Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250631 10 危険 Boa - Boa 用の Intersil 拡張機能におけるメモリに格納された管理者パスワードを変更される脆弱性 CWE-20
不適切な入力確認
CVE-2007-4915 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
250632 5 警告 JetAudio - JetCast Server の JSMP3OGGWt.dll におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2007-4911 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
250633 7.5 危険 AuraCMS - AuraCMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-4908 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
250634 7.5 危険 AuraCMS - AuraCMS の mod/contak.php における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2007-4905 2012-06-26 15:54 2007-09-17 Show GitHub Exploit DB Packet Storm
250635 5.8 警告 AOL - Internet Explorer サーバコントロールにおける任意のコードを実行される脆弱性 CWE-noinfo
情報不足
CVE-2007-4901 2012-06-26 15:54 2007-09-14 Show GitHub Exploit DB Packet Storm
250636 4.3 警告 University of California - Boinc Forum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4899 2012-06-26 15:54 2007-09-14 Show GitHub Exploit DB Packet Storm
250637 6.8 警告 AuraCMS - AuraCMS の index.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2007-4886 2012-06-26 15:54 2007-09-13 Show GitHub Exploit DB Packet Storm
250638 4.3 警告 avnex - Avnex AV MP3 Player におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2007-4885 2012-06-26 15:54 2007-09-13 Show GitHub Exploit DB Packet Storm
250639 4.3 警告 boesch-it - SimpNews におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4874 2012-06-26 15:54 2007-09-26 Show GitHub Exploit DB Packet Storm
250640 5 警告 Google - Google Picasa における画像ファイルを読まれる脆弱性 CWE-DesignError
CVE-2007-4847 2012-06-26 15:54 2007-09-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247751 8.8 HIGH
Network
podofo_project podofo A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. It all… CWE-476
 NULL Pointer Dereference
CVE-2018-19532 2024-11-21 12:58 2018-11-26 Show GitHub Exploit DB Packet Storm
247752 9.8 CRITICAL
Network
httl_project httl HTTL (aka Hyper-Text Template Language) through 1.0.11 allows remote command execution because the decodeXml function uses java.beans.XMLEncoder unsafely when configured without an xml.codec= setting. CWE-20
 Improper Input Validation 
CVE-2018-19531 2024-11-21 12:58 2018-11-26 Show GitHub Exploit DB Packet Storm
247753 9.8 CRITICAL
Network
httl_project httl HTTL (aka Hyper-Text Template Language) through 1.0.11 allows remote command execution because the decodeXml function uses XStream unsafely when configured with an xml.codec=httl.spi.codecs.XstreamCo… CWE-20
 Improper Input Validation 
CVE-2018-19530 2024-11-21 12:58 2018-11-26 Show GitHub Exploit DB Packet Storm
247754 9.8 CRITICAL
Network
tp-link tl-wr886n_firmware TP-Link TL-WR886N 7.0 1.1.0 devices allow remote attackers to cause a denial of service (Tlb Load Exception) via crafted DNS packets to port 53/udp. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2018-19528 2024-11-21 12:58 2018-11-26 Show GitHub Exploit DB Packet Storm
247755 8.8 HIGH
Network
sdcms
php
sdcms
php
An issue was discovered in SDCMS 1.6 with PHP 5.x. app/admin/controller/themecontroller.php uses a check_bad function in an attempt to block certain PHP functions such as eval, but does not prevent u… CWE-94
Code Injection
CVE-2018-19520 2024-11-21 12:58 2018-11-26 Show GitHub Exploit DB Packet Storm
247756 5.5 MEDIUM
Local
tcpdump tcpdump In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization. CWE-125
CWE-909
Out-of-bounds Read
 Missing Initialization of Resource
CVE-2018-19519 2024-11-21 12:58 2018-11-26 Show GitHub Exploit DB Packet Storm
247757 7.5 HIGH
Network
php
debian
uw-imap_project
canonical
php
debian_linux
uw-imap
ubuntu_linux
University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other products, launches an rsh command (by means of the imap_rimap function in c-client/imap4r1.c and the tcp_a… CWE-88
Argument Injection
CVE-2018-19518 2024-11-21 12:58 2018-11-25 Show GitHub Exploit DB Packet Storm
247758 5.5 MEDIUM
Local
sysstat_project sysstat An issue was discovered in sysstat 12.1.1. The remap_struct function in sa_common.c has an out-of-bounds read during a memset call, as demonstrated by sadf. CWE-125
Out-of-bounds Read
CVE-2018-19517 2024-11-21 12:58 2018-11-25 Show GitHub Exploit DB Packet Storm
247759 7.8 HIGH
Local
audiocoding freeware_advanced_audio_decoder_2 An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.1. There is a NULL pointer dereference in ifilter_bank() in libfaad/filtbank.c. CWE-125
CWE-476
Out-of-bounds Read
 NULL Pointer Dereference
CVE-2018-19504 2024-11-21 12:58 2018-11-24 Show GitHub Exploit DB Packet Storm
247760 7.8 HIGH
Local
audiocoding freeware_advanced_audio_decoder_2 An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.1. There was a stack-based buffer overflow in the function calculate_gain() in libfaad/sbr_hfadj.c. CWE-787
 Out-of-bounds Write
CVE-2018-19503 2024-11-21 12:58 2018-11-24 Show GitHub Exploit DB Packet Storm