops の rxRPC.dll におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5005 2012-06-26 15:54 2007-09-20 Show GitHub Exploit DB Packet Storm
250455 9.3 危険 CA Technologies - CA BrightStor ARCserve Backup for Laptops and Desktops における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-5004 2012-06-26 15:54 2007-09-20 Show GitHub Exploit DB Packet Storm
250456 10 危険 CA Technologies - CA BrightStor ARCserve Backup for Laptops and Desktops におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5003 2012-06-26 15:54 2007-09-20 Show GitHub Exploit DB Packet Storm
250457 10 危険 Firebird Project - Firebird SQL の fbserver.exe の process_packet 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4992 2012-06-26 15:54 2007-10-10 Show GitHub Exploit DB Packet Storm
250458 10 危険 JetAudio - jetAudio の JetFlExt.dll の JetAudio.Interface.1 ActiveX コントロールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4983 2012-06-26 15:54 2007-09-19 Show GitHub Exploit DB Packet Storm
250459 4.3 警告 gcaldaemon - GCALDaemon の readRequest メソッドにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2007-4980 2012-06-26 15:54 2007-09-19 Show GitHub Exploit DB Packet Storm
250460 3.5 注意 Coppermine Photo Gallery - CPG の mode.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4977 2012-06-26 15:54 2007-09-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247621 9.8 CRITICAL
Network 		openmrs openmrs OpenMRS before 2.24.0 is affected by an Insecure Object Deserialization vulnerability that allows an unauthenticated user to execute arbitrary commands on the targeted system via crafted XML data in … CWE-502
 Deserialization of Untrusted Data 		CVE-2018-19276 2024-11-21 12:57 2019-03-22 Show GitHub Exploit DB Packet Storm
247622 5.4 MEDIUM
Network 		webmin webmin Webmin 1.890 has XSS via /config.cgi?webmin, the /shell/index.cgi history parameter, /shell/index.cgi?stripped=1, or the /webminlog/search.cgi uall or mall parameter. CWE-79
Cross-site Scripting 		CVE-2018-19191 2024-11-21 12:57 2019-03-22 Show GitHub Exploit DB Packet Storm
247623 7.5 HIGH
Network 		colossusxt colossuscoinxt ColossusCoinXT through 1.0.5 (a chain-based proof-of-stake cryptocurrency) allows a remote denial of service, exploitable by an attacker who acquires even a small amount of stake/coins in the system.… CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-19158 2024-11-21 12:57 2019-03-22 Show GitHub Exploit DB Packet Storm
247624 4.8 MEDIUM
Network 		cobham satcom_sailor_800_firmware
satcom_sailor_900_firmware 		Cobham Satcom Sailor 800 and 900 devices contained persistent XSS, which required administrative access to exploit. The vulnerability was exploitable by acquiring a copy of the device's configuration… CWE-79
Cross-site Scripting 		CVE-2018-19394 2024-11-21 12:57 2019-03-16 Show GitHub Exploit DB Packet Storm
247625 7.5 HIGH
Network 		cobham satcom_sailor_800_firmware
satcom_sailor_900_firmware 		Cobham Satcom Sailor 800 and 900 devices contained a vulnerability that allowed for arbitrary writing of content to the system's configuration file. This was exploitable via multiple attack vectors d… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2018-19393 2024-11-21 12:57 2019-03-16 Show GitHub Exploit DB Packet Storm
247626 9.8 CRITICAL
Network 		cobham satcom_sailor_250_firmware
satcom_sailor_500_firmware 		Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could allow modification of any user account's password (including the default "ad… CWE-287
Improper Authentication 		CVE-2018-19392 2024-11-21 12:57 2019-03-16 Show GitHub Exploit DB Packet Storm
247627 6.1 MEDIUM
Network 		cobham satcom_sailor_250_firmware
satcom_sailor_500_firmware 		Cobham Satcom Sailor 250 and 500 devices before 1.25 contained persistent XSS, which could be exploited by an unauthenticated threat actor via the /index.lua?pageID=Phone%20book name field. CWE-79
Cross-site Scripting 		CVE-2018-19391 2024-11-21 12:57 2019-03-16 Show GitHub Exploit DB Packet Storm
247628 6.1 MEDIUM
Network 		avinetworks avi_vantage Avi Vantage before 17.2.13 uses an invalid URL encoding during a redirect operation, aka AV-33959. CWE-601
Open Redirect 		CVE-2018-19106 2024-11-21 12:57 2019-02-20 Show GitHub Exploit DB Packet Storm
247629 7.8 HIGH
Local 		abb cp400pb_firmware The TextEditor 2.0 in ABB CP400 Panel Builder versions 2.0.7.05 and earlier contain a vulnerability in the file parser of the Text Editor wherein the application doesn't properly prevent the insertio… CWE-20
 Improper Input Validation  		CVE-2018-19008 2024-11-21 12:57 2019-02-14 Show GitHub Exploit DB Packet Storm
247630 5.0 MEDIUM
Local 		omron cx-supervisor When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array. CWE-125
Out-of-bounds Read 		CVE-2018-19020 2024-11-21 12:57 2019-02-13 Show GitHub Exploit DB Packet Storm